Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ykNLMnM_M7fNcmVZB5L274GmDgg.roa
File: ykNLMnM_M7fNcmVZB5L274GmDgg.roa (raw, json)
Hash identifier: ImKvG7WriVyxGfMSdz5aS3KtVOkOb9RxRd7THBDdCRg=
Subject key identifier: CA:43:4B:32:73:3F:33:B7:CD:72:65:59:07:92:F6:EF:81:A6:0E:08
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA76CFD7ACA47A46A5FFAB1A601E8B
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ykNLMnM_M7fNcmVZB5L274GmDgg.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 45.133.106.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:76:cf:d7:ac:a4:7a:46:a5:ff:ab:1a:60:1e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca434b32733f33b7cd7265590792f6ef81a60e08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:10:b7:1f:70:69:5a:01:98:35:7c:3a:d8:c7:
47:b6:53:f9:9e:0b:cf:56:3d:a3:9b:5c:f3:6b:3b:
7e:77:ab:3b:6c:61:bd:21:3c:b6:44:52:a4:38:bb:
86:0a:a2:71:cb:5b:4f:79:ce:56:6a:ea:91:97:a1:
40:6b:f4:66:7f:b9:3a:e4:be:7a:a4:17:bf:16:38:
46:1d:95:a3:0c:ed:8b:e3:f3:30:7c:25:56:27:a3:
71:f0:64:47:14:dc:c0:a7:ab:ba:28:2d:cc:47:3a:
4e:30:27:c3:33:26:42:01:34:eb:ff:43:0b:e2:67:
c8:c8:09:c4:0a:ee:a3:cf:cf:39:c9:1c:d9:a2:dc:
33:50:01:ec:f6:e5:e1:fd:50:be:f8:bd:ff:37:90:
20:0b:15:8f:a8:f4:85:62:f4:95:5a:ba:03:72:62:
fc:75:fc:1e:e0:5b:74:07:e5:ea:b8:e1:e7:38:2e:
fc:44:df:c6:b0:72:ce:3a:e1:db:cc:37:e9:c2:8f:
dd:5b:a8:57:7b:fc:e6:40:4c:ab:99:be:bf:8f:60:
c8:a1:0a:f5:96:56:52:3e:3d:df:93:b1:a4:9e:95:
a8:c6:1a:be:80:6e:2a:aa:5b:f6:fc:50:d5:82:c7:
b1:6d:04:57:1b:c4:9f:6f:42:b9:71:3e:f9:1d:02:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:43:4B:32:73:3F:33:B7:CD:72:65:59:07:92:F6:EF:81:A6:0E:08
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ykNLMnM_M7fNcmVZB5L274GmDgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.106.0/23
Signature Algorithm: sha256WithRSAEncryption
25:57:e1:05:a2:2b:33:c0:ed:32:5a:61:c9:e3:de:9a:ba:86:
5c:fd:95:ec:67:84:20:0b:c0:fb:ac:ec:2d:34:13:fa:cb:94:
c4:a0:17:17:6c:6a:f0:ba:f1:48:e3:d2:a3:9a:84:8d:c3:d0:
55:e6:6d:32:b9:1f:18:5b:0b:02:9e:4c:e6:53:cc:28:fe:b9:
f7:42:fb:c5:35:64:ef:11:09:53:18:88:e9:2c:3a:d3:70:50:
26:d7:ab:d0:f5:f4:4c:95:1c:2c:ba:e6:24:29:af:d1:46:68:
c2:d3:90:b3:6a:48:18:6d:a8:66:8e:c8:10:3a:5d:15:6a:77:
12:70:ad:d6:05:a2:a4:57:f6:22:8e:d8:0c:4b:59:2c:26:01:
fc:c5:ed:57:bb:a9:d7:41:83:8a:47:a5:13:96:a1:9f:5b:54:
d4:9d:9e:74:37:f2:20:33:f1:7a:3d:d3:d8:85:5d:e3:1b:2f:
1e:8b:54:0e:bd:74:7c:96:ef:f7:d8:9c:00:84:21:51:28:8a:
50:bf:c9:5e:24:57:84:52:fa:8e:c4:f2:f3:96:80:4f:6f:91:
2a:7d:b1:e0:d4:19:c2:ff:c5:ff:27:6c:fb:e5:7a:ce:6f:8e:
6e:9c:99:5d:04:f7:cd:cd:87:1d:27:3c:80:96:67:f6:92:ed:
94:e8:78:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org