Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a28dde-8ed6-4d3d-9ba0-6d615f3e14f5/1/s0AGMNCAQJDuZL22YrvRjfJYvjg.roa
File: s0AGMNCAQJDuZL22YrvRjfJYvjg.roa (raw, json)
Hash identifier: jMMzaY/q5B2DYlAlaNnbd/R9YK/Alm+rw86HY69lzbY=
Subject key identifier: B3:40:06:30:D0:80:40:90:EE:64:BD:B6:62:BB:D1:8D:F2:58:BE:38
Certificate issuer: /CN=ed6b53ca307043427ef4eac89c77c1ba13f6f02e
Certificate serial: 01856F26D1FE7850EDA548A5A755D8981F98
Authority key identifier: ED:6B:53:CA:30:70:43:42:7E:F4:EA:C8:9C:77:C1:BA:13:F6:F0:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WtTyjBwQ0J-9OrInHfBuhP28C4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a28dde-8ed6-4d3d-9ba0-6d615f3e14f5/1/s0AGMNCAQJDuZL22YrvRjfJYvjg.roa
Signing time: Sun 01 Jan 2023 21:04:53 +0000
ROA not before: Sun 01 Jan 2023 21:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208839
IP address blocks: 45.13.140.0/22 maxlen: 22
2a0e:ed00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:d1:fe:78:50:ed:a5:48:a5:a7:55:d8:98:1f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6b53ca307043427ef4eac89c77c1ba13f6f02e
Validity
Not Before: Jan 1 21:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3400630d0804090ee64bdb662bbd18df258be38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6b:3f:a6:b6:38:8f:87:f3:6c:21:be:73:79:
2c:ef:b4:e8:00:65:60:89:9e:9f:86:c8:f5:0f:b7:
d6:d0:49:87:2e:09:e4:3c:9e:03:d8:c1:24:4e:bc:
82:f7:dd:49:ef:2f:4a:f7:f4:ff:59:1b:46:0c:91:
a8:78:a7:4a:71:d8:d9:c9:60:18:33:e6:e8:5f:12:
02:70:47:cd:13:d2:be:8e:b1:92:a8:81:2a:48:e1:
e1:60:61:e0:10:7d:01:20:cb:ae:b2:08:53:1f:68:
cd:5d:de:65:48:30:d9:15:d8:d1:42:d5:be:a9:28:
b1:09:64:36:72:aa:7d:72:5a:9f:02:89:7d:0b:31:
31:59:70:f5:ec:8b:44:f0:34:c5:a7:13:18:14:54:
e1:dc:19:10:7c:de:86:77:4e:19:b2:a2:9d:43:cc:
75:0d:b7:c7:9b:92:4c:3f:c4:22:cf:37:cb:ad:d3:
23:36:88:d4:35:e0:a4:6c:db:d5:0c:51:07:45:78:
73:96:72:bd:ce:92:14:25:90:65:44:64:c9:e8:85:
29:9c:57:ff:47:0c:9a:c2:35:c0:a0:7e:f5:3e:66:
5c:c5:98:d5:13:1c:19:35:6d:40:68:bb:03:5a:bc:
86:ab:59:23:ae:60:97:e0:f6:86:ee:70:1a:a2:33:
27:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:40:06:30:D0:80:40:90:EE:64:BD:B6:62:BB:D1:8D:F2:58:BE:38
X509v3 Authority Key Identifier:
keyid:ED:6B:53:CA:30:70:43:42:7E:F4:EA:C8:9C:77:C1:BA:13:F6:F0:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WtTyjBwQ0J-9OrInHfBuhP28C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a28dde-8ed6-4d3d-9ba0-6d615f3e14f5/1/s0AGMNCAQJDuZL22YrvRjfJYvjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a28dde-8ed6-4d3d-9ba0-6d615f3e14f5/1/7WtTyjBwQ0J-9OrInHfBuhP28C4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.140.0/22
IPv6:
2a0e:ed00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:23:9f:a4:3d:b1:6a:2f:f5:60:97:1d:8b:44:08:b3:ce:93:
17:61:67:72:1e:9f:4c:69:95:fe:d5:d8:90:4e:a3:22:1c:10:
3f:b9:3f:b6:b2:bd:95:85:be:77:52:6b:c5:fa:29:71:ca:f1:
93:df:a0:2f:b8:44:f7:2e:ac:7a:0a:1f:2a:0a:1f:fa:b4:ea:
f5:83:6a:e6:3c:25:cb:f8:f2:11:dc:61:cd:56:d0:95:2e:26:
8d:ed:8d:03:26:25:d6:12:c3:1d:48:51:05:75:73:f5:49:02:
b9:ec:9f:65:fe:be:5d:37:7b:39:8d:82:32:a8:83:cc:35:e0:
46:57:9f:db:23:c6:1e:b8:2b:bf:85:75:5a:53:02:69:a6:5d:
f0:76:97:f7:36:2c:9d:a5:83:6c:2d:d4:03:a6:0d:18:e5:84:
65:49:19:7a:c6:39:98:21:21:92:c7:81:fe:97:46:5a:ae:65:
59:26:67:6d:c6:ee:f9:ed:53:66:82:c9:57:f7:33:5b:c1:65:
e8:aa:3f:b8:1e:e5:67:58:7c:5a:e3:0b:e7:13:66:bf:19:d2:
63:66:b7:bb:d2:31:b1:ba:15:d1:08:2a:4e:39:99:21:28:ca:
19:21:4f:80:86:a3:36:ba:ce:7a:40:c3:97:bd:6d:c2:3c:4e:
6a:a6:3d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:15 2024 by rpki-client on console-fra.rpki-client.org