Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/XGOLTKmIx_p3vIPRMlJgu6ZMd1A.roa
File: XGOLTKmIx_p3vIPRMlJgu6ZMd1A.roa (raw, json)
Hash identifier: Eehycbo6T/eLCnGRqD2oEnksXMST08chN8mRkm1JhGs=
Subject key identifier: 5C:63:8B:4C:A9:88:C7:FA:77:BC:83:D1:32:52:60:BB:A6:4C:77:50
Certificate issuer: /CN=f655558b616794a4f77a648fc33609d977f5a780
Certificate serial: 01856DA6528310E07EAF06FF6DFE4C614D69
Authority key identifier: F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/XGOLTKmIx_p3vIPRMlJgu6ZMd1A.roa
Signing time: Sun 01 Jan 2023 14:04:54 +0000
ROA not before: Sun 01 Jan 2023 14:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 45.157.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:52:83:10:e0:7e:af:06:ff:6d:fe:4c:61:4d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f655558b616794a4f77a648fc33609d977f5a780
Validity
Not Before: Jan 1 14:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c638b4ca988c7fa77bc83d1325260bba64c7750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:51:15:9d:a0:3f:80:14:fa:ba:81:81:34:19:
29:f0:2d:92:a8:b0:ae:9a:6e:4b:5f:69:7b:b1:a1:
81:58:a7:61:4c:6c:a3:93:b9:b7:91:c7:b5:bc:cd:
94:ca:53:7b:45:ad:b2:85:75:d3:4e:c4:0d:bd:45:
22:de:e5:64:31:bb:38:43:a5:49:55:a2:6e:35:33:
ca:b8:a0:a9:25:c9:af:e3:07:36:53:44:92:8f:48:
46:ef:fd:d0:b4:23:e5:06:b3:fa:63:7b:cc:cc:ca:
0f:f9:d8:96:33:14:ee:57:ad:ce:2b:36:c9:83:ae:
97:6e:a6:0f:8e:86:16:d7:24:47:2a:a4:a2:26:34:
ad:39:15:c5:c9:17:1f:86:f9:23:b3:e1:30:3e:de:
fa:94:30:91:c3:57:07:c7:a8:b7:49:bb:dd:33:2e:
e7:d5:33:6d:df:94:c9:89:17:58:ea:15:9f:75:c7:
87:24:1b:8e:af:cc:eb:06:dd:b5:d9:fc:2e:de:f5:
9a:7f:01:51:24:07:62:65:07:78:30:65:85:70:95:
69:f1:a4:83:46:67:81:83:bf:d8:ca:fa:69:e3:d6:
82:03:e2:b5:71:2e:dd:b6:27:e6:47:91:7d:09:1f:
8b:89:18:29:86:2d:03:75:c0:4a:2f:6e:d7:e3:ed:
df:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:63:8B:4C:A9:88:C7:FA:77:BC:83:D1:32:52:60:BB:A6:4C:77:50
X509v3 Authority Key Identifier:
keyid:F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/XGOLTKmIx_p3vIPRMlJgu6ZMd1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.136.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:89:0d:85:7c:f6:74:a9:89:2d:fa:20:89:05:c5:61:64:5b:
e7:9f:b4:d3:25:31:8a:47:62:86:96:1f:a3:f2:75:4a:69:a0:
bb:ef:e6:5f:07:dd:df:13:c5:ef:c2:80:0f:7d:e4:ae:85:55:
1c:55:38:84:81:d0:35:55:95:46:15:e9:31:15:81:36:1d:aa:
17:32:d4:63:f0:be:17:6f:56:0f:ee:ff:ca:ac:d6:c7:43:07:
bf:52:52:48:3a:51:7d:84:64:c5:29:5b:d8:a1:36:65:b5:c4:
37:30:e2:14:cd:8f:bd:b0:31:20:bc:9e:6e:f9:75:4d:09:13:
ac:9f:77:21:e9:7b:e3:36:3f:fb:e7:99:68:1e:7a:60:3e:c7:
1f:97:27:c2:d8:df:20:47:4c:53:ce:5b:54:ea:82:0a:ea:15:
64:d0:c7:0c:c0:df:35:7c:c3:da:ff:d2:f2:28:cb:82:35:7f:
32:17:3d:ee:04:77:33:90:6d:97:96:39:51:4c:73:ab:d3:ec:
80:09:4c:33:a3:30:93:cf:fa:30:48:f5:e6:53:48:a3:34:f1:
9b:67:f9:dd:12:61:d3:2d:ba:60:48:d5:c9:d5:09:15:6b:05:
eb:32:45:eb:bb:f3:fd:ee:e2:46:8a:57:10:96:44:bd:fb:6e:
a1:a2:4e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:26 2024 by rpki-client on console-fra.rpki-client.org