Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vDCrD373nV1crRv9GHDlGRy8ldk.roa
File: vDCrD373nV1crRv9GHDlGRy8ldk.roa (raw, json)
Hash identifier: v1unnH/yvvgtGo/Bo+aFnv6LUk/5hgOEyovVfoTIfb0=
Subject key identifier: BC:30:AB:0F:7E:F7:9D:5D:5C:AD:1B:FD:18:70:E5:19:1C:BC:95:D9
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0188DD467BA1AFEAD547BC2FB1DCE70EF602
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vDCrD373nV1crRv9GHDlGRy8ldk.roa
Signing time: Wed 21 Jun 2023 09:26:03 +0000
ROA not before: Wed 21 Jun 2023 09:26:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44222
IP address blocks: 45.159.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:46:7b:a1:af:ea:d5:47:bc:2f:b1:dc:e7:0e:f6:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jun 21 09:26:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc30ab0f7ef79d5d5cad1bfd1870e5191cbc95d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:a5:e0:cc:d9:a7:b0:d4:17:d4:b5:6e:d5:
57:a9:1d:e2:85:99:cb:d3:52:53:5b:af:39:f9:e9:
9d:d2:10:97:1a:2f:9c:2e:b2:ef:dd:ec:fd:64:54:
75:28:c2:b5:67:e5:d3:90:a9:5c:fe:ed:b0:58:2c:
36:04:9d:86:6d:6f:0b:2e:ed:e7:43:d2:1a:5d:9c:
7c:d1:87:c3:8d:75:f2:7d:3b:5e:6c:6e:97:53:09:
14:af:a2:3e:a6:e5:a2:c6:ad:60:ac:d0:2b:ae:1a:
f0:bc:85:70:58:ec:83:fd:39:90:4e:1a:69:4b:a0:
37:9c:7f:ee:79:4f:cb:08:a8:f8:0b:bb:a9:c2:89:
04:ae:04:6e:4f:39:47:26:37:05:69:0e:13:93:f5:
90:8f:3d:93:ce:93:a2:cb:d2:af:c8:ae:69:f0:42:
83:32:7a:f3:52:82:49:f8:ab:98:f5:22:39:bb:e9:
7e:44:d9:fb:5d:08:40:b3:fe:27:da:01:bc:a8:be:
9a:6e:88:e4:10:b6:99:dd:d2:dc:2f:d0:50:49:68:
55:ab:b9:20:9a:bd:aa:98:9b:5e:b3:67:30:a9:7f:
b2:37:46:1a:c6:3c:9c:97:92:9b:3d:29:5f:87:84:
62:4f:79:00:19:d4:bf:3a:5a:5d:73:5b:9e:42:e1:
ed:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:30:AB:0F:7E:F7:9D:5D:5C:AD:1B:FD:18:70:E5:19:1C:BC:95:D9
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/vDCrD373nV1crRv9GHDlGRy8ldk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.251.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:87:30:48:02:a4:c9:53:95:12:d9:3d:d9:8d:1d:8f:ab:8c:
7b:d1:42:85:8a:18:7a:d4:62:d7:83:02:77:1a:74:18:ed:d8:
71:e3:bb:38:74:c0:66:63:b8:3d:45:8d:b0:ea:36:0f:7a:97:
cc:ef:3f:6e:57:19:99:7e:a4:ff:81:fc:05:d0:39:18:11:d3:
12:fe:b1:b1:ee:d5:16:fc:f9:71:83:e6:99:e6:64:d5:b3:43:
ff:c8:96:14:89:6c:72:6e:7c:33:30:ac:c6:b8:80:6e:85:4c:
9a:ef:d2:82:57:7d:16:b0:9d:43:70:cb:79:9e:9e:c7:1d:ae:
41:4a:24:28:28:09:b0:8d:68:5c:bc:2d:dc:90:ab:7e:7f:8d:
8a:8e:5e:12:f4:5d:6e:4d:82:be:22:43:6a:a2:26:53:c7:d0:
36:cb:e6:0f:36:68:92:9b:9b:b8:5e:1e:22:08:7d:7c:19:1e:
e3:e1:a2:fe:b7:fc:d7:76:35:61:2c:6f:ee:b1:a6:ee:c4:4a:
53:b5:fd:09:bf:bc:7b:0a:b7:ad:92:80:79:ca:65:da:1c:9b:
72:ee:b9:13:11:c7:d7:e0:3a:83:db:99:39:be:49:9a:77:51:
48:dc:ed:7e:55:6f:35:25:1d:56:fd:dc:72:32:c0:30:87:ea:
7e:92:d4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:38 2024 by rpki-client on console-fra.rpki-client.org