Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/71vblIORdFxEeCfkRWV4fxkXu_0.roa
File: 71vblIORdFxEeCfkRWV4fxkXu_0.roa (raw, json)
Hash identifier: 8gts9HFi3g6fYfAhQxJf0kG8Z6M9XCl58V1bQyyrLZo=
Subject key identifier: EF:5B:DB:94:83:91:74:5C:44:78:27:E4:45:65:78:7F:19:17:BB:FD
Certificate issuer: /CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Certificate serial: 018572713756983E4755F50C64C4FFC383E4
Authority key identifier: 81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/71vblIORdFxEeCfkRWV4fxkXu_0.roa
Signing time: Mon 02 Jan 2023 12:25:00 +0000
ROA not before: Mon 02 Jan 2023 12:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47576
IP address blocks: 45.12.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:37:56:98:3e:47:55:f5:0c:64:c4:ff:c3:83:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Validity
Not Before: Jan 2 12:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef5bdb948391745c447827e44565787f1917bbfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b8:40:e0:29:04:18:bd:f8:53:6e:20:61:44:
aa:0a:48:3b:32:a3:39:b2:1e:e6:af:2e:7f:bb:93:
a2:1f:08:51:9c:df:64:34:93:75:fe:10:94:f2:6d:
f7:d2:49:4a:3b:9a:67:f2:93:0f:55:4a:da:9b:9e:
85:d5:85:48:e3:30:99:ee:5e:e8:92:ae:33:44:bd:
c9:0d:75:73:a2:a3:7c:81:ee:41:79:97:5d:1f:e8:
b5:73:d6:b9:52:bc:e8:08:f6:9e:79:0b:0b:cd:6b:
47:c4:09:a2:e3:2a:63:2a:3d:cd:8e:e5:0e:59:50:
fb:19:75:a0:97:4c:75:98:2f:f0:18:5a:76:98:3c:
2e:43:54:28:5e:bb:31:29:aa:19:88:9e:19:96:12:
56:c7:dc:35:67:df:15:68:a1:1f:25:09:04:5b:ce:
1d:01:7a:06:bd:f0:01:f0:c6:d3:4d:17:71:a1:5f:
5d:68:a6:89:0d:c2:60:1e:be:57:b5:f3:ff:f9:26:
fc:7a:40:79:aa:cd:c6:6e:26:72:0b:04:08:96:4a:
2b:0a:3c:48:3a:72:65:29:b5:5f:f3:c5:e2:62:13:
3e:01:5f:89:5f:4b:d5:e8:59:b2:8f:70:98:3f:ba:
fb:10:e8:4c:87:fc:aa:66:83:a0:ef:10:17:7e:ac:
f8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5B:DB:94:83:91:74:5C:44:78:27:E4:45:65:78:7F:19:17:BB:FD
X509v3 Authority Key Identifier:
keyid:81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/71vblIORdFxEeCfkRWV4fxkXu_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/gc3Bfa0DvLm8NKnjd6sgcIUtymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.99.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:16:02:8e:f5:2f:49:2c:0f:8e:6e:16:59:78:15:a9:9d:a9:
83:3e:f4:fe:b2:66:c6:13:07:bd:57:67:1f:08:a6:16:3f:99:
ea:35:4e:30:7e:5d:88:7b:ca:e1:f7:3a:9d:27:26:3d:4c:b9:
ab:bf:06:7d:22:cb:e6:3c:f1:6b:d6:e3:b5:f7:9a:fc:2e:78:
ef:19:76:7f:4b:d9:c4:21:6f:fc:8c:c7:f0:6b:72:27:52:ad:
bf:3c:4f:92:08:9a:a3:4a:66:08:82:b6:88:46:b8:69:38:0e:
20:1f:dc:b2:e4:f1:7e:59:dd:4a:3f:c4:83:36:39:bd:38:96:
c1:af:e7:bd:bd:67:0b:09:89:e7:ca:93:84:78:73:54:48:d2:
36:91:52:41:02:ad:6d:31:f9:e9:7e:f2:67:10:4a:a3:2d:dc:
0b:0c:21:b9:4d:60:0e:18:4c:9a:43:89:80:ba:f6:f9:af:15:
78:bf:fa:2e:ad:46:f5:cf:98:cb:11:f0:5c:25:9e:01:44:ec:
71:52:61:57:f8:f1:d0:b6:cc:72:12:de:5c:ae:33:10:07:a5:
28:ff:31:53:45:6a:b8:11:d8:72:85:4d:02:45:d7:b6:e9:cd:
69:7e:8f:a9:dc:55:05:75:6a:5e:5b:06:bb:8d:95:d6:86:43:
a6:d8:6c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:48 2024 by rpki-client on console-ams.rpki-client.org