Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/csJoXMipbmsPrJHtonEkFFbsIjA.roa
File: csJoXMipbmsPrJHtonEkFFbsIjA.roa (raw, json)
Hash identifier: CneXEpKbREImWyhxmozZvbh4/eKYogmfVQgXjg/PIaM=
Subject key identifier: 72:C2:68:5C:C8:A9:6E:6B:0F:AC:91:ED:A2:71:24:14:56:EC:22:30
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0189184D7B2E30CBF7904262144A2FFB111F
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/csJoXMipbmsPrJHtonEkFFbsIjA.roa
Signing time: Sun 02 Jul 2023 20:31:18 +0000
ROA not before: Sun 02 Jul 2023 20:31:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.152.0/23 maxlen: 23
45.145.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:18:4d:7b:2e:30:cb:f7:90:42:62:14:4a:2f:fb:11:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 2 20:31:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72c2685cc8a96e6b0fac91eda271241456ec2230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:50:ff:ed:e9:d9:ac:51:4c:0b:68:ff:ae:17:
2a:78:8f:6d:1d:de:b7:4c:31:82:af:5e:94:c7:89:
5e:c8:4c:ac:ec:46:ea:0e:4a:cc:88:9f:01:e6:2c:
5e:50:b6:0e:e3:d6:47:ed:dc:67:06:8d:4d:23:a5:
18:2d:f9:3b:e5:67:2c:d0:35:4a:ec:d3:d3:41:93:
04:fe:9a:4a:02:41:ee:b4:23:9b:d5:16:dd:70:91:
12:8f:4f:39:a9:a3:f4:d2:1b:ce:7a:cd:03:e9:68:
5b:08:64:b1:f1:35:2d:09:69:cd:f4:18:6a:a6:09:
1c:0b:29:6e:a9:e8:97:c5:47:98:91:b9:95:a3:6d:
50:84:2a:81:01:01:8f:c5:a7:68:0d:a5:88:7c:8e:
88:73:1c:7f:ad:09:7d:59:bb:de:dd:6f:0b:f8:76:
2e:67:30:c8:f0:c2:40:af:bb:98:2b:00:b7:27:67:
6e:c0:8d:db:42:ef:99:7c:a9:25:b1:cd:0f:9e:f5:
dc:25:d3:32:5f:25:f2:a4:1d:27:11:5e:c0:74:41:
1b:b4:60:96:00:bf:58:a5:f7:7f:39:03:46:4a:f4:
bc:d7:13:e2:ed:30:35:f5:09:35:5d:ef:ca:c3:a8:
4f:66:fc:db:d7:57:aa:3e:9e:51:7f:c3:4e:8a:4b:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C2:68:5C:C8:A9:6E:6B:0F:AC:91:ED:A2:71:24:14:56:EC:22:30
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/csJoXMipbmsPrJHtonEkFFbsIjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/22
Signature Algorithm: sha256WithRSAEncryption
23:d0:7a:4d:64:2c:59:bf:c1:ed:cd:db:35:33:76:24:41:d0:
78:04:99:2e:78:30:19:8b:56:74:3a:f6:0f:c8:38:b9:cb:42:
71:cf:e8:53:04:40:0e:7a:ad:6a:97:17:50:c2:cc:f0:24:e8:
65:e9:68:3c:d4:c2:53:22:7c:70:07:ab:48:f9:e0:7c:14:d0:
f1:fe:8c:07:12:42:dc:d0:f3:e6:60:a5:1a:dd:9c:8e:5b:7d:
9b:59:33:6b:37:e4:28:b0:ae:50:3f:8d:5d:c0:e4:fa:a6:1b:
1d:0e:5f:87:4f:79:ac:a5:7a:09:46:02:89:b4:81:6a:24:6a:
63:af:b4:05:8d:0e:8f:13:1a:18:2b:d9:d6:2c:7e:c6:3c:83:
c1:1c:62:f7:41:fc:8c:fd:de:e6:76:81:7a:06:fc:46:17:09:
23:4e:d1:cf:b7:ec:d9:4e:a0:39:b5:45:7c:4d:03:71:00:bd:
11:5e:3e:9f:ef:e5:b8:f3:35:d7:13:0e:43:94:4b:0a:39:09:
5b:1e:e2:e4:35:d8:e4:f8:c5:e6:33:c8:dc:5a:73:ac:d0:2b:
e5:66:1a:bc:90:45:24:5b:80:94:7e:a6:d2:82:31:5c:7d:6a:
a2:dd:f1:3f:58:a9:3c:6a:96:6c:7a:2b:17:fd:60:92:f0:ce:
b5:e3:fe:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:53 2023 by rpki-client on console-ams.rpki-client.org