Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/18al0JLBK2Jk8g1EquCFWeT8Qxg.roa
File: 18al0JLBK2Jk8g1EquCFWeT8Qxg.roa (raw, json)
Hash identifier: Q4JvWw1zYi6ylnBFIql8RmIPl23/Z0M7jUOAqH9DIBk=
Subject key identifier: D7:C6:A5:D0:92:C1:2B:62:64:F2:0D:44:AA:E0:85:59:E4:FC:43:18
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01856F42CB9CCC4389E73E47642EC97F9293
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/18al0JLBK2Jk8g1EquCFWeT8Qxg.roa
Signing time: Sun 01 Jan 2023 21:35:26 +0000
ROA not before: Sun 01 Jan 2023 21:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204687
IP address blocks: 45.88.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cb:9c:cc:43:89:e7:3e:47:64:2e:c9:7f:92:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 21:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7c6a5d092c12b6264f20d44aae08559e4fc4318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ff:5f:78:ed:7d:fd:61:db:f5:75:41:1e:a6:
79:ac:9b:5b:8f:40:a4:6c:a7:7b:5c:d1:9a:79:76:
cd:0c:e8:38:93:b7:83:69:5e:ff:71:0c:e3:55:46:
78:23:90:b5:d4:00:43:fa:ee:87:d7:61:8c:9b:fb:
7a:48:d2:b5:0b:44:45:79:93:f2:73:e1:12:ee:fd:
f2:e2:25:6d:c1:da:53:9f:30:5a:d8:ba:23:8f:ae:
d3:1a:39:e7:11:38:69:b5:45:a8:b8:51:69:88:75:
b3:df:ca:c2:78:74:42:1a:7c:80:d0:a3:13:d1:fc:
60:18:6a:ab:6e:ff:08:e8:0e:14:83:d9:b5:e9:73:
ed:8c:71:48:a7:3a:8e:75:8a:af:c1:89:7c:2d:76:
5c:87:35:bf:3a:3d:da:8a:a4:90:da:a7:9f:a4:b5:
fd:78:bd:d3:29:84:c7:bf:ed:da:73:fe:7d:5f:92:
55:69:f9:44:0b:0e:eb:e5:21:a2:4a:34:db:b5:a6:
e6:9c:05:f6:bb:32:d2:7b:dd:24:65:33:3a:11:4d:
c5:fc:8f:2d:37:48:3d:3b:11:28:62:c3:4f:01:0e:
71:ad:40:16:39:85:8f:07:a3:ec:d0:fc:bf:2b:de:
81:38:1c:8f:cc:b5:ea:6e:44:38:94:7b:ce:dc:3d:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C6:A5:D0:92:C1:2B:62:64:F2:0D:44:AA:E0:85:59:E4:FC:43:18
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/18al0JLBK2Jk8g1EquCFWeT8Qxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.187.0/24
Signature Algorithm: sha256WithRSAEncryption
16:0d:ac:87:31:3a:d6:eb:31:27:cd:77:8c:c9:2f:79:f8:b6:
f1:2e:c3:d7:b3:0c:43:c8:54:c1:31:83:9e:68:7a:5f:85:51:
74:0f:a7:2c:3e:82:4c:8a:97:69:91:0a:1a:69:d6:d8:ec:e6:
1d:a8:14:79:ae:14:c1:58:71:db:01:5f:cf:99:c1:18:7b:71:
81:da:11:0b:4a:a4:67:4d:92:8e:23:1c:93:38:9b:37:af:91:
ff:f4:4d:9a:83:28:f4:f2:40:36:13:38:2b:45:1b:80:3b:d6:
19:ba:8c:3e:fd:41:96:f1:3e:df:2b:ef:ca:01:09:c6:db:d2:
f0:5e:cf:2a:f3:3c:3f:a2:b2:27:c9:df:42:25:f4:7a:15:42:
b8:04:75:91:85:c1:be:bf:98:80:d1:3f:43:08:84:f9:e1:1d:
cd:a0:50:46:7f:88:4f:7a:5d:0e:47:a4:6d:b2:78:f8:87:40:
2c:1c:2b:e7:c0:d2:41:39:cc:73:82:d1:9a:20:fa:f3:d8:39:
ee:cc:a1:ed:d8:5e:16:bf:c5:67:c5:9d:68:7b:27:a5:5a:e6:
f4:2c:a1:bb:0c:79:18:c3:6a:aa:de:24:3e:3b:4c:3f:d7:68:
cc:24:8c:a3:a7:6a:2c:1d:9a:34:0b:30:59:76:be:6a:28:a6:
75:01:33:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org