Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xzy4JtbtcbTdHq1cT8x1wv33zfg.roa
File: xzy4JtbtcbTdHq1cT8x1wv33zfg.roa (raw, json)
Hash identifier: FCJnxS/YRve8sXN2QWHkUB0XhlncgFPgqV8YEej5+k0=
Subject key identifier: C7:3C:B8:26:D6:ED:71:B4:DD:1E:AD:5C:4F:CC:75:C2:FD:F7:CD:F8
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0189FA3C139CEE0A27D70332F71EED105A05
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xzy4JtbtcbTdHq1cT8x1wv33zfg.roa
Signing time: Tue 15 Aug 2023 17:26:28 +0000
ROA not before: Tue 15 Aug 2023 17:26:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fa:3c:13:9c:ee:0a:27:d7:03:32:f7:1e:ed:10:5a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 15 17:26:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c73cb826d6ed71b4dd1ead5c4fcc75c2fdf7cdf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c1:22:b8:9d:ec:7e:41:38:2a:c2:e7:89:c4:
a5:c0:0f:92:a6:6a:4a:62:e3:85:43:7f:15:24:96:
ce:f4:a4:f6:a2:cc:58:df:72:b8:fa:14:de:05:5b:
72:e4:b7:10:79:f7:f1:9a:36:25:7c:7f:2a:f2:71:
be:1d:ca:dd:1f:0e:d0:2f:b6:ec:20:99:fa:8b:b0:
54:98:4a:ef:8e:cb:f6:bc:c0:91:ab:09:6f:e0:39:
0b:ff:50:c3:4f:bf:9e:b3:a8:ab:a0:5d:5c:be:ef:
f9:1e:20:f4:19:8c:0b:e9:75:17:f0:cc:6f:8e:4c:
a6:60:0a:63:34:e6:92:2b:dc:df:9a:e3:cc:b6:4a:
85:ba:2f:48:f7:46:57:af:75:79:34:fc:96:3f:4e:
2e:0f:d7:23:35:f6:c5:d9:e8:07:2f:0a:5d:11:72:
bc:22:5e:ff:53:b3:44:37:1c:24:56:0c:ee:af:5a:
b3:38:c0:ac:fa:32:97:98:4a:71:f8:38:58:67:c2:
20:20:3a:07:89:f7:c1:91:db:ae:6e:53:6d:a3:c4:
29:a7:d8:82:65:b5:ea:8b:cd:d6:0a:8f:90:bf:7e:
34:87:29:97:32:81:ed:c5:30:a5:8a:27:ff:59:d2:
32:f7:dc:61:e8:7e:29:02:00:5d:15:56:01:7b:53:
36:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3C:B8:26:D6:ED:71:B4:DD:1E:AD:5C:4F:CC:75:C2:FD:F7:CD:F8
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xzy4JtbtcbTdHq1cT8x1wv33zfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.153.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:c9:33:72:e7:fb:f0:3f:19:03:e3:df:38:4c:06:05:12:e8:
4b:e6:03:be:49:bb:f4:b3:e3:3a:50:65:0b:5e:e4:dd:d1:ad:
c9:86:e0:21:cd:50:2a:a8:83:83:25:1d:97:5d:a5:19:db:13:
2e:74:13:36:fa:5e:49:7c:69:37:f8:b9:a1:5e:67:9f:87:1e:
eb:ca:40:16:fe:28:b3:11:3a:6c:3c:db:68:ab:c8:16:17:74:
0f:43:93:b8:d7:fa:c3:54:f7:fd:03:81:f5:91:65:4c:52:16:
49:ec:41:68:d4:c7:a6:aa:e5:c2:4b:ad:a1:56:05:97:0a:d2:
a2:7b:a5:64:36:cf:97:8a:94:a6:62:a8:c6:28:54:8f:10:20:
4f:98:9b:bc:b0:43:5c:b6:4c:d6:9c:69:f0:3c:01:7d:a2:4b:
dd:c2:32:2e:d1:da:28:92:2c:da:12:43:a4:6b:a6:c7:5d:87:
2e:f3:fb:6d:64:c1:80:84:fe:20:b3:e6:2b:53:13:5a:2d:67:
fa:05:bc:50:fd:74:5c:d6:6e:f1:50:d6:9b:1e:9a:52:ac:cf:
a8:77:4b:c0:6f:d7:86:b0:cb:1a:4c:57:27:97:ee:b2:70:a7:
58:19:9b:45:52:3e:07:ac:dd:32:cf:37:89:89:c6:1b:01:47:
08:84:db:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 08:01:44 2023 by rpki-client on console-ams.rpki-client.org