Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pgI0IBWiPVpqc4Jrj_V4xycNVoM.roa
File: pgI0IBWiPVpqc4Jrj_V4xycNVoM.roa (raw, json)
Hash identifier: wgK/7BNa7DaYF69AkilbaaL0q/I/QFcrkN/8Nk6ulM8=
Subject key identifier: A6:02:34:20:15:A2:3D:5A:6A:73:82:6B:8F:F5:78:C7:27:0D:56:83
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01856EA6CEAA73ACCBAFDEA675A7BE34A822
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pgI0IBWiPVpqc4Jrj_V4xycNVoM.roa
Signing time: Sun 01 Jan 2023 18:45:03 +0000
ROA not before: Sun 01 Jan 2023 18:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 45.143.163.0/24 maxlen: 24
45.149.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ce:aa:73:ac:cb:af:de:a6:75:a7:be:34:a8:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jan 1 18:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a602342015a23d5a6a73826b8ff578c7270d5683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:16:93:04:e3:94:b9:aa:8f:48:37:ac:92:a6:
21:f6:22:51:6a:7b:4d:4e:e2:28:00:52:63:e4:41:
d3:4a:c9:c7:be:4b:67:04:d0:0a:05:ba:7d:b9:9b:
b9:09:bd:6c:f3:53:f1:0c:1d:7f:e6:5f:af:7e:80:
58:18:5c:79:71:e0:f0:ad:45:98:79:ca:49:a5:3c:
d1:b8:e3:33:6e:e9:19:8d:a5:b2:a0:bb:1b:34:76:
1c:07:0e:01:fd:c5:f6:6d:01:b6:21:04:4f:66:64:
9c:4a:87:5a:d0:7c:3f:56:11:fe:9a:39:c1:d6:13:
81:a7:5e:9e:98:67:1a:94:e6:5a:1c:23:9c:55:cc:
87:90:2e:8f:0f:73:3d:7e:d1:c3:e3:ae:ff:02:c0:
73:4c:79:e7:82:a8:54:dd:18:57:79:65:7a:7e:7a:
52:7f:6a:43:09:73:42:25:dc:6a:f5:86:54:a9:7e:
2f:04:3f:49:0c:e0:5e:c7:4c:97:6b:d5:b3:d1:2f:
eb:65:ce:f9:7a:25:f8:a2:54:65:65:a4:0f:36:6d:
8a:27:c4:b0:8c:e9:4f:56:dc:fe:b0:46:a1:2b:c8:
1a:a7:8a:f9:b7:b1:5d:88:e7:97:db:d1:33:83:bf:
20:48:38:a6:f4:06:25:e4:a1:f1:cc:f2:ca:50:85:
99:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:02:34:20:15:A2:3D:5A:6A:73:82:6B:8F:F5:78:C7:27:0D:56:83
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pgI0IBWiPVpqc4Jrj_V4xycNVoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.163.0/24
45.149.166.0/24
Signature Algorithm: sha256WithRSAEncryption
37:69:6b:9f:46:c8:17:27:9f:b7:14:aa:75:30:48:69:61:ee:
b7:e4:95:4a:f8:ee:b3:0e:d0:e1:02:a1:ce:56:c9:58:34:92:
f1:68:5c:dc:12:3f:69:40:be:93:f1:e5:1f:63:98:a0:77:c4:
d1:3f:65:32:2c:dc:0d:49:e0:e2:5e:9f:9c:eb:0d:67:93:6c:
72:6d:a4:69:ab:04:e6:44:b0:6b:4f:0b:ef:d1:80:f7:d1:1e:
70:8b:05:bd:31:52:73:a8:1d:c1:7f:07:a4:56:be:53:91:e8:
71:2c:52:62:35:08:e3:98:10:bb:bc:fa:ec:df:21:73:a7:32:
5d:4e:cf:84:04:61:c5:30:05:a3:15:36:a2:5d:72:45:34:3c:
a7:cd:74:4a:e9:49:2c:c2:5a:ff:b5:3f:f9:98:9a:f0:ed:1f:
56:05:da:28:1d:e9:1c:1e:06:0a:a2:da:fa:22:df:99:3e:7f:
70:f6:32:21:53:30:b2:43:0e:b9:fc:8d:00:20:5b:78:a3:39:
9e:c0:8d:79:fe:a6:a2:58:0b:b6:e7:4b:c4:a9:bd:3d:31:98:
d8:5e:a6:b4:6f:42:e5:b4:54:8e:ee:fc:6e:0a:3f:85:8d:ae:
43:90:2a:46:4e:69:a1:a8:a7:58:b5:b8:a5:9f:7a:56:fc:e1:
85:74:5d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-fra.rpki-client.org