Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/l8UToZK22ME6Epp_LSuu-dDXTrA.roa
File: l8UToZK22ME6Epp_LSuu-dDXTrA.roa (raw, json)
Hash identifier: A3JaM9U+IwDlxC2Bkoatlto/xy2XzlBDu0xewpiB4qA=
Subject key identifier: 97:C5:13:A1:92:B6:D8:C1:3A:12:9A:7F:2D:2B:AE:F9:D0:D7:4E:B0
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0189E88B6C0453D42884D872BE3EE18F42EE
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/l8UToZK22ME6Epp_LSuu-dDXTrA.roa
Signing time: Sat 12 Aug 2023 06:59:58 +0000
ROA not before: Sat 12 Aug 2023 06:59:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.145.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e8:8b:6c:04:53:d4:28:84:d8:72:be:3e:e1:8f:42:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 12 06:59:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97c513a192b6d8c13a129a7f2d2baef9d0d74eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d3:4a:b3:e3:ca:45:e2:86:fd:66:46:d2:c0:
93:54:7d:a5:70:cc:98:ef:4c:37:83:ce:3b:45:1e:
7d:fb:ca:c7:9f:31:31:86:cc:38:7e:9d:8b:8c:68:
4d:5c:72:bc:f0:8c:12:7f:29:f4:3f:d6:52:c8:34:
6e:e2:91:a0:5a:29:d5:e7:6f:c1:e6:b3:ce:e9:6c:
16:10:c4:51:20:18:89:80:93:ba:0d:cf:90:eb:76:
73:6a:df:05:86:97:15:d4:a8:83:3b:b8:f0:e1:0b:
98:d4:d0:3e:fa:15:51:fe:45:95:9b:2d:0e:3d:2b:
11:7a:6e:00:72:21:e5:9c:ae:6f:4a:84:43:07:bc:
40:ec:79:7b:56:4c:29:30:ce:c9:1d:f2:f1:06:39:
a6:94:2a:67:6a:4e:e6:9d:cc:ce:a1:2c:48:e5:5b:
5f:af:76:38:a3:34:dc:6f:aa:e7:0b:1f:2e:6e:54:
74:98:f5:d1:50:9a:cb:24:ea:38:dd:9d:20:10:f8:
49:c4:da:10:1d:b9:d7:d8:d0:b5:e4:d2:cc:9e:89:
c9:fe:86:b5:8f:84:4e:4d:60:72:5b:93:1c:26:23:
86:f1:36:5f:b6:16:85:e5:89:53:c4:6b:11:4e:3b:
e3:c2:59:60:8c:ca:64:b7:a6:7f:7b:68:fa:ba:ac:
ba:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C5:13:A1:92:B6:D8:C1:3A:12:9A:7F:2D:2B:AE:F9:D0:D7:4E:B0
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/l8UToZK22ME6Epp_LSuu-dDXTrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.154.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:43:1a:b1:85:6f:55:8f:17:d9:a7:f5:9f:f0:bb:4a:a9:d2:
92:17:ca:74:7b:8c:da:ae:8f:a7:43:5a:b1:61:b9:72:cf:ca:
cc:57:9b:0a:fc:e8:da:dc:b4:0f:e0:e8:55:21:ad:2e:76:38:
d3:bd:ae:b4:72:0e:f3:0b:99:e3:97:7d:f8:ad:3b:86:95:53:
cc:a4:08:e5:55:47:7f:5a:44:0e:3d:a3:a4:86:f2:e5:a0:a6:
6a:23:8c:71:d8:ad:58:5c:b2:47:06:96:ba:0f:ee:6a:0c:5d:
59:9c:42:96:28:f0:0a:cb:92:f4:1e:ba:d7:3a:c2:11:f2:85:
40:d0:7b:d5:af:a0:2e:ae:7b:1c:a2:43:84:e2:af:ba:a4:dd:
66:90:12:b3:63:01:9d:4b:57:79:79:aa:d1:74:fc:35:2b:dc:
17:19:a8:a4:0d:35:ca:ba:10:af:10:6e:79:3f:b5:06:b2:f5:
f3:ca:10:a9:44:80:05:a1:6b:c3:f3:9c:a1:72:8d:ab:8b:eb:
3f:72:4a:b9:1d:5c:7e:0d:87:b3:fa:62:40:c7:88:2a:04:b1:
b5:db:a4:3a:66:7f:a4:23:86:16:ed:c1:8c:b5:8e:95:a0:c2:
2a:79:5b:60:cb:53:8f:a7:fa:c5:89:eb:0b:64:43:ac:7c:da:
9a:cd:e7:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 20 22:24:53 2023 by rpki-client on console-fra.rpki-client.org