Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/lLZwYGCKn55NY99SNYVZ3N0jEas.roa
File: lLZwYGCKn55NY99SNYVZ3N0jEas.roa (raw, json)
Hash identifier: kOTGb72ljxxI2EOJ+cHl4YwLu8IhwNcXAHEteRBeNKc=
Subject key identifier: 94:B6:70:60:60:8A:9F:9E:4D:63:DF:52:35:85:59:DC:DD:23:11:AB
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018CD1125354F04DAF0BEED310CA898B6D3D
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/lLZwYGCKn55NY99SNYVZ3N0jEas.roa
Signing time: Wed 03 Jan 2024 20:44:48 +0000
ROA not before: Wed 03 Jan 2024 20:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.158.127.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d1:12:53:54:f0:4d:af:0b:ee:d3:10:ca:89:8b:6d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jan 3 20:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94b67060608a9f9e4d63df52358559dcdd2311ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:d2:fc:aa:fd:92:0e:a5:6f:30:aa:75:90:
fc:db:2e:b6:e8:6f:0c:17:d2:58:99:ac:92:37:37:
13:a6:aa:ed:1f:9b:08:a1:b4:b6:97:76:d5:4b:19:
f1:ba:d6:ea:bb:a9:37:15:da:5a:04:bb:d7:b3:d6:
2f:91:ae:3a:86:43:99:fd:6c:45:72:d7:12:92:04:
33:d9:5a:76:3d:d1:a9:ac:6a:20:3c:9a:fe:1d:f3:
32:2f:be:ff:e5:9d:63:3b:13:ba:cc:4e:74:c2:d5:
8f:ef:e0:fc:39:c8:de:fa:d6:9e:70:e7:71:ad:25:
87:57:f2:4b:10:6b:fe:8f:89:6d:93:24:92:1d:47:
df:55:39:6e:c6:c4:63:a5:bb:50:b1:f8:e9:05:91:
fe:6a:2f:2d:34:38:df:7d:14:84:7a:3c:08:12:c9:
5b:39:33:20:6b:18:31:3f:0f:dc:b1:0b:93:d5:31:
d2:a2:2e:5d:8b:75:7e:5c:08:4f:a4:ea:b1:70:ee:
8e:15:a8:88:b0:1a:a3:03:9b:c0:b5:b1:75:6d:3c:
36:2e:ca:2e:34:6a:8a:d8:44:be:48:b0:b6:07:a7:
21:ad:c3:71:34:00:bb:ed:a1:59:b6:95:af:33:6e:
b5:9e:26:d2:d4:a6:7e:ee:b8:44:ec:db:1c:4c:d2:
bf:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B6:70:60:60:8A:9F:9E:4D:63:DF:52:35:85:59:DC:DD:23:11:AB
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/lLZwYGCKn55NY99SNYVZ3N0jEas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.127.0/24
Signature Algorithm: sha256WithRSAEncryption
72:fe:f3:8f:bf:58:b8:61:26:07:c2:8d:ac:d5:a1:fe:f0:19:
c0:5b:86:02:fa:e5:f0:f8:d9:6b:44:f0:15:3f:47:2e:2e:2b:
65:9e:9d:f6:b7:a9:be:e2:f0:7f:56:4e:fa:3c:55:ce:ea:9e:
4f:8d:29:bb:8c:ca:5d:75:80:19:06:6f:09:b5:4a:f1:42:99:
97:cb:72:c4:e5:3e:2e:4c:f1:7a:90:e0:05:fc:c8:2e:19:df:
2e:7e:d5:ee:d1:f3:c3:ee:6c:1f:5e:82:6e:4e:cb:47:37:91:
47:b3:ae:82:64:12:17:76:40:02:8b:e4:4e:7c:3c:39:88:59:
c2:48:c6:18:0a:26:9d:90:72:0d:89:b7:6f:45:5f:57:f0:81:
b8:fe:88:c0:bc:66:35:01:11:d3:d1:b6:87:63:bd:bb:c0:a3:
c5:ab:a1:50:36:2c:55:22:42:54:ed:d1:76:c8:73:52:b9:9c:
0d:75:d6:2a:4f:cd:94:1d:ee:89:bd:02:9e:a6:9c:ba:e9:88:
b4:ae:8a:fc:71:a0:24:13:e7:0c:96:05:e2:91:83:f9:a5:9a:
98:09:b4:9e:3e:0b:84:04:52:12:d4:97:d2:f0:c4:74:2c:af:
db:91:d5:85:62:b3:03:42:2f:75:e4:f2:ea:b8:4f:11:40:37:
c8:94:5c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 14:17:38 2024 by rpki-client on console-ams.rpki-client.org