Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XJ4Y0pgAwV_D-tSL38SfjcbkBSc.roa
File: XJ4Y0pgAwV_D-tSL38SfjcbkBSc.roa (raw, json)
Hash identifier: BDXLdj9BqC0WcB+snH5ZyNfWL6TLK7EEXRGCo872Rfk=
Subject key identifier: 5C:9E:18:D2:98:00:C1:5F:C3:FA:D4:8B:DF:C4:9F:8D:C6:E4:05:27
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 018A4A75BC59676390857D7A42A6197DAE8E
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XJ4Y0pgAwV_D-tSL38SfjcbkBSc.roa
Signing time: Thu 31 Aug 2023 07:19:04 +0000
ROA not before: Thu 31 Aug 2023 07:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 45.152.33.0/24 maxlen: 24
45.152.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:75:bc:59:67:63:90:85:7d:7a:42:a6:19:7d:ae:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Aug 31 07:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c9e18d29800c15fc3fad48bdfc49f8dc6e40527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:76:10:d1:03:f8:21:1f:9d:97:94:0d:a4:cc:
46:e4:53:33:66:77:ac:43:3a:40:0c:83:e0:5e:e6:
c9:48:ce:76:0b:a5:01:20:99:57:17:59:65:c4:a3:
ae:d0:ee:3b:68:7f:95:b8:4e:f9:ad:ed:4f:38:54:
be:c6:52:e4:61:c2:8c:97:c4:04:a2:3d:cf:b1:d4:
74:79:1b:dc:bb:e9:c0:6c:5d:79:c8:dd:53:ef:05:
66:d5:63:b9:f1:2c:e0:25:d1:5d:ed:6f:b5:6c:74:
92:35:b1:1a:00:12:8f:2c:cf:0f:23:07:77:7b:48:
78:ca:ff:76:e0:f4:1c:2e:64:11:8b:36:c5:aa:39:
12:5f:e6:10:80:7e:00:7f:a6:14:0d:f5:a7:be:2f:
0b:99:33:28:9c:6d:09:3a:ba:df:18:b7:cc:c2:39:
36:6b:23:79:60:85:0f:52:43:77:da:a3:70:5b:e6:
af:3b:b6:12:70:03:43:9e:49:29:fb:e5:2a:19:b0:
5c:ab:99:8d:79:78:cc:b0:32:10:f7:1b:dd:2b:bc:
61:9d:12:79:2e:00:37:11:48:af:dd:b9:5f:84:78:
db:ac:86:dc:f5:f5:83:00:2e:dc:78:8d:a9:8c:97:
56:ea:fb:28:2d:92:df:52:82:c5:29:52:07:58:d1:
80:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9E:18:D2:98:00:C1:5F:C3:FA:D4:8B:DF:C4:9F:8D:C6:E4:05:27
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/XJ4Y0pgAwV_D-tSL38SfjcbkBSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.32.0/23
Signature Algorithm: sha256WithRSAEncryption
49:1b:8b:9e:d4:6f:0d:d7:45:4a:f0:6f:bb:d7:f2:e4:29:38:
ce:fc:4d:b9:63:15:75:00:05:64:52:53:3f:07:63:8d:85:92:
61:4a:83:21:24:98:0c:67:ef:65:b7:02:09:bf:85:eb:43:bd:
b1:6b:96:b3:d0:f5:73:90:bc:b4:c1:98:8b:22:9c:f9:a1:e2:
a8:ee:e6:37:4d:a8:4d:84:85:d6:4e:26:11:7c:34:15:1e:85:
4d:a2:09:8e:ee:62:80:ca:24:45:bc:fb:1b:f2:40:f6:cb:87:
3b:be:21:c4:02:46:9c:73:58:a1:c1:30:0e:13:4c:38:33:34:
b0:b3:d6:f9:75:be:31:38:18:67:b4:3c:78:27:86:7a:44:01:
f4:2d:6c:9f:b2:5a:99:65:65:69:6d:3b:71:9a:cb:35:d5:4a:
30:8f:58:8d:4d:36:94:0f:5f:5d:da:32:88:2f:a4:9c:87:3b:
1c:6a:58:86:7f:1f:85:1d:a8:09:2b:b3:86:9d:45:24:05:71:
be:d4:d5:55:af:7c:fc:ef:d0:c4:3d:93:ae:f2:72:8c:63:32:
fd:7f:ac:17:c5:9f:da:14:33:72:68:83:a6:41:ad:e6:68:97:
49:4b:f8:a2:10:43:bf:67:4c:97:90:3b:27:eb:67:14:18:fb:
27:c2:66:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:40 2024 by rpki-client on console-fra.rpki-client.org