Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/EYZgYjsjrN6YXnrm-Gjyd3xJPBE.roa
File: EYZgYjsjrN6YXnrm-Gjyd3xJPBE.roa (raw, json)
Hash identifier: VtYoRQGGCtOnVmt/fSFkqOml8loa2hyxOJ5gYSdxzyI=
Subject key identifier: 11:86:60:62:3B:23:AC:DE:98:5E:7A:E6:F8:68:F2:77:7C:49:3C:11
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C4FD93A44BA13B0CA6A89EE01621A
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/EYZgYjsjrN6YXnrm-Gjyd3xJPBE.roa
Signing time: Mon 02 Jan 2023 10:34:47 +0000
ROA not before: Mon 02 Jan 2023 10:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208174
IP address blocks: 45.12.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:4f:d9:3a:44:ba:13:b0:ca:6a:89:ee:01:62:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=118660623b23acde985e7ae6f868f2777c493c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:61:f0:56:77:46:6b:89:68:ce:ff:2a:0e:bc:
80:29:b3:93:5b:d7:a7:6d:6e:64:0e:0d:f8:2e:d3:
73:36:91:04:19:13:4e:fa:fb:a0:dc:f2:cf:55:ed:
9d:ef:31:78:8c:6e:d9:c8:31:7d:35:bb:d9:4d:76:
33:a5:40:71:c4:19:c6:56:d0:13:c5:d5:58:6a:5c:
d3:25:24:0c:5e:ea:00:42:df:65:80:5d:7a:ab:c8:
6e:57:a0:84:46:85:e2:83:9a:7c:f2:eb:c5:4d:e8:
54:24:ef:d7:e6:13:13:f7:46:c1:b7:16:b7:e8:8b:
07:92:14:1a:04:cf:ba:d0:58:1d:ff:4b:48:fb:15:
5c:fa:c7:1d:87:29:12:68:61:88:e2:a2:c5:dc:06:
98:ff:e4:60:12:b2:66:87:fa:f7:31:e9:b1:74:54:
c8:2f:2a:67:da:69:d8:39:11:e7:32:bd:d4:1b:b3:
c1:db:cf:c8:f9:b1:50:a3:27:53:67:67:93:3c:74:
30:92:1d:b5:54:7a:59:82:96:ca:ed:ba:f7:75:da:
d4:ad:90:b7:5a:59:59:00:61:5f:94:7f:e7:dc:8b:
91:bc:25:c3:76:79:79:54:00:bf:ca:9e:46:4c:74:
19:bc:17:2a:55:8d:da:fe:51:19:af:b0:3f:c2:08:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:86:60:62:3B:23:AC:DE:98:5E:7A:E6:F8:68:F2:77:7C:49:3C:11
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/EYZgYjsjrN6YXnrm-Gjyd3xJPBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.28.0/24
Signature Algorithm: sha256WithRSAEncryption
61:55:09:c9:cc:57:e2:6b:88:fd:01:07:b9:b9:b3:96:b6:c5:
c4:49:1e:d6:fb:3b:b0:68:9e:cd:33:34:b1:f9:54:76:50:45:
2c:07:92:b3:ac:41:b0:da:a7:d8:41:14:6f:44:71:de:21:c0:
9e:39:48:a6:5e:32:33:b6:35:36:01:04:99:94:4f:7d:0e:bb:
89:1a:da:74:b3:98:53:8d:40:b6:e8:3b:dc:4a:16:49:88:13:
86:21:dd:5a:6d:43:13:da:12:71:eb:69:05:16:15:fe:fb:63:
0b:7c:6c:eb:e1:10:55:b8:5c:1b:a9:ca:44:d5:fc:4d:34:78:
51:42:fb:77:bf:87:87:b2:b9:5b:c5:d2:db:f4:95:e2:4d:29:
6c:fd:d8:d0:d0:df:92:e6:04:b7:32:fc:ea:5e:bc:cb:a4:81:
9f:e0:ed:fe:2c:11:a6:b5:5f:c3:b7:d4:7a:0e:26:bc:05:6c:
a6:5d:81:be:6d:47:a5:3e:8b:ba:fb:ba:4d:b0:d9:bd:79:d3:
c0:f9:9c:8c:5d:46:c7:49:5f:fb:b1:d1:1f:60:ad:58:fa:65:
72:92:70:04:31:66:2e:ca:d2:ec:e0:f2:99:58:49:06:73:71:
3f:17:94:8d:8d:af:9a:66:07:70:ae:2b:55:86:97:97:b8:21:
59:97:6b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:18 2024 by rpki-client on console-fra.rpki-client.org