Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h0rybCeAbfxw47tsj9cUyEGTvkw.roa
File: h0rybCeAbfxw47tsj9cUyEGTvkw.roa (raw, json)
Hash identifier: mIZ8PK6QfYsymLjJ9P/DxTCNuZLBmt9QCqjzZldFf+Q=
Subject key identifier: 87:4A:F2:6C:27:80:6D:FC:70:E3:BB:6C:8F:D7:14:C8:41:93:BE:4C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C10B00C1D99A39147AB4C1009603A6830
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h0rybCeAbfxw47tsj9cUyEGTvkw.roa
Signing time: Mon 27 Nov 2023 12:10:22 +0000
ROA not before: Mon 27 Nov 2023 12:10:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
185.238.188.0/22 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a06:de01:d0::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:b0:0c:1d:99:a3:91:47:ab:4c:10:09:60:3a:68:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 27 12:10:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=874af26c27806dfc70e3bb6c8fd714c84193be4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0a:d5:e0:2e:59:8b:45:14:b4:86:ab:ad:29:
8b:b8:f6:10:9d:25:3c:9e:5c:43:4a:8f:b4:31:19:
d8:bc:01:8d:13:9e:d9:72:c4:ea:8b:e3:00:e8:7a:
d2:25:1e:e4:d6:5e:be:bb:fd:22:5e:24:9d:36:c5:
d6:7f:55:d8:6e:54:35:6f:62:04:39:25:a1:36:c2:
05:6f:ce:d9:dd:ae:54:c3:10:1c:5b:6d:28:03:86:
f0:7a:69:3c:88:88:03:87:aa:c7:0b:0b:1e:a6:64:
8c:8c:df:43:45:b6:b4:24:11:a6:f8:13:89:95:4a:
76:97:f1:dd:9a:af:19:84:35:27:49:2b:09:1b:48:
11:f2:d4:63:9a:d7:16:ba:17:8f:f8:6a:ad:1d:00:
76:d2:c9:e1:de:6e:3f:02:2b:2a:99:99:e6:4e:41:
63:64:1c:dd:10:11:e7:50:a7:5a:bb:a4:37:0b:87:
d5:d5:27:1a:56:cb:5b:42:0e:a7:7a:2f:ad:33:9f:
dc:40:09:f7:31:01:f0:e8:46:7c:85:29:62:08:48:
a7:f4:c0:ee:c0:d1:e1:5c:a4:34:e1:fa:a0:ee:85:
40:2d:54:03:d5:41:6e:e3:33:fe:d6:b3:40:3d:c9:
c1:87:29:cf:91:a9:8c:ea:af:46:5d:b1:af:44:93:
90:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4A:F2:6C:27:80:6D:FC:70:E3:BB:6C:8F:D7:14:C8:41:93:BE:4C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h0rybCeAbfxw47tsj9cUyEGTvkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
IPv6:
2a06:de01:d0::/44
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
72:6e:dc:38:a1:4d:d4:05:4a:62:5c:2a:32:cb:2d:4b:03:6c:
41:68:04:f6:b1:ba:9e:18:69:ef:b3:fb:0d:6f:f6:37:48:91:
62:37:fc:3b:6c:ee:a6:e3:77:bf:6d:ab:2c:67:3e:70:c5:b8:
b0:b7:d9:b9:97:8f:36:18:5c:4f:1e:ec:e1:f9:47:de:c8:f9:
ad:1c:94:9e:86:5e:17:cc:c6:95:47:92:92:7e:93:52:51:28:
33:2b:cb:c7:b3:fd:b6:be:82:25:e8:f3:25:18:be:17:21:56:
35:d3:d7:df:fb:e6:85:61:c2:40:90:e4:3e:ad:28:c9:68:71:
71:00:6a:36:e8:57:88:da:f6:a1:65:dd:26:98:45:ff:53:f3:
73:a0:24:b4:28:85:9e:ac:79:81:36:4c:ad:1a:77:62:6a:59:
34:58:6f:35:72:0c:98:0b:12:66:82:26:ea:a6:6f:ee:94:e3:
2e:a5:98:ac:3e:23:1e:41:f1:79:56:f9:32:1e:d1:e7:e4:e6:
61:4f:2a:f1:76:70:3a:c8:3e:24:f6:92:a9:1e:05:8d:d1:dc:
20:c5:c0:02:2d:29:07:8c:c1:68:16:1e:ef:50:b9:ad:8c:a0:
dc:a6:15:0e:28:00:e7:20:9e:4c:3c:c4:69:3c:07:d4:13:b5:
df:ae:b4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 18 20:33:00 2023 by rpki-client on console-fra.rpki-client.org