Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/RzHPEa7dDdsRwfxbXa-4OOISXhM.roa
File: RzHPEa7dDdsRwfxbXa-4OOISXhM.roa (raw, json)
Hash identifier: yyfBzcGMsOMb210NB+G2+VvMMQ+1Pn38k0D6emWBjSY=
Subject key identifier: 47:31:CF:11:AE:DD:0D:DB:11:C1:FC:5B:5D:AF:B8:38:E2:12:5E:13
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018A3C263028DB8E8A4F78EE1AF981D4294A
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/RzHPEa7dDdsRwfxbXa-4OOISXhM.roa
Signing time: Mon 28 Aug 2023 12:37:30 +0000
ROA not before: Mon 28 Aug 2023 12:37:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216400
IP address blocks: 45.133.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:26:30:28:db:8e:8a:4f:78:ee:1a:f9:81:d4:29:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Aug 28 12:37:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4731cf11aedd0ddb11c1fc5b5dafb838e2125e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fa:b7:ce:9e:87:32:c4:ff:c0:9d:63:04:4f:
d8:a0:6a:a1:27:d8:4c:7a:a1:64:3b:a8:1b:2e:90:
76:0c:6d:af:bf:0c:e1:a8:5e:b2:fd:6a:b1:3b:31:
dc:e2:d7:19:34:e2:b2:29:95:6d:be:05:01:28:6b:
84:3b:b9:48:d3:1b:97:ca:de:f2:0b:e2:48:c3:65:
38:40:7e:21:a6:85:57:fb:60:45:ea:a6:d7:54:1f:
ce:cc:9c:a4:74:92:70:f5:5f:bb:46:68:16:47:ca:
c9:e8:35:1a:60:7b:45:21:6b:9b:35:3e:b7:89:c7:
99:6e:b7:78:84:f5:cb:18:d1:2f:ee:da:eb:7a:a4:
58:15:09:19:88:de:ea:e4:53:2d:a0:ed:21:58:ab:
12:1f:ec:f0:68:b0:43:ef:e8:20:cc:10:8a:93:b3:
f5:46:d5:43:72:08:ab:c3:b0:f9:fc:a4:8f:4c:d6:
ac:c7:84:ca:bb:55:6a:7f:a1:ac:a0:db:59:7c:ed:
ee:6f:bf:33:63:f6:6f:d3:8a:ec:ae:c4:76:c0:41:
39:09:b5:11:e8:80:20:51:9e:c3:6e:9a:81:63:bd:
8b:f3:df:f2:7d:3a:d1:18:d1:76:ed:0a:f4:62:8a:
1d:f2:4d:c1:1d:69:36:e5:6c:06:60:98:78:ce:ac:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:31:CF:11:AE:DD:0D:DB:11:C1:FC:5B:5D:AF:B8:38:E2:12:5E:13
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/RzHPEa7dDdsRwfxbXa-4OOISXhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.106.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:54:fe:06:e0:7d:fb:26:ec:2e:fc:9b:35:aa:1d:58:b9:30:
aa:37:f3:64:ab:b2:6d:62:c6:ba:2b:04:ea:0e:5d:6c:3c:22:
9f:cf:03:81:95:92:2d:07:08:62:7c:05:bc:bc:72:1f:e7:45:
c0:51:f6:5b:76:ad:6c:ea:9f:74:b6:27:6e:01:d2:0b:93:97:
97:41:3c:71:3d:ec:2c:e3:89:76:e5:60:de:4a:17:ba:31:22:
db:19:47:c0:4e:89:35:7f:3e:ea:4e:b2:24:6e:9c:34:5a:a7:
d5:61:a3:bb:e4:80:51:43:17:41:67:08:aa:9c:22:e6:73:5a:
3a:9a:5f:e8:f3:e2:d0:78:f0:8b:21:1d:b8:87:88:5d:8f:31:
1e:d8:e5:74:77:f0:4f:71:d9:bb:33:08:21:74:85:c6:f4:95:
67:55:ec:87:df:c4:6a:fe:97:2d:d4:b2:a3:91:7f:d2:8e:bb:
2b:e1:0c:3f:fb:1c:d6:7d:da:fa:2c:68:dd:05:fc:36:99:bb:
07:dc:5c:4e:6a:87:94:53:a4:de:c5:0d:5d:ad:b8:b4:f5:db:
88:04:0b:b3:83:af:7e:c3:ae:c7:f0:64:80:de:7e:1c:05:80:
48:1a:af:a1:1e:35:c3:da:df:ae:c7:4d:38:28:2e:be:d4:7b:
5c:59:b4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:40 2024 by rpki-client on console-ams.rpki-client.org