Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/dZ7ki1aivDg2bN688gHt3p-WabY.roa
File: dZ7ki1aivDg2bN688gHt3p-WabY.roa (raw, json)
Hash identifier: R/SUhTbwR/D7mjn0+GhVfDWg3j4gzTIPPO6s/2HL5OY=
Subject key identifier: 75:9E:E4:8B:56:A2:BC:38:36:6C:DE:BC:F2:01:ED:DE:9F:96:69:B6
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01884F51DCB9B7C781371193B5A507B50A88
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/dZ7ki1aivDg2bN688gHt3p-WabY.roa
Signing time: Wed 24 May 2023 19:52:24 +0000
ROA not before: Wed 24 May 2023 19:52:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 45.133.104.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4f:51:dc:b9:b7:c7:81:37:11:93:b5:a5:07:b5:0a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: May 24 19:52:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=759ee48b56a2bc38366cdebcf201edde9f9669b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2e:07:e6:da:12:c8:54:10:a3:17:7f:f2:8e:
bf:9f:20:25:d4:e0:9e:80:6e:d7:ec:f1:91:ae:ee:
81:76:d5:79:f3:bf:03:bc:b6:1c:36:eb:c7:91:81:
db:00:e2:db:e1:0a:01:40:55:76:29:b6:0e:39:20:
af:9a:06:91:b7:ee:5e:ee:dd:24:b0:a2:4f:a9:f2:
7e:0c:13:81:31:07:bf:a0:97:87:a4:2b:b0:7e:7f:
fa:df:d5:c3:2a:2d:c5:74:00:d0:f1:3f:f7:96:70:
96:b9:45:ec:5d:2c:8d:7f:95:6f:99:c7:29:9f:ce:
09:15:38:4b:77:5c:4c:cb:00:21:66:5d:46:e6:02:
ad:86:e4:2e:2c:b0:0e:ea:43:06:4b:03:9f:86:0e:
1e:de:2d:50:3d:63:6e:ef:ae:f3:39:c3:f4:fb:9b:
21:22:71:20:6d:f4:82:5d:80:10:84:66:6d:e1:04:
f1:03:10:de:44:08:fd:d7:69:f1:7a:90:ef:58:c1:
7e:9a:7c:b6:fa:bb:ab:59:cf:bf:2d:9e:ba:b4:2b:
46:f1:b3:60:79:a5:9d:f8:00:20:4d:b6:26:d1:13:
41:21:65:49:aa:e9:f4:43:8a:fd:6a:da:eb:fb:fd:
ab:3d:15:0b:fe:d5:7b:49:b7:b6:14:05:0f:0f:46:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9E:E4:8B:56:A2:BC:38:36:6C:DE:BC:F2:01:ED:DE:9F:96:69:B6
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/dZ7ki1aivDg2bN688gHt3p-WabY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.104.0/23
Signature Algorithm: sha256WithRSAEncryption
68:cf:3b:cc:8b:e7:de:8e:31:47:78:31:15:12:78:39:38:b2:
62:d0:d6:37:63:28:82:ef:57:ef:88:3f:65:e2:dd:dc:3d:af:
f3:bd:37:29:fb:f7:12:d5:a7:85:3b:71:89:a5:1b:91:72:30:
78:0f:d4:ef:f3:c7:1b:9d:8f:4f:69:67:01:ba:4f:4c:57:dd:
44:7c:e0:e1:68:ab:21:e8:0d:e4:0a:30:f1:30:9b:57:88:21:
33:26:b6:68:1d:56:3c:c0:a4:d8:5f:94:22:30:5a:7f:09:63:
4d:7e:96:1c:41:aa:60:f9:d9:08:cf:a1:35:93:50:a4:1d:76:
0a:d8:04:6f:5e:7e:fd:69:43:1e:e0:37:7e:c7:37:7b:b3:4c:
06:17:54:f0:ed:5e:d3:80:1e:15:4d:6a:ff:8d:91:cf:5b:52:
17:04:e3:88:ec:23:0d:3b:93:e9:22:73:67:e2:85:fe:b0:9d:
18:7a:bf:6a:8a:a9:ae:ef:55:b8:32:5f:ac:c7:1e:ae:63:5b:
e5:1c:f4:85:c2:1f:01:d4:92:63:7f:76:9b:6a:8c:61:5b:44:
37:7e:59:3b:6b:e5:fb:c7:61:58:88:3d:18:ac:b7:2a:b4:39:
24:43:5d:05:e9:e1:94:d8:53:7e:1a:03:33:18:6b:c8:5c:78:
41:6c:74:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org