Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/4HHKJWc_el0JShEDusVn9SyWdmg.roa
File: 4HHKJWc_el0JShEDusVn9SyWdmg.roa (raw, json)
Hash identifier: SwFEXMBWU9lpwt27dlgjiZh/vZiNMYvG/lgRLU4qD5U=
Subject key identifier: E0:71:CA:25:67:3F:7A:5D:09:4A:11:03:BA:C5:67:F5:2C:96:76:68
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018BA0655173BDACE743F280C4209C92AE73
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/4HHKJWc_el0JShEDusVn9SyWdmg.roa
Signing time: Sun 05 Nov 2023 16:51:16 +0000
ROA not before: Sun 05 Nov 2023 16:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a0:65:51:73:bd:ac:e7:43:f2:80:c4:20:9c:92:ae:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Nov 5 16:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e071ca25673f7a5d094a1103bac567f52c967668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0a:b6:ec:70:f8:a9:59:35:aa:98:bd:ee:25:
9f:62:d3:17:2d:1c:8f:9c:0e:14:7d:59:66:18:98:
fa:b5:f6:aa:5f:1f:da:c9:fd:bf:8b:30:dc:22:8a:
6e:1b:4f:7f:5f:aa:00:5f:80:f9:01:63:43:e1:dd:
15:ce:6f:52:07:e7:18:48:32:90:29:02:ac:e4:35:
bb:c1:29:1a:00:f9:6d:53:26:52:7e:20:82:bf:74:
cd:f4:54:aa:e1:af:c3:a5:1e:f5:a3:3b:55:a2:d2:
36:fa:0e:60:7d:42:42:f8:c8:fd:9b:94:6d:12:48:
e4:30:cf:65:6e:6d:d3:08:1b:32:d8:ce:8f:f3:34:
01:2d:ef:89:90:e6:05:6a:f3:28:c7:da:70:84:cb:
69:4b:ca:fb:9f:07:64:1e:4a:e8:6b:04:1c:68:c2:
1b:50:6e:d9:46:b4:8f:f1:d2:2f:e1:30:4f:bd:cf:
fb:89:f3:f7:a9:53:a5:1b:ae:ad:15:af:67:ee:98:
6e:1d:54:ed:be:6b:d6:7e:a0:d0:67:34:2a:a3:1a:
99:fc:9a:a5:61:a7:22:3d:e5:8a:e1:43:91:11:92:
88:74:a5:34:0a:0c:74:b9:49:6e:04:fc:e1:0b:1d:
47:c2:a7:a3:67:30:aa:34:40:81:8a:68:38:e9:6e:
5d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:71:CA:25:67:3F:7A:5D:09:4A:11:03:BA:C5:67:F5:2C:96:76:68
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/4HHKJWc_el0JShEDusVn9SyWdmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c1:d7:77:16:df:cf:ea:03:74:e7:30:1f:c7:e2:58:60:8d:
4c:36:64:6c:13:33:7e:2c:70:42:50:c4:76:d5:75:0a:0d:29:
c0:99:8c:11:e4:c9:26:c8:77:e4:ba:8e:d6:42:41:84:af:f6:
5c:9f:21:18:b7:6d:12:6a:5a:a8:31:1f:e9:b7:89:1c:21:99:
ac:9a:18:2b:45:2e:9d:30:bb:99:f6:35:39:e8:3b:35:ee:12:
cc:49:61:9c:ba:a9:11:4f:da:ff:1b:92:75:09:fa:f7:66:d3:
ed:a1:00:5b:63:5d:53:48:f5:7f:1c:29:22:c1:38:91:14:4d:
0c:f5:15:87:cc:f8:f0:7a:a4:27:d6:21:96:45:de:56:4f:ff:
7a:af:2b:96:12:be:f3:6e:ee:61:09:84:2e:84:19:5e:e9:3d:
df:b0:d9:61:f3:d0:c8:c0:e6:6e:c4:71:40:28:d5:72:5e:34:
e0:e2:58:b3:90:d7:9d:ee:dc:24:be:82:51:fc:06:22:c0:22:
35:f5:b8:c7:33:db:81:69:4e:6c:2a:7c:38:10:29:6f:df:ff:
9e:cb:ae:4e:24:12:31:a4:52:88:82:0d:f5:30:99:f6:1c:5a:
6f:81:57:e1:e8:e3:3f:32:a6:02:7b:c6:4d:93:50:c9:4f:36:
0d:bf:ad:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 26 00:38:51 2023 by rpki-client on console-fra.rpki-client.org