Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/7AWNNIqWus3QDX-9hlRvW92bZRc.roa
File: 7AWNNIqWus3QDX-9hlRvW92bZRc.roa (raw, json)
Hash identifier: lsmHSnuxQzEaupKAQUpCuaHfmnpkScbnAEAz77d8/qo=
Subject key identifier: EC:05:8D:34:8A:96:BA:CD:D0:0D:7F:BD:86:54:6F:5B:DD:9B:65:17
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018A4B4F4C8581ABED3185C77F54A1729B56
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/7AWNNIqWus3QDX-9hlRvW92bZRc.roa
Signing time: Thu 31 Aug 2023 11:16:42 +0000
ROA not before: Thu 31 Aug 2023 11:16:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 45.145.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:4f:4c:85:81:ab:ed:31:85:c7:7f:54:a1:72:9b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 31 11:16:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec058d348a96bacdd00d7fbd86546f5bdd9b6517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ed:93:57:c3:87:12:df:b5:88:40:7a:d3:c3:
be:5b:b2:2e:66:e3:4a:de:7f:d6:22:c1:0e:43:4c:
43:b4:9f:38:bb:5f:2b:5b:10:29:e1:c6:c8:5f:01:
59:d9:4e:5c:25:c1:e8:e6:64:f9:b2:a0:fe:03:e2:
13:48:67:6e:45:e3:4c:00:09:9e:1a:f2:ae:57:96:
c4:2d:a4:73:7d:38:9e:ba:9a:88:0b:18:99:97:83:
cc:2e:1f:41:b9:5e:1a:a8:4a:2a:cf:d9:11:af:d5:
87:8c:1d:00:f3:ad:15:69:c1:36:8b:d1:93:a9:18:
99:57:63:5e:62:95:b7:c7:72:a7:d0:c4:48:6b:12:
41:c4:6f:9d:1f:aa:65:84:76:c9:1b:6a:b6:9f:ed:
13:ac:4b:33:12:61:e6:d3:18:5c:9b:69:b1:0c:58:
c3:25:6f:43:ba:88:36:4b:2f:3b:10:9a:34:29:01:
32:cf:6a:f1:74:ed:82:10:ba:fe:fc:67:e5:80:84:
8e:7d:b0:5f:2b:9c:11:5c:f9:0d:bb:0a:0a:4c:b8:
43:db:3c:8c:72:97:55:a6:26:ca:9b:16:28:de:dd:
39:b7:0f:43:26:6f:c4:9d:4a:d3:d4:99:47:45:37:
d9:b4:40:55:74:3d:2c:8e:bf:0f:af:71:84:e3:62:
3b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:05:8D:34:8A:96:BA:CD:D0:0D:7F:BD:86:54:6F:5B:DD:9B:65:17
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/7AWNNIqWus3QDX-9hlRvW92bZRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.154.0/23
Signature Algorithm: sha256WithRSAEncryption
94:a2:8c:dc:db:31:9b:3d:27:8d:a1:7d:dc:d3:32:50:18:a3:
69:e8:87:56:1c:d3:85:84:81:9f:96:80:a3:96:71:81:32:7a:
c0:b9:e7:75:96:d4:c5:a0:ad:e8:16:84:a6:16:e9:61:50:5a:
59:f0:d3:c6:86:7b:db:36:1d:23:68:e4:6b:cb:77:ab:8b:ec:
f9:26:9d:56:3e:51:a0:58:3f:04:54:8e:67:33:5b:1c:bf:aa:
cb:a5:b6:ca:9e:85:a7:a1:bb:0a:40:c2:7d:1f:c0:7f:af:12:
c6:fb:a2:40:1c:76:37:38:da:5b:c9:40:c4:b2:ac:fa:a0:b2:
79:cf:0f:63:e0:20:bb:72:80:d5:a3:a3:83:4c:e1:bf:2c:c9:
66:43:7d:de:66:6a:a0:a8:82:d9:24:2d:1e:14:51:0f:03:aa:
97:57:36:39:f5:dd:df:e8:4f:de:7f:a7:26:92:c1:00:7b:e3:
be:1a:23:71:df:3c:9a:d3:2a:d7:d6:57:de:5e:77:23:b7:19:
87:64:f9:20:eb:a9:98:84:e0:36:c9:85:32:c1:cd:a7:4c:8c:
b9:04:26:03:10:37:cb:75:ae:19:cd:31:65:9a:7d:c3:00:21:
84:4a:38:79:bf:f3:fd:78:e9:a1:e9:46:9b:8b:5a:4d:47:64:
a2:ae:f6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 1 16:32:20 2023 by rpki-client on console-fra.rpki-client.org