Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xIOuwZfpXcabrEYigrXWM5XghyU.roa
File: xIOuwZfpXcabrEYigrXWM5XghyU.roa (raw, json)
Hash identifier: HEVGtZesW4ukUbr4N/T3HlvTWMEa/R84rqI8JXqZ0GM=
Subject key identifier: C4:83:AE:C1:97:E9:5D:C6:9B:AC:46:22:82:B5:D6:33:95:E0:87:25
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0187C8A09D2118D9BD47972005E4E4858599
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xIOuwZfpXcabrEYigrXWM5XghyU.roa
Signing time: Fri 28 Apr 2023 16:09:41 +0000
ROA not before: Fri 28 Apr 2023 16:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 45.145.152.0/23 maxlen: 24
45.145.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c8:a0:9d:21:18:d9:bd:47:97:20:05:e4:e4:85:85:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Apr 28 16:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c483aec197e95dc69bac462282b5d63395e08725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:82:01:ca:86:c3:08:19:3a:43:a7:46:b9:a5:
23:a5:dd:d1:53:8a:6c:f7:99:24:8b:99:e9:6f:c8:
97:67:f6:5e:26:69:d6:04:ad:c1:4a:72:bd:23:b8:
00:dc:3b:c7:77:e2:a2:66:9a:d6:56:87:64:e4:cb:
88:c5:f9:eb:32:93:58:64:51:8e:92:5e:83:32:b9:
1d:19:7b:61:e6:d3:9a:0c:ce:33:f2:96:08:4d:99:
81:9e:e0:2c:17:e6:fe:ef:1e:e2:5f:2c:47:85:66:
63:d6:80:2f:92:d9:ff:34:16:f4:10:52:52:dd:61:
d0:96:24:0c:d4:d4:21:10:c0:44:1e:d9:f9:12:80:
ab:3c:4b:6a:54:1a:77:af:ad:3d:55:9d:22:1b:91:
e2:69:c7:a5:a2:ae:d2:98:f2:f3:7a:94:bb:ce:3d:
d7:a3:39:b6:a6:cb:db:20:6c:05:57:6c:58:8a:34:
43:bf:42:04:e0:08:a1:49:ea:80:e6:b9:15:f0:0e:
17:c6:d5:44:82:85:98:8e:a4:18:f9:68:5f:6f:2c:
60:69:96:ab:ec:45:6e:4e:33:a3:bd:26:a6:a1:d6:
aa:05:a2:ea:28:86:2a:c6:14:2a:83:e4:0c:fd:bc:
7f:f7:31:b3:fc:27:5f:3b:e2:1e:9e:68:84:eb:3b:
40:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:83:AE:C1:97:E9:5D:C6:9B:AC:46:22:82:B5:D6:33:95:E0:87:25
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xIOuwZfpXcabrEYigrXWM5XghyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/22
Signature Algorithm: sha256WithRSAEncryption
90:4a:18:ef:ff:d1:23:b8:b9:1e:98:b7:62:ad:24:8a:d3:85:
db:80:08:52:06:65:df:5b:ca:91:6c:95:9f:3c:c9:a2:66:b8:
6e:b1:c9:45:93:09:e3:ae:df:1d:59:95:39:94:c2:d9:a1:3c:
7b:7a:30:2d:ac:55:31:89:76:e7:ac:4c:51:50:f0:d8:7b:46:
85:dc:d9:38:67:47:03:fc:1a:7b:e0:1e:80:f8:2d:32:13:09:
75:17:34:16:01:1c:ef:76:b0:35:30:d7:97:b1:db:f7:60:8a:
5c:cf:9f:f9:64:45:35:39:6d:fb:fb:18:ec:f0:2f:92:0c:35:
c4:3d:25:dd:7a:ff:7d:7c:e1:8b:66:25:dd:02:ec:63:8c:ae:
8d:16:9b:1a:7b:4d:38:71:9a:3b:3c:06:02:ff:2e:8e:ee:f1:
5e:cf:12:73:10:15:bf:5e:31:d5:eb:8a:9f:06:93:39:e4:c6:
28:ca:90:a2:2e:2a:b5:31:2f:03:76:8d:51:c4:d0:e8:d4:28:
e0:60:96:af:8f:a5:51:23:84:c4:ea:06:b0:95:99:5f:2b:cf:
ec:14:69:03:f2:de:a5:6f:d5:d0:a9:d4:4c:98:1f:57:88:27:
62:54:9c:db:d4:db:2d:ef:78:43:82:54:04:76:46:e7:2a:a1:
28:ca:ca:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:53 2023 by rpki-client on console-ams.rpki-client.org