Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/28P7ZEjdJ85cc44EoBYWLBloU84.roa
File: 28P7ZEjdJ85cc44EoBYWLBloU84.roa (raw, json)
Hash identifier: gTysUl85VklLJkt4S/Umfgsv8u08+wiVnmxV8HlgWSk=
Subject key identifier: DB:C3:FB:64:48:DD:27:CE:5C:73:8E:04:A0:16:16:2C:19:68:53:CE
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018A036C0257EB314D6BAD610F2F625B8FA7
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/28P7ZEjdJ85cc44EoBYWLBloU84.roa
Signing time: Thu 17 Aug 2023 12:15:24 +0000
ROA not before: Thu 17 Aug 2023 12:15:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.155.0/24 maxlen: 24
80.83.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 22:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:6c:02:57:eb:31:4d:6b:ad:61:0f:2f:62:5b:8f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 17 12:15:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbc3fb6448dd27ce5c738e04a016162c196853ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:80:e0:71:56:4e:d2:44:db:7e:73:4a:f8:fc:
df:4c:20:35:d2:e6:02:f1:4d:fd:88:7a:30:4b:2c:
af:50:84:e6:b9:22:02:3a:a1:e9:b9:41:15:f7:f7:
6e:5d:fd:a5:3b:38:fc:70:93:31:01:4a:a5:a6:a0:
66:af:b9:a3:09:4d:b2:d2:12:f1:e7:09:80:5c:4e:
80:6b:3f:4f:75:0b:33:0f:99:48:54:ff:1b:db:e5:
fd:a3:1d:fb:81:50:8a:1d:4e:d7:0b:19:b7:fb:89:
89:36:99:56:e7:0a:69:44:fd:3a:a7:42:74:48:37:
30:b8:f6:ff:d4:27:4b:1f:01:06:d9:22:a5:93:dc:
f2:4d:c3:6a:3f:43:4e:0d:20:87:f3:d5:9b:4b:26:
78:b8:ad:b1:49:e9:bc:e7:6f:28:6d:4d:9c:3d:b6:
22:46:c0:56:36:7e:6f:a4:c6:14:c3:af:61:ac:97:
2f:d2:01:60:2f:ad:98:bb:77:72:52:b5:a9:c8:37:
92:ea:14:b8:da:eb:71:bb:b6:2c:4e:ee:ae:b5:ed:
78:ba:5f:f0:ff:fd:2e:a4:37:f1:cf:db:2f:87:05:
2f:4b:41:a9:f0:bb:29:9f:e2:89:e2:4c:53:a8:95:
cc:44:aa:94:5a:92:61:9d:60:7c:3b:4c:0b:e5:af:
93:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C3:FB:64:48:DD:27:CE:5C:73:8E:04:A0:16:16:2C:19:68:53:CE
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/28P7ZEjdJ85cc44EoBYWLBloU84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.155.0/24
80.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:22:a4:40:6d:2d:49:98:36:14:a1:25:05:c1:bf:c4:ae:6d:
0c:a7:57:b0:bb:95:f3:e7:80:58:14:aa:d9:b8:1a:9f:46:5b:
a8:26:f2:aa:35:21:2a:b8:c8:9a:65:e8:9b:da:48:b4:e2:a6:
cb:d6:93:ef:ee:88:0a:60:6e:ba:d2:c7:32:16:58:83:f9:10:
48:04:89:29:21:68:c8:74:4b:6a:5b:06:bc:9f:c5:d0:34:28:
73:18:49:40:0f:75:03:79:11:ec:80:9d:e9:dd:c2:44:66:72:
49:c1:d8:3a:af:dd:3b:bd:12:7d:8e:80:6d:0d:16:ba:da:7c:
e1:62:1b:03:40:8e:67:2e:d9:f1:ed:52:b5:4c:21:09:38:6e:
d8:aa:d0:8b:8d:aa:c0:83:9b:9f:19:7a:5a:83:1c:a9:0c:6f:
a8:52:ad:e0:ce:18:b1:79:14:5a:31:fb:49:eb:41:fa:43:3e:
1c:04:a6:18:c4:cf:e0:39:dc:60:40:bb:cb:b0:c9:72:92:2f:
53:48:7d:00:24:5b:3d:6f:1a:97:59:40:93:51:1c:d5:3e:21:
49:5e:1c:2e:33:0a:35:ba:dc:c2:29:f1:d9:f6:a3:10:42:1e:
96:4e:ff:9c:8c:3d:9c:ea:ce:01:78:cd:dc:d7:c9:98:31:92:
56:f2:b7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org