Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ldPv4Lui2sZqrCGvG7tF5GuJsNw.roa
File: ldPv4Lui2sZqrCGvG7tF5GuJsNw.roa (raw, json)
Hash identifier: 3ghZRK6TtPKjaJ4o/FQetkhqjDTYr/xm5IbFIf3wWsg=
Subject key identifier: 95:D3:EF:E0:BB:A2:DA:C6:6A:AC:21:AF:1B:BB:45:E4:6B:89:B0:DC
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 0186970C381D58386428DF948C1F96E380E9
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ldPv4Lui2sZqrCGvG7tF5GuJsNw.roa
Signing time: Tue 28 Feb 2023 08:03:25 +0000
ROA not before: Tue 28 Feb 2023 08:03:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212477
IP address blocks: 45.94.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:0c:38:1d:58:38:64:28:df:94:8c:1f:96:e3:80:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Feb 28 08:03:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95d3efe0bba2dac66aac21af1bbb45e46b89b0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:2c:ab:58:c7:ac:e3:a9:ad:0b:94:17:56:
f9:11:52:7f:5f:e2:df:f8:18:51:ce:d2:4c:88:89:
f2:4f:1f:56:97:79:e9:6c:08:f4:80:14:0b:70:0e:
6d:99:50:3d:d1:a0:df:6e:c9:6a:07:aa:10:7b:65:
bb:b9:f0:9d:31:f3:2e:62:08:3a:ca:84:1f:fe:ae:
d1:06:07:68:98:9b:9e:1b:1c:0c:ee:8a:0e:e9:ac:
6b:10:9a:40:81:7a:89:74:83:63:6d:17:2c:5c:a9:
e9:3b:d1:51:cd:37:2f:b5:7b:ec:58:c0:4a:90:0a:
89:56:2c:d8:00:a8:6d:93:ea:5e:09:14:6b:79:84:
9d:8a:1f:37:04:62:93:fb:50:3d:df:14:1b:0c:bb:
32:c4:51:05:e0:e9:54:80:04:47:2f:69:ac:a9:b6:
98:6b:58:f0:b8:8c:22:00:a5:e4:5f:78:c9:92:9a:
0e:80:94:43:75:76:dd:64:b1:3b:3e:08:3c:a6:31:
ad:05:a1:2b:7c:7d:66:22:39:ba:48:33:7f:6d:e5:
26:e2:fc:07:07:e0:3b:aa:93:ef:d0:21:5d:d3:29:
92:dd:05:84:8e:e6:d1:50:5f:63:d9:c9:53:7e:59:
c5:37:d1:5a:45:23:74:b2:28:84:bc:ba:23:6c:17:
f0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D3:EF:E0:BB:A2:DA:C6:6A:AC:21:AF:1B:BB:45:E4:6B:89:B0:DC
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ldPv4Lui2sZqrCGvG7tF5GuJsNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:98:f3:51:57:5e:04:57:9f:89:75:8d:ff:ce:96:02:a0:9e:
62:99:cb:dc:b8:c6:82:1d:12:1e:56:a2:cf:71:4a:b2:d5:b1:
a0:0c:91:9a:e4:96:6c:c6:cd:dd:21:cc:56:d5:79:20:50:a8:
02:f5:af:41:8d:b8:d8:b9:83:93:af:77:d8:52:3c:b9:37:81:
a8:32:13:8d:ab:30:b8:52:c8:e2:0e:05:68:6b:87:ea:4f:42:
26:f7:8b:2d:71:73:1c:29:3e:0f:bb:1c:b9:8c:ca:59:b9:db:
07:09:64:b8:61:f3:c3:e9:b0:e2:c0:ea:3a:b6:56:bb:98:07:
c6:c7:85:9c:e9:00:a3:68:75:5f:81:62:71:5b:e0:e5:fd:71:
7c:b9:d2:3f:38:d5:b5:02:32:aa:6a:45:13:22:a1:10:b2:22:
bd:74:9f:6f:8b:4b:69:e6:a1:9e:3a:b9:ad:45:41:59:f2:7c:
c3:4b:98:90:a2:74:96:2e:5e:93:54:27:2a:6f:4a:55:f7:16:
8b:49:e4:63:a5:57:69:11:2d:23:52:ee:66:11:b1:e2:17:fb:
6b:84:75:7f:55:50:0a:c9:d3:14:17:f3:af:d2:3a:23:dd:70:
61:26:33:0f:3e:ed:f1:68:f3:e7:85:2b:03:70:65:a8:9e:8a:
90:73:68:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 15:34:48 2023 by rpki-client on console-ams.rpki-client.org