Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/pj85D6Z8CXWH8KOhL7MOUdpNTqw.roa
File: pj85D6Z8CXWH8KOhL7MOUdpNTqw.roa (raw, json)
Hash identifier: IHGo/2e6/lQkPnMF6FRI3WTK668Cp4dWij6rd6wYA1M=
Subject key identifier: A6:3F:39:0F:A6:7C:09:75:87:F0:A3:A1:2F:B3:0E:51:DA:4D:4E:AC
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 01856FCBBA5D178D76F4319B6CB83752CCE7
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/pj85D6Z8CXWH8KOhL7MOUdpNTqw.roa
Signing time: Mon 02 Jan 2023 00:05:00 +0000
ROA not before: Mon 02 Jan 2023 00:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 45.89.28.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:ba:5d:17:8d:76:f4:31:9b:6c:b8:37:52:cc:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Jan 2 00:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a63f390fa67c097587f0a3a12fb30e51da4d4eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:c1:45:85:6b:81:41:21:91:71:9b:0b:ff:
78:74:a2:fc:cc:ae:ed:2c:c2:a7:ec:09:34:a0:f4:
11:31:08:dc:d8:2d:38:e9:d0:45:f9:77:8c:65:fd:
f1:08:f8:81:ba:26:56:7a:95:4a:76:10:bc:b9:b7:
96:a6:54:5b:79:7e:22:ed:8d:47:ec:24:15:a2:b4:
c1:60:3a:32:f1:81:f0:be:5b:b7:2e:8e:52:58:71:
86:4f:8e:44:af:3a:4b:9d:00:3a:6b:01:76:49:e1:
91:de:e1:08:04:99:3c:ac:3c:d2:b5:12:f7:69:f4:
5f:20:3c:af:e7:53:95:34:54:13:f3:8f:b0:6a:a8:
51:c7:d0:07:50:cc:28:0f:cc:bf:77:b0:f5:5c:68:
34:11:c6:45:af:e8:4d:12:3c:6d:c1:25:5a:02:88:
67:73:9f:24:88:42:91:c2:18:81:4a:3a:ac:10:1b:
ea:26:e8:11:07:f7:c0:3e:ec:88:c5:7e:f6:54:16:
bd:e5:55:17:e5:6d:a0:10:de:f7:96:d4:ea:fa:da:
ed:06:c9:df:6d:52:18:85:98:1f:95:4f:d8:d3:12:
84:7e:d6:70:ad:08:dc:a1:e3:31:83:34:40:ea:db:
cd:16:30:3f:a4:d0:25:93:1b:e3:2c:af:1e:1f:28:
e6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3F:39:0F:A6:7C:09:75:87:F0:A3:A1:2F:B3:0E:51:DA:4D:4E:AC
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/pj85D6Z8CXWH8KOhL7MOUdpNTqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:54:bf:6c:2e:9c:5c:9c:9f:bb:b5:41:83:70:c0:91:16:30:
38:eb:b6:d5:28:41:a6:1f:37:10:3e:da:9e:7a:0f:e6:83:7a:
d1:24:3a:8e:34:80:ce:e6:bd:6f:03:52:70:26:26:65:f2:c7:
e9:f3:a7:a2:1d:71:66:a7:c0:f6:4d:5b:4e:63:f4:1e:d1:6e:
18:4b:5c:6f:b7:99:03:bc:71:97:58:67:b9:88:0b:04:b2:dc:
2b:48:c9:6e:6a:8b:af:46:48:40:d1:73:83:44:d7:c3:6a:23:
8f:5e:46:a9:0b:32:6c:d2:0f:9c:85:72:32:1f:7e:d0:c7:48:
9d:0e:5a:2b:17:2c:41:1a:a0:e9:92:ac:d3:5f:58:7e:ac:f0:
e0:c3:23:4a:83:4b:10:bd:62:7c:f5:87:46:a3:e8:d0:4d:e0:
44:ff:b0:29:ef:68:60:f2:42:38:38:d3:21:06:61:9d:53:71:
da:2f:c3:e1:cf:a0:b0:94:3a:35:72:f3:7a:75:3e:8c:d4:ea:
68:3f:24:6a:d0:7d:09:38:82:97:29:db:47:c0:68:25:d2:e3:
6b:72:3c:14:d9:75:64:f5:3d:2a:fe:78:8f:c4:b8:4b:9f:65:
97:c0:75:fb:ed:21:01:30:18:0f:85:9c:c7:e6:a5:a2:ac:08:
5f:34:9f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:07 2023 by rpki-client on console-ams.rpki-client.org