Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/imIof74WHB9G23dybVI1RbykqY0.roa
File: imIof74WHB9G23dybVI1RbykqY0.roa (raw, json)
Hash identifier: BjQMlNK1tYHwGvI2f99ymiMwjrt3I++eq8SihdrdyoE=
Subject key identifier: 8A:62:28:7F:BE:16:1C:1F:46:DB:77:72:6D:52:35:45:BC:A4:A9:8D
Certificate issuer: /CN=e0afb160a97338ab21114840addc6180a5ba42b1
Certificate serial: 01856F391C7482334BE928ACE11A09F97BFC
Authority key identifier: E0:AF:B1:60:A9:73:38:AB:21:11:48:40:AD:DC:61:80:A5:BA:42:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4K-xYKlzOKshEUhArdxhgKW6QrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/imIof74WHB9G23dybVI1RbykqY0.roa
Signing time: Sun 01 Jan 2023 21:24:51 +0000
ROA not before: Sun 01 Jan 2023 21:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24586
IP address blocks: 45.153.84.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:1c:74:82:33:4b:e9:28:ac:e1:1a:09:f9:7b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0afb160a97338ab21114840addc6180a5ba42b1
Validity
Not Before: Jan 1 21:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a62287fbe161c1f46db77726d523545bca4a98d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:19:4c:fd:67:00:13:ad:0c:80:b1:16:a3:
93:be:9a:68:86:18:61:4f:a1:2a:98:82:80:fb:22:
29:5a:94:c8:7a:61:e6:cc:e7:6e:49:10:e1:85:fd:
fa:86:c9:59:83:5d:9d:03:57:86:bf:99:03:9a:0e:
c1:03:9e:92:74:3a:7b:53:2a:2e:65:e6:21:79:4a:
90:74:c6:90:ef:8c:ac:90:af:19:62:ec:b9:dc:21:
3b:79:c2:ee:ce:26:6f:36:7e:60:c0:aa:6b:10:b4:
32:13:fd:30:fd:b7:b9:00:3d:56:03:dc:6a:39:21:
73:83:98:9e:19:89:58:cf:01:c2:20:35:ba:b2:9a:
af:fa:0c:89:62:21:f0:87:a4:73:fe:82:18:d0:b3:
9e:b2:39:fb:84:ca:7a:2a:2a:85:4f:74:b5:90:06:
89:7d:ac:cc:6a:fe:54:1b:52:80:44:49:ac:3f:7f:
95:d7:7b:b6:2f:d5:68:27:c4:7d:c0:fd:5f:51:b6:
d7:39:c4:4b:db:fb:ef:80:fc:4a:59:33:78:cc:17:
56:87:c4:76:c1:e3:1a:26:69:ae:f7:d1:19:f4:16:
38:c6:9b:c1:1d:48:3b:5a:21:c1:bd:09:d3:11:a8:
48:37:29:fa:29:7d:0a:d2:96:e5:3c:6b:a3:c6:b5:
ec:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:62:28:7F:BE:16:1C:1F:46:DB:77:72:6D:52:35:45:BC:A4:A9:8D
X509v3 Authority Key Identifier:
keyid:E0:AF:B1:60:A9:73:38:AB:21:11:48:40:AD:DC:61:80:A5:BA:42:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4K-xYKlzOKshEUhArdxhgKW6QrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/imIof74WHB9G23dybVI1RbykqY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/4K-xYKlzOKshEUhArdxhgKW6QrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:1f:17:e0:e5:ff:98:af:da:01:53:1d:a7:b4:17:26:f7:79:
36:e3:84:c0:33:27:29:5c:fb:30:e4:69:e7:ea:6f:82:a7:7d:
f8:46:bc:9b:90:7f:f0:23:60:62:38:9e:cc:2b:ac:56:30:ad:
86:46:92:f1:45:f6:28:ae:37:66:38:1b:36:1a:98:0e:0d:65:
fa:ba:bc:d7:44:e4:92:6d:e2:de:00:49:20:cb:15:e3:84:d6:
b8:50:ca:7d:b9:10:bf:e7:54:67:ec:d1:e4:f5:53:07:f3:96:
c5:ea:b9:ed:45:4c:f1:c4:11:e0:16:71:b3:f8:6b:e2:08:73:
5b:70:4e:e5:02:1c:46:6c:34:fd:9a:a6:28:93:0d:18:87:f6:
f6:8e:ff:dd:2f:a4:1e:14:82:49:55:3e:16:71:1a:9d:10:30:
0c:7c:54:17:2f:e0:8c:ca:c5:e5:bc:48:d9:4d:1c:aa:8f:ca:
5a:57:17:63:7d:c9:87:e1:7f:61:55:05:61:4c:ad:1d:96:d4:
4b:2a:72:57:c6:7c:1b:90:2d:ed:b9:41:1b:6a:3e:4a:9e:ea:
35:1b:50:e4:fc:2f:08:10:9d:dd:03:bb:58:bd:da:fb:e2:34:
12:9b:cd:db:97:ac:f1:f1:61:55:f8:4e:21:22:28:d6:b0:f9:
30:f0:b9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:15 2024 by rpki-client on console-fra.rpki-client.org