Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/X2dHxcXoS7F7dw610B7kSENCn64.roa
File: X2dHxcXoS7F7dw610B7kSENCn64.roa (raw, json)
Hash identifier: r/CtPitvwDhUqtg+rFY28dI1xt+/7icge6p9MTQzDQQ=
Subject key identifier: 5F:67:47:C5:C5:E8:4B:B1:7B:77:0E:B5:D0:1E:E4:48:43:42:9F:AE
Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Certificate serial: 01857082BB7AC641CADDE19BFE209EB72027
Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/X2dHxcXoS7F7dw610B7kSENCn64.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208074
IP address blocks: 45.154.63.0/24 maxlen: 24
2a0f:b100:300::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bb:7a:c6:41:ca:dd:e1:9b:fe:20:9e:b7:20:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f6747c5c5e84bb17b770eb5d01ee44843429fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c3:a4:9d:9a:3f:2a:2e:45:53:84:60:d8:52:
df:9a:12:7b:8f:18:25:0e:ac:3e:01:e8:91:87:17:
af:77:0e:e8:89:be:ad:c7:6d:09:78:1b:57:28:a9:
e2:f3:8d:eb:ce:cd:60:25:de:ac:df:00:4b:4c:19:
02:4b:6f:30:fa:e4:34:fb:62:c3:c7:e2:5a:56:fd:
62:df:b0:32:00:a6:04:da:0b:af:25:7b:55:42:7d:
36:86:99:f2:50:22:33:16:e7:f4:b2:a5:6a:3c:3e:
c7:5b:d3:8b:2f:91:40:6b:e9:b7:36:3a:5f:7f:56:
3b:a0:44:88:8e:3f:74:34:72:96:16:21:ae:38:e4:
f4:6f:67:10:88:0e:34:45:03:b4:49:a6:6d:d1:97:
ca:a9:ab:78:98:3d:30:46:a5:c1:cb:15:4b:3e:eb:
a2:44:ea:58:8f:26:20:1b:27:50:a5:b7:f8:eb:5a:
34:15:88:a5:cc:3e:2d:62:84:51:18:8a:a6:76:b0:
e9:7e:1c:22:00:69:51:b7:4a:9b:03:6a:35:a5:52:
a5:21:f3:9a:0d:d4:d9:e3:07:dd:ae:3c:f9:5b:9b:
3c:01:ea:9b:46:80:84:97:51:69:87:07:0b:0e:5e:
d9:c8:2d:d0:07:3e:de:cc:d8:13:e0:e7:b3:b8:f6:
b2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:67:47:C5:C5:E8:4B:B1:7B:77:0E:B5:D0:1E:E4:48:43:42:9F:AE
X509v3 Authority Key Identifier:
keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/X2dHxcXoS7F7dw610B7kSENCn64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.63.0/24
IPv6:
2a0f:b100:300::/40
Signature Algorithm: sha256WithRSAEncryption
71:fb:a1:78:db:eb:ec:cb:1c:c3:64:b7:c9:c5:91:c7:9d:f6:
14:89:eb:e1:5e:1e:3e:a7:85:bf:a6:91:62:1a:0b:41:7a:4c:
a2:83:12:06:79:b4:c6:ab:c0:ef:e7:1f:bc:ff:bd:ca:77:bc:
82:37:e7:a2:df:ea:52:46:d3:37:c0:82:d9:f0:37:23:7d:8e:
d3:83:11:fb:60:9a:76:28:25:be:77:75:ee:10:29:29:54:65:
ce:7e:c6:bd:e3:03:ea:c7:30:d5:a6:2e:ed:44:cc:89:f3:0e:
18:61:c1:06:2d:dd:a5:25:a1:e0:ad:5f:e2:37:c4:2f:d1:b0:
1a:4a:de:64:e9:24:2a:62:b1:92:2c:24:3e:27:01:d4:82:19:
3f:ed:e6:3a:4d:2d:83:7a:46:37:e8:37:39:e5:52:5d:52:56:
ec:0c:16:98:6e:5a:c9:8c:c3:ac:88:bf:48:18:4f:00:ac:d9:
e0:d8:39:7e:8e:82:0b:80:f9:20:fb:14:44:fc:96:43:af:fa:
c3:4a:a0:d4:73:94:71:4a:e2:90:ea:19:70:43:ef:a7:3f:ab:
f9:83:db:37:00:fe:da:e6:98:a2:9e:d0:24:1f:db:39:6a:77:
a5:83:26:10:30:84:d9:dd:ac:16:78:41:5d:de:b1:ae:7e:bd:
c1:c8:69:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:50 2024 by rpki-client on console-ams.rpki-client.org