Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/pOYmURA7et1tJ730xsQ6LPlahos.roa
File: pOYmURA7et1tJ730xsQ6LPlahos.roa (raw, json)
Hash identifier: 7/ow24yHzuP8nwy4b8Om5w2tY0Kt4PjMdq6F8hNDnx4=
Subject key identifier: A4:E6:26:51:10:3B:7A:DD:6D:27:BD:F4:C6:C4:3A:2C:F9:5A:86:8B
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 018570028AA68D779975E65DE575DEF5B4A2
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/pOYmURA7et1tJ730xsQ6LPlahos.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.145.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8a:a6:8d:77:99:75:e6:5d:e5:75:de:f5:b4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4e62651103b7add6d27bdf4c6c43a2cf95a868b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f7:8a:85:72:92:12:bc:98:92:3d:d6:0d:d6:
9a:94:e1:73:67:01:34:a3:a0:49:d5:d6:fa:3f:91:
cb:42:3e:cd:d9:d7:66:b2:88:e6:68:ee:ed:56:ee:
ad:ae:3e:c0:03:f4:cf:97:8e:cc:9b:10:3b:8d:0d:
ee:80:26:75:58:d5:23:ac:4c:93:4c:ac:bc:66:bb:
c6:f2:05:66:c8:0d:4d:13:c4:1a:e8:1a:f5:52:48:
f7:6a:1c:38:bb:1a:51:d7:72:c0:25:83:61:25:ff:
b1:ec:ac:db:32:f8:ac:4e:c8:f8:ba:30:fb:53:04:
19:fe:ba:0d:13:52:ca:d4:60:38:3b:a8:76:eb:f8:
30:7a:2c:b5:59:78:d3:27:f8:48:06:3c:35:06:26:
ae:46:4f:a7:18:4e:8e:8d:9e:13:a2:7f:33:7d:e6:
77:60:15:37:39:8f:6e:9f:0e:c7:81:cc:52:db:cd:
b7:a2:32:90:ee:68:47:6d:1e:ef:4f:8d:55:f6:8e:
0c:27:d6:12:cf:10:67:47:eb:ec:b0:b1:84:82:5a:
bb:b3:ca:4c:75:fc:d0:4b:98:17:79:f2:25:90:91:
48:21:2e:04:c0:3c:8d:0f:af:2a:54:37:e4:7f:72:
f9:e5:e3:55:39:d1:88:c9:b0:e8:be:fa:84:69:b5:
d6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E6:26:51:10:3B:7A:DD:6D:27:BD:F4:C6:C4:3A:2C:F9:5A:86:8B
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/pOYmURA7et1tJ730xsQ6LPlahos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.232.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:cb:75:dc:71:6f:6c:c3:d9:c7:b8:bc:34:1a:d0:49:94:6d:
95:93:cc:cd:5e:a3:cc:41:9d:54:57:01:ce:83:07:f0:72:f2:
bb:eb:cf:73:ef:a0:1f:b0:b7:89:c9:49:78:be:c2:c7:96:01:
6f:97:f2:bc:b5:f2:ed:fc:1e:a6:0f:d2:b2:13:25:38:84:16:
90:5b:2e:f9:36:8b:49:26:53:d2:2f:9d:0c:61:e2:28:48:9e:
6f:b5:02:eb:6b:f7:dc:d8:dd:19:2d:ec:ac:c7:71:2f:35:ba:
d1:f8:ae:46:b4:24:bf:97:a4:cc:6b:f3:56:bd:42:67:79:b0:
a2:d9:b8:dc:d1:a9:07:51:5b:7d:12:40:6d:53:22:eb:8e:a2:
0b:b4:1e:d4:d2:81:c8:3f:d2:20:8f:3e:25:4f:94:83:7b:e6:
1d:c6:14:7c:3d:cc:3b:41:a2:03:87:e1:77:77:57:75:03:ed:
82:f0:c5:dd:3c:26:70:64:30:f4:61:aa:36:fc:d2:80:89:b8:
29:ea:1a:fd:1b:a6:ed:02:dc:ba:03:6f:49:72:8a:74:74:c3:
77:93:46:c3:97:1a:6a:ee:92:a1:72:78:20:16:5f:38:1e:21:
22:2c:a5:f2:d4:87:e6:5d:d2:8d:dd:ff:a1:b5:83:94:60:56:
0d:e0:99:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-ams.rpki-client.org