Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5q8Qht62WCDIHo8pH2KcVJuk8UQ.roa
File: 5q8Qht62WCDIHo8pH2KcVJuk8UQ.roa (raw, json)
Hash identifier: Bt2qlKFtmzu53c3EY8jLN8u1YF4RkT26ahhlbmayRe4=
Subject key identifier: E6:AF:10:86:DE:B6:58:20:C8:1E:8F:29:1F:62:9C:54:9B:A4:F1:44
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01860C93CAFD27091131DEC7F2E342B3109C
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5q8Qht62WCDIHo8pH2KcVJuk8UQ.roa
Signing time: Wed 01 Feb 2023 10:44:17 +0000
ROA not before: Wed 01 Feb 2023 10:44:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212168
IP address blocks: 45.151.69.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:93:ca:fd:27:09:11:31:de:c7:f2:e3:42:b3:10:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Feb 1 10:44:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6af1086deb65820c81e8f291f629c549ba4f144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cc:3f:85:59:84:11:9f:8e:61:1d:15:e3:04:
8f:01:49:0f:0b:ba:13:2f:a1:84:82:80:1c:ef:ae:
41:c0:f2:60:45:09:de:ff:12:e0:39:6b:14:fe:c9:
39:77:ab:86:78:db:4c:4e:02:50:fe:9d:84:2b:35:
df:cc:97:14:ac:49:ca:90:91:56:ea:7e:31:b1:dd:
f1:bf:f9:8d:e3:76:99:e4:09:8c:f4:13:19:0d:de:
af:ca:e1:6e:a9:84:be:5e:a8:8f:58:b0:98:1e:9a:
d1:bb:ac:11:6b:34:77:0a:31:57:76:a9:3f:d7:83:
69:08:82:65:fb:29:fa:f7:c4:78:ee:89:91:4a:25:
f4:6d:50:36:b8:b3:71:39:ba:c4:e9:11:09:c4:37:
5b:dd:d3:ba:8f:a4:f6:7c:8f:d3:87:27:58:cc:05:
6d:d8:00:32:10:1a:96:ca:69:8d:d4:79:30:d8:aa:
d6:49:bd:83:b7:2d:e9:f2:f0:59:21:a3:fd:18:90:
40:5d:33:a1:bb:5a:e9:e0:7a:ba:ff:45:5c:a3:85:
24:a7:1a:11:00:05:4c:4a:04:b4:80:78:87:5f:f2:
35:7d:93:d0:86:12:58:cd:88:a1:fa:3e:95:69:29:
7c:78:95:ac:9d:40:7d:81:c4:5d:c3:1b:98:17:87:
ed:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AF:10:86:DE:B6:58:20:C8:1E:8F:29:1F:62:9C:54:9B:A4:F1:44
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5q8Qht62WCDIHo8pH2KcVJuk8UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.69.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e3:1c:18:9b:ed:4d:59:db:8b:87:96:91:ef:08:46:e0:00:
e7:fb:20:31:14:3a:51:e4:ab:09:27:24:fd:87:87:b4:1a:b3:
18:47:a4:45:ab:9c:1f:cb:ff:33:44:91:11:48:62:61:5e:ba:
4b:91:c5:5b:74:34:77:86:35:41:0a:50:05:79:8e:c8:d6:72:
b6:5c:f8:83:df:e8:08:1f:33:e0:22:db:c0:f9:8c:5a:3a:9c:
1e:9c:a2:05:02:16:21:a6:b7:6e:d6:48:9d:53:c9:cd:08:16:
1c:03:df:9e:d4:85:55:9f:19:58:b8:8d:d1:71:66:79:28:d3:
ae:1b:a0:5d:96:6f:78:ac:75:fc:ac:a5:22:60:3a:54:5b:13:
6f:ab:f0:91:e5:1e:9f:53:90:4f:0c:15:b7:2d:b4:0b:5c:fd:
7a:a8:bc:fd:03:c6:9b:96:de:ec:8b:cf:2c:4a:05:a7:16:21:
6e:12:72:b5:31:14:b3:e1:64:39:d1:3e:ca:ab:af:d0:f9:7b:
ed:f4:96:6c:58:b9:5c:59:43:23:02:16:3a:cb:dc:cf:87:c8:
36:9e:10:14:82:28:20:6e:b5:a8:bb:e8:fb:78:bd:87:07:db:
48:10:e3:72:4f:ed:fe:ff:23:dd:2f:aa:be:da:b7:fa:3b:8d:
44:e3:65:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org