Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/qPcQk0BxP3UKtjrqpUHFwQVSGQQ.roa
File: qPcQk0BxP3UKtjrqpUHFwQVSGQQ.roa (raw, json)
Hash identifier: beVpCPpNvAemj4QCuDwY6Fbpr53AjCchp9cuqgO70PA=
Subject key identifier: A8:F7:10:93:40:71:3F:75:0A:B6:3A:EA:A5:41:C5:C1:05:52:19:04
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FDD00EEE667B52D79696C7EA1827F
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/qPcQk0BxP3UKtjrqpUHFwQVSGQQ.roa
Signing time: Sun 01 Jan 2023 21:14:45 +0000
ROA not before: Sun 01 Jan 2023 21:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41378
IP address blocks: 45.9.8.0/24 maxlen: 24
45.9.8.0/22 maxlen: 24
45.9.9.0/24 maxlen: 24
45.9.10.0/24 maxlen: 24
45.9.11.0/24 maxlen: 24
2a0e:aa00:100::/44 maxlen: 48
2a0e:aa00:300::/44 maxlen: 48
2a0e:aa00:200::/44 maxlen: 48
2a0e:aa00:120::/44 maxlen: 48
2a0e:aa00:220::/44 maxlen: 48
2a0e:aa00:140::/44 maxlen: 48
2a0e:aa02::/32 maxlen: 48
2a0e:aa00:110::/44 maxlen: 48
2a0e:aa00:310::/44 maxlen: 48
2a0e:aa00:210::/44 maxlen: 48
2a0e:aa00:130::/44 maxlen: 48
2a0e:aa00:230::/44 maxlen: 48
2a0e:aa00:aa00::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:dd:00:ee:e6:67:b5:2d:79:69:6c:7e:a1:82:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8f7109340713f750ab63aeaa541c5c105521904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:44:2a:13:ce:dc:63:b4:f9:42:b6:0f:54:61:
55:33:c2:6b:33:3f:b7:b2:d4:69:f1:ee:ee:5b:d3:
0e:4a:db:bf:b5:eb:81:e6:07:53:e4:c3:7e:63:13:
c0:d3:c8:ec:ba:4c:0a:e9:6c:87:d3:64:ab:96:5c:
4c:8c:0d:4f:f5:7d:25:00:87:04:90:70:be:4f:3a:
d6:04:30:b3:c5:02:bb:f2:67:8a:ee:cf:43:0b:5d:
27:4f:bf:be:b4:9a:3d:5b:14:af:a8:b8:36:b0:86:
a8:d3:e7:de:07:82:f0:f1:c8:22:f9:a6:a6:87:c9:
db:44:70:e9:84:e3:f1:69:78:57:9d:21:44:70:4c:
08:b2:df:c9:25:f4:b4:17:56:3e:e4:86:b3:58:2b:
9f:1a:d6:8f:c6:8a:6d:53:22:5e:c3:14:b0:11:6d:
10:3e:4e:f4:1c:aa:af:c3:0c:c7:7a:a8:8f:07:40:
23:99:40:38:cc:f6:fe:07:af:27:86:63:61:61:24:
4b:aa:ae:83:1d:f7:b3:46:03:f5:be:13:83:24:79:
7d:d7:1e:4b:12:dd:ec:00:9d:d5:e3:d8:82:af:1d:
ec:05:21:ca:6b:a9:03:ca:fa:04:8f:51:e4:f3:70:
99:a9:97:a4:30:35:e5:e5:e0:b1:97:5a:5a:22:d1:
3e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F7:10:93:40:71:3F:75:0A:B6:3A:EA:A5:41:C5:C1:05:52:19:04
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/qPcQk0BxP3UKtjrqpUHFwQVSGQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/22
IPv6:
2a0e:aa00:100::-2a0e:aa00:14f:ffff:ffff:ffff:ffff:ffff
2a0e:aa00:200::/42
2a0e:aa00:300::/43
2a0e:aa00:aa00::/40
2a0e:aa02::/32
Signature Algorithm: sha256WithRSAEncryption
b8:f3:08:16:cc:98:8d:fa:fd:7b:ba:2e:20:65:6b:ff:9c:f1:
11:40:19:c9:16:8d:1d:5f:7a:f0:a8:0b:dc:e0:ec:2c:48:fb:
bf:20:6a:72:6d:6c:f6:52:68:21:c9:a9:a7:ea:a5:82:62:80:
ca:09:17:70:0d:c5:7a:52:b5:1d:4c:13:24:dc:ae:0b:e5:f4:
16:3f:db:33:94:24:5d:4c:f1:db:fb:90:45:e7:66:f7:cc:65:
31:d2:e9:aa:35:16:f7:ed:ad:2c:bf:8b:81:a7:d4:12:2c:7a:
ec:1f:1f:f3:1b:1d:47:52:e4:62:78:4e:98:3f:97:1c:a6:e0:
a2:c7:7a:f3:58:69:87:ab:69:71:f3:a8:89:24:e1:79:53:5f:
0f:29:87:87:2e:41:ea:bc:c6:95:2e:93:74:20:50:6a:89:14:
30:33:f3:3a:eb:8f:0d:42:00:a2:ea:ec:34:d8:79:bd:9b:ef:
47:55:32:d9:33:c6:08:71:6b:9e:8d:ab:6f:cd:2a:b2:10:94:
38:ac:28:09:55:5d:4a:f0:ad:a0:bb:d6:37:a7:b0:73:4f:05:
e2:e7:43:9e:14:62:4a:fe:e9:75:3e:80:99:9d:3b:8e:f8:d0:
82:c4:f1:f6:e5:2a:71:b5:9a:97:41:67:9b:38:d0:dd:d0:70:
2f:3a:4d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 16 05:47:25 2023 by rpki-client on console-ams.rpki-client.org