Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_bB2xKC4h8dkZecBUOJjh4ZQq5U.roa
File: _bB2xKC4h8dkZecBUOJjh4ZQq5U.roa (raw, json)
Hash identifier: cmkLY1T8Hco5EYfqHAEtHTLXiFfl6W3PR7JHtUO2Kk4=
Subject key identifier: FD:B0:76:C4:A0:B8:87:C7:64:65:E7:01:50:E2:63:87:86:50:AB:95
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 018AF62DFD090085AB3146D925B21A838E0D
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_bB2xKC4h8dkZecBUOJjh4ZQq5U.roa
Signing time: Tue 03 Oct 2023 15:35:23 +0000
ROA not before: Tue 03 Oct 2023 15:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399045
IP address blocks: 45.143.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:2d:fd:09:00:85:ab:31:46:d9:25:b2:1a:83:8e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Oct 3 15:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdb076c4a0b887c76465e70150e263878650ab95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8d:8c:85:c8:10:e2:ed:3f:54:30:b8:f9:46:
b1:25:ab:75:3b:76:99:d5:65:dd:51:32:35:50:df:
85:fd:52:73:92:cf:02:16:d4:80:f5:02:e5:55:03:
d3:40:d5:f6:12:e6:b9:20:ed:fd:7e:18:8e:4b:2d:
ac:14:90:29:77:77:6f:dc:55:3a:ea:ef:a7:50:4c:
5e:6f:9b:c7:b1:b1:78:2f:5d:14:dd:5a:4d:56:4e:
98:f0:5b:94:06:18:43:f5:e6:66:8c:9f:8d:d2:42:
b8:10:bb:15:06:c3:37:d6:eb:60:a9:87:97:66:9d:
cd:c9:36:d0:e2:59:8c:75:46:08:16:e6:6d:50:97:
29:b8:24:60:1a:69:95:47:de:02:a3:23:90:00:a3:
a3:6d:d4:f5:f8:7c:df:85:eb:1a:45:7c:d2:1e:f7:
3f:ac:fe:8d:dd:04:dc:7e:81:3d:58:20:39:82:e8:
ef:2b:1e:2c:2a:1b:d4:46:7d:aa:19:89:58:47:c3:
e4:05:fa:8a:02:2d:1c:2e:3f:3d:da:08:f4:fc:d4:
08:1a:22:ad:82:6f:06:79:d6:29:19:36:40:20:ed:
98:1b:4f:4b:d3:d4:7a:b3:26:6c:55:a9:be:a4:bb:
df:e1:11:b3:8b:69:28:af:ba:6d:ba:76:cd:f6:c2:
30:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B0:76:C4:A0:B8:87:C7:64:65:E7:01:50:E2:63:87:86:50:AB:95
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_bB2xKC4h8dkZecBUOJjh4ZQq5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.9.0/24
Signature Algorithm: sha256WithRSAEncryption
65:83:44:ae:29:be:7a:3f:40:d2:62:c6:39:7c:e7:f0:e2:bb:
81:42:51:ff:b8:49:82:14:dc:87:6c:7b:74:ac:69:2d:bb:19:
9a:4f:e2:0c:02:7c:ef:15:69:0a:d1:94:27:e8:01:69:34:11:
b5:fb:16:57:fd:3a:2d:7c:78:41:20:6a:95:d1:cc:9a:99:f3:
da:6f:22:f7:dc:85:43:21:75:35:2d:e4:aa:d6:0e:67:f1:6d:
0d:cf:a8:5c:c7:b5:4e:25:c0:a3:8a:3d:39:57:c2:fd:64:aa:
6a:86:ef:7a:5f:58:e5:69:c8:af:da:88:31:01:c7:76:da:f6:
45:dd:82:4a:5c:7f:a6:59:6b:07:68:8d:74:73:8f:93:fb:76:
52:1c:c4:3e:8d:44:cc:09:0f:3a:10:b0:85:d5:d8:07:05:a4:
b2:ab:2a:dd:34:33:71:ba:d6:33:e2:af:1c:bb:d9:11:83:a3:
9a:f7:83:f3:d4:f6:2c:c7:33:e7:3f:83:e4:87:c5:99:2c:34:
42:10:76:5e:d1:d8:7e:5d:da:72:67:92:9f:3b:34:73:aa:8c:
a5:83:dc:a4:30:d2:58:2a:22:14:a8:ad:fe:67:16:44:55:2c:
aa:06:ab:34:45:37:2a:6f:03:8e:65:25:43:22:6f:f2:1f:1b:
47:23:31:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:34 2024 by rpki-client on console-fra.rpki-client.org