Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/xm8fd3CezOQ6FsaSOf76XqytqZA.roa
File: xm8fd3CezOQ6FsaSOf76XqytqZA.roa (raw, json)
Hash identifier: lNp2DxtSzhY5v1o2PaO/sy/Wf9GavKb0Ci1FYzfzDk8=
Subject key identifier: C6:6F:1F:77:70:9E:CC:E4:3A:16:C6:92:39:FE:FA:5E:AC:AD:A9:90
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018B7109E5B46F4A43715CF8455F2A6B8515
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/xm8fd3CezOQ6FsaSOf76XqytqZA.roa
Signing time: Fri 27 Oct 2023 12:09:15 +0000
ROA not before: Fri 27 Oct 2023 12:09:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216086
IP address blocks: 45.133.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:71:09:e5:b4:6f:4a:43:71:5c:f8:45:5f:2a:6b:85:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 27 12:09:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c66f1f77709ecce43a16c69239fefa5eacada990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:08:00:0e:e8:c1:18:b9:ca:9b:3e:5d:9b:7c:
4a:ca:7c:27:5a:4f:5b:7b:01:d0:9d:86:11:fc:ca:
37:4d:db:a9:b9:61:f3:fc:83:fd:ec:df:d1:85:07:
f8:c7:27:6f:f9:45:62:47:57:58:68:25:33:17:08:
44:9a:c6:7c:c9:0c:04:bb:c8:23:4a:6d:16:a8:f0:
7e:13:11:fc:f0:fb:60:59:0e:62:ef:02:77:49:45:
af:8e:c7:89:95:6c:e2:ae:c9:4a:e8:4e:02:08:66:
8f:0f:58:04:64:11:9f:a9:79:fd:57:07:af:d5:b5:
2b:af:e1:f5:79:de:7b:7f:07:b0:7d:60:62:30:2e:
7b:b7:f3:60:47:ad:9a:b6:e8:eb:c8:b9:ef:6d:c4:
d1:cf:b8:c5:c4:db:6b:a2:be:b3:1d:12:cd:11:1d:
3a:40:35:76:e9:4a:55:69:bb:c8:24:4e:24:7b:c2:
2f:d4:41:0b:24:94:dc:d1:67:41:1b:eb:f4:29:8a:
43:fd:5e:ee:a7:34:55:69:41:52:b2:1a:85:e3:b5:
67:75:a9:39:fe:0d:12:a1:07:fb:ca:9c:2c:b4:7a:
8a:1c:28:75:49:dc:c2:ed:ea:78:57:26:17:5c:f6:
84:b5:d3:08:08:b0:fa:20:f0:e3:91:eb:5d:37:90:
46:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6F:1F:77:70:9E:CC:E4:3A:16:C6:92:39:FE:FA:5E:AC:AD:A9:90
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/xm8fd3CezOQ6FsaSOf76XqytqZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.107.0/24
Signature Algorithm: sha256WithRSAEncryption
72:c1:30:5e:39:17:48:72:2c:72:7a:a9:b6:f4:40:33:1b:37:
ad:b2:fc:cf:c8:26:b4:7a:38:a4:e2:57:44:45:ea:d3:09:4f:
61:46:a9:63:59:3d:20:cc:ed:a6:68:6f:f3:fe:72:12:b0:ab:
eb:18:31:64:2e:0a:ec:f7:52:59:84:6d:12:19:a5:d2:43:92:
cd:19:f4:5e:4f:fb:01:85:94:57:c0:75:94:78:33:02:4a:56:
11:83:d7:08:a6:0e:95:40:b8:6c:e2:87:7c:79:6e:c6:77:58:
61:ee:68:1c:ef:8e:90:91:d2:e3:25:1e:19:91:4a:32:bf:d9:
5b:d4:13:74:15:b4:45:27:45:45:e4:22:3d:67:ec:c1:e4:1c:
12:b3:9e:1e:44:8d:47:40:93:c9:97:dd:17:48:5a:54:b4:b8:
b5:63:54:d0:b8:dc:5b:59:6f:f3:bc:3f:32:d7:74:0c:f7:28:
3d:71:d2:a0:67:f8:d9:4d:64:76:ac:e0:43:04:d6:ac:03:d2:
1d:4b:fd:8e:b2:b4:cb:8f:f5:fd:9d:50:a9:32:81:18:30:d5:
bc:ef:86:71:26:a5:81:cd:bc:93:2d:4a:e7:c0:a5:df:9c:a5:
50:ab:31:1a:1d:29:6d:91:5f:8a:58:0b:9e:96:f2:e3:30:52:
59:18:b1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org