Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/xz-kBDxDP3mNIgpbmMW-dbvYATo.roa
File: xz-kBDxDP3mNIgpbmMW-dbvYATo.roa (raw, json)
Hash identifier: HfNcI5QuMw/19er5RPXJySw0RSae/AOeNzRZRxZR098=
Subject key identifier: C7:3F:A4:04:3C:43:3F:79:8D:22:0A:5B:98:C5:BE:75:BB:D8:01:3A
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 0190E49D5A1A025968601892BCDDF2461BAA
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/xz-kBDxDP3mNIgpbmMW-dbvYATo.roa
Signing time: Wed 24 Jul 2024 12:00:35 +0000
ROA not before: Wed 24 Jul 2024 12:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41789
IP address blocks: 45.82.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 01 Sep 2024 05:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:9d:5a:1a:02:59:68:60:18:92:bc:dd:f2:46:1b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Jul 24 12:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c73fa4043c433f798d220a5b98c5be75bbd8013a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e2:4a:4d:be:1f:f4:fa:bb:3e:c8:af:f4:61:
ea:91:c5:23:1d:6c:4c:05:e1:55:7a:6f:c8:77:28:
d9:59:16:25:83:36:e7:e5:6c:27:71:93:0c:c0:ae:
0a:99:02:da:0b:e9:f1:61:2d:08:2e:9d:84:13:f1:
ea:2f:73:76:3c:0f:32:e7:97:c6:71:ed:5d:b6:52:
b0:4f:37:0a:27:72:c3:3d:80:d6:e5:7a:0b:e8:8c:
70:41:5d:d4:2c:1c:f1:d9:a6:ad:a9:05:e9:ef:65:
bc:b1:51:a7:57:46:b1:73:aa:b3:ff:47:76:c8:99:
95:2c:00:51:12:68:ea:43:23:7b:09:70:fa:8f:4a:
53:eb:0c:df:29:b7:3c:d3:42:87:2a:3f:b5:66:f7:
60:0b:97:f0:be:ac:16:f7:f3:11:e2:56:7d:00:e5:
84:d0:bd:df:be:de:ff:05:48:3f:59:5b:81:16:c0:
4c:65:1a:88:b7:d6:5e:25:e5:b3:97:c4:12:98:9d:
02:40:4a:b6:d7:18:9d:03:0b:5f:52:46:97:2d:5a:
4a:6f:f2:b8:07:82:a5:b7:c4:6a:b3:44:54:7d:fc:
0d:67:fc:93:a7:ff:28:83:73:50:dc:06:b4:cf:f6:
30:47:a2:cf:ef:5d:08:28:81:3e:95:b2:f8:38:4c:
4e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3F:A4:04:3C:43:3F:79:8D:22:0A:5B:98:C5:BE:75:BB:D8:01:3A
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/xz-kBDxDP3mNIgpbmMW-dbvYATo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.14.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:44:7d:48:c3:e8:b5:ee:2e:5d:bd:2a:4c:2e:6d:0f:93:8b:
7a:3a:aa:ef:c1:2b:83:e2:6b:8b:0d:d9:25:e0:20:2c:96:69:
4d:fb:ba:36:e6:94:56:f9:90:b1:1e:e7:57:10:0a:a3:ce:ce:
4a:61:64:a3:9b:90:d2:ea:d9:de:a1:f5:8e:59:5d:10:7f:60:
5a:c1:eb:fb:79:44:9b:dd:57:72:d8:e8:11:21:50:40:4c:0b:
ef:40:df:9c:af:5d:39:b5:99:92:d6:f8:79:b1:81:93:e4:a1:
a8:89:1e:a2:cf:b6:b7:d4:53:c7:de:b9:d1:e5:44:3f:68:81:
e4:14:0d:5f:78:c2:e9:41:63:f0:c5:15:01:81:bf:1e:2a:6f:
85:18:22:d7:e2:4f:da:1d:f6:b8:a5:3e:fa:53:65:a1:cb:6b:
47:ea:85:a9:3f:7c:8c:50:0d:97:24:60:70:2a:13:ec:c5:30:
d5:51:77:a3:5f:2c:43:67:c7:9f:6b:47:22:a3:60:1b:62:62:
85:af:47:b2:2c:bf:01:4d:2e:97:84:1c:73:04:5d:49:a5:64:
6f:a0:1d:82:90:2c:72:93:a4:bb:3c:9d:35:77:18:b8:22:ab:
13:e2:de:21:cc:f1:7e:e2:29:f5:52:cc:a8:4a:bc:c5:d7:29:
1d:5f:35:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 06:22:34 2024 by rpki-client on console-ams.rpki-client.org