Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Mq0pXhqWI0i2R7s0X9jGsXWTyTQ.roa
File: Mq0pXhqWI0i2R7s0X9jGsXWTyTQ.roa (raw, json)
Hash identifier: QFzO2WRZV92NIe4ewUqeBZV6WCL74kV6LLBA50zIgNM=
Subject key identifier: 32:AD:29:5E:1A:96:23:48:B6:47:BB:34:5F:D8:C6:B1:75:93:C9:34
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 01878E450A43B757A8BE235562FBA783C7A0
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Mq0pXhqWI0i2R7s0X9jGsXWTyTQ.roa
Signing time: Mon 17 Apr 2023 08:11:41 +0000
ROA not before: Mon 17 Apr 2023 08:11:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:45:0a:43:b7:57:a8:be:23:55:62:fb:a7:83:c7:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Apr 17 08:11:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32ad295e1a962348b647bb345fd8c6b17593c934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c9:ee:88:3f:03:fb:43:7d:91:69:55:ac:4d:
04:a9:f2:d9:c8:60:ea:1f:68:3b:01:10:d7:ca:36:
be:d5:56:d7:25:2f:e8:fd:1a:f5:57:6b:c5:c6:19:
3c:14:97:0a:c7:a4:d3:0f:ba:cc:1f:45:46:2e:6e:
48:6a:ea:4e:b1:fe:ba:52:bc:8a:56:e1:2e:71:01:
69:ce:2e:6f:64:b8:41:e2:67:ac:1f:fc:74:1d:09:
66:4e:93:3e:13:4b:2f:d7:c1:ca:dc:94:99:a0:1c:
d7:03:bd:3e:20:70:d1:ab:c9:9b:5a:b2:62:4c:50:
71:b0:71:a3:cd:91:40:1d:b1:36:27:11:ce:bb:16:
75:23:22:00:da:e1:03:1a:0d:89:87:9e:0b:fe:41:
bd:75:98:6a:51:c6:97:c8:70:0c:f6:fb:25:39:6a:
24:f3:47:54:fd:30:ca:88:5e:b2:56:74:36:6c:cc:
3f:c0:f1:a5:b0:ae:58:af:fa:3c:2b:04:37:c4:ae:
d1:d8:b3:dd:23:c4:e5:95:9c:fb:8c:b0:ac:ab:0a:
aa:a8:ea:97:09:80:5f:1f:bc:74:f8:67:b6:72:67:
54:4f:fc:d3:bd:7b:3b:e9:91:d1:34:00:d9:25:b5:
a0:f3:3f:d5:fb:af:e2:e8:22:bb:49:be:d2:47:0b:
e8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:AD:29:5E:1A:96:23:48:B6:47:BB:34:5F:D8:C6:B1:75:93:C9:34
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Mq0pXhqWI0i2R7s0X9jGsXWTyTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:46:19:e4:38:8a:3f:97:c3:4d:73:e2:08:b2:48:e4:0a:6e:
f1:07:29:4f:cc:54:09:48:55:8f:90:d5:cd:32:cf:66:dd:21:
e3:6b:fd:92:73:2b:07:ab:56:0b:03:27:c2:3f:00:0a:1a:db:
6c:16:a8:70:59:7d:33:25:7c:98:b3:24:05:c7:c9:7b:18:06:
16:fc:2d:2e:06:5f:c1:9f:fb:a1:70:b5:40:9a:d0:ba:4f:8e:
c6:aa:a0:7b:ea:6d:81:1b:d8:0d:19:a9:06:7e:ff:36:2f:12:
e7:2c:15:38:d3:dc:b6:61:a5:8f:20:44:6a:74:83:4b:62:13:
3e:89:57:19:d6:fd:74:0f:96:45:32:07:ed:67:a8:73:b3:cd:
e4:0d:d9:18:06:a6:ac:38:65:e6:e2:1f:87:ca:90:7f:fb:9b:
09:ef:fb:e8:a7:1c:79:97:db:19:65:a5:cf:0b:dd:9f:8a:f9:
6a:99:20:9b:85:2d:87:c8:7c:41:b1:e5:81:fd:1a:88:7f:c4:
2b:70:80:d6:f9:f9:6e:41:69:f4:2d:c7:73:c9:8a:1d:b2:c6:
14:a7:10:c9:4a:4e:30:31:d7:76:ec:a2:f4:6f:c8:b4:b7:28:
06:c5:76:1b:40:06:e8:0a:85:bd:40:bb:82:ee:6f:73:44:ae:
8d:88:86:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 5 09:40:43 2023 by rpki-client on console-fra.rpki-client.org