Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/df140a-0ac3-4105-b83a-051886d0ed4e/1/68dfRHa9-jDT_GC58lXpjQV91eQ.roa
File: 68dfRHa9-jDT_GC58lXpjQV91eQ.roa (raw, json)
Hash identifier: PWn/ojMxacLPX5GORK32mtNTMah//C4VEqL+E7JLq1I=
Subject key identifier: EB:C7:5F:44:76:BD:FA:30:D3:FC:60:B9:F2:55:E9:8D:05:7D:D5:E4
Certificate issuer: /CN=955fcf92798a9dbb30abd2b9fa29bfa8804220f3
Certificate serial: 0185C9D873CBB3C788C22999C5441FACF6DD
Authority key identifier: 95:5F:CF:92:79:8A:9D:BB:30:AB:D2:B9:FA:29:BF:A8:80:42:20:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lV_PknmKnbswq9K5-im_qIBCIPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/df140a-0ac3-4105-b83a-051886d0ed4e/1/68dfRHa9-jDT_GC58lXpjQV91eQ.roa
Signing time: Thu 19 Jan 2023 11:44:43 +0000
ROA not before: Thu 19 Jan 2023 11:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209433
IP address blocks: 45.86.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:d8:73:cb:b3:c7:88:c2:29:99:c5:44:1f:ac:f6:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=955fcf92798a9dbb30abd2b9fa29bfa8804220f3
Validity
Not Before: Jan 19 11:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebc75f4476bdfa30d3fc60b9f255e98d057dd5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:33:6b:99:a3:b4:e1:a5:d6:e1:32:4f:98:
8a:59:ca:af:16:19:a9:73:02:60:59:b4:70:25:4b:
c2:91:22:52:a7:6f:08:2d:e3:4a:50:f0:39:4d:80:
74:34:b4:1c:40:50:1f:dc:e7:38:30:b7:4d:ae:e8:
79:72:aa:ea:21:80:97:b2:1c:00:23:7a:3d:6d:03:
9f:a7:b3:d1:b2:e5:51:c5:66:10:ed:27:5d:0a:d7:
84:b3:e4:22:0c:f3:0b:09:f6:27:ab:f5:e4:2f:a4:
db:91:05:a4:b8:75:05:af:a4:03:07:b6:c0:10:6e:
fb:f3:e1:6c:0d:9c:01:a5:47:bc:75:65:62:66:a4:
ca:eb:e0:18:d7:2c:ff:a0:96:1c:ac:63:06:af:d5:
8e:de:33:28:b0:74:14:54:47:9b:d4:51:ae:a3:96:
59:cc:2b:79:34:e2:f6:8f:d4:2c:bf:05:9f:27:29:
ff:01:15:eb:42:c7:5a:5b:2e:37:03:e6:3c:56:0e:
33:c4:fa:b6:f1:9b:b5:72:10:82:0b:13:93:de:d1:
25:d8:f9:96:04:45:44:3c:83:26:a2:a9:2c:fd:9a:
e2:bb:83:8b:55:80:9e:0b:ba:1a:b7:6b:99:4d:ba:
d6:3d:a8:bf:d6:0a:d1:22:a6:7c:be:dd:d0:36:9f:
08:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C7:5F:44:76:BD:FA:30:D3:FC:60:B9:F2:55:E9:8D:05:7D:D5:E4
X509v3 Authority Key Identifier:
keyid:95:5F:CF:92:79:8A:9D:BB:30:AB:D2:B9:FA:29:BF:A8:80:42:20:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lV_PknmKnbswq9K5-im_qIBCIPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/df140a-0ac3-4105-b83a-051886d0ed4e/1/68dfRHa9-jDT_GC58lXpjQV91eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/df140a-0ac3-4105-b83a-051886d0ed4e/1/lV_PknmKnbswq9K5-im_qIBCIPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.136.0/24
Signature Algorithm: sha256WithRSAEncryption
45:cf:61:92:eb:4b:af:0d:bc:28:b2:18:ba:9c:0b:12:f4:a4:
9a:68:4c:34:c7:a4:98:8f:43:4b:a0:4e:4d:50:dd:94:04:c6:
a6:82:cf:ec:8e:53:5a:4f:28:e9:df:ba:72:27:28:a0:ac:0c:
ab:88:14:1a:9c:ac:01:be:0f:8d:03:12:8c:5c:14:8e:98:22:
31:aa:bf:cb:28:41:0d:fe:30:08:31:19:70:49:78:c0:98:f2:
c5:63:fa:26:e4:aa:e7:34:34:fc:e2:28:ab:6e:f7:1b:b5:f3:
37:dc:56:92:28:f1:ec:00:59:36:57:06:fb:65:86:2a:ea:b5:
1a:21:6b:f5:40:52:a7:ef:5b:19:a1:7a:42:fb:cb:0b:9b:a4:
9d:b2:72:e5:31:f2:56:4e:83:9a:f1:19:59:bd:ab:d4:a2:b7:
42:e7:39:19:f1:fc:fe:54:3c:58:cb:0b:00:72:d4:24:93:4a:
4a:9f:04:db:e1:2d:67:1c:0e:bb:d6:f5:d9:1a:32:85:20:35:
4a:62:cf:03:3d:e2:d0:99:ff:7f:27:26:2f:87:f4:2f:7a:1b:
60:0b:cf:16:80:92:85:90:f7:6e:cb:5a:5d:d3:3d:da:07:82:
30:81:f9:6b:09:01:b2:c5:60:21:64:35:59:41:e0:56:3b:35:
8e:2c:56:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:37 2024 by rpki-client on console-fra.rpki-client.org