Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/f09759-6ceb-4754-bbe5-3b9e3c53bab0/1/Ccr2-K8WmtD6r6Df2sg3lYrbwSc.roa
File: Ccr2-K8WmtD6r6Df2sg3lYrbwSc.roa (raw, json)
Hash identifier: KZmKOEYSWjlxCJ24U1WgN37T4hHfLKv/agvd4NZL3ng=
Subject key identifier: 09:CA:F6:F8:AF:16:9A:D0:FA:AF:A0:DF:DA:C8:37:95:8A:DB:C1:27
Certificate issuer: /CN=e2dac150848325f0f72587064f8aba37c5ff3790
Certificate serial: 018654797BA4A7B63A5922887408D8B4B008
Authority key identifier: E2:DA:C1:50:84:83:25:F0:F7:25:87:06:4F:8A:BA:37:C5:FF:37:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4trBUISDJfD3JYcGT4q6N8X_N5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/f09759-6ceb-4754-bbe5-3b9e3c53bab0/1/Ccr2-K8WmtD6r6Df2sg3lYrbwSc.roa
Signing time: Wed 15 Feb 2023 09:48:12 +0000
ROA not before: Wed 15 Feb 2023 09:48:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39257
IP address blocks: 45.67.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:79:7b:a4:a7:b6:3a:59:22:88:74:08:d8:b4:b0:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2dac150848325f0f72587064f8aba37c5ff3790
Validity
Not Before: Feb 15 09:48:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09caf6f8af169ad0faafa0dfdac837958adbc127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c0:db:fd:e9:61:34:7a:d9:24:fe:71:d6:5c:
ed:cb:14:46:3c:2f:33:58:aa:d6:43:98:88:c6:01:
52:8f:0a:04:33:cb:f7:84:04:d9:cc:90:77:20:4a:
4a:46:d1:3c:9b:a7:a6:75:8e:c0:bb:4d:1b:bb:e5:
36:ed:0e:4b:41:48:c5:21:1a:6b:64:bc:4d:df:25:
e7:2b:f1:af:75:fe:da:0b:48:ca:c9:83:a1:25:71:
f3:de:99:2b:81:89:5c:72:99:8e:54:da:90:85:57:
ba:24:f4:0d:99:66:c8:64:1d:61:d7:b0:64:5a:6f:
36:07:82:6d:b2:3f:5e:6c:5a:3f:d7:4d:a2:67:63:
4e:fe:49:0f:c6:85:fa:1b:78:78:7c:94:bb:e1:a1:
b8:9e:0d:04:1f:2f:2d:83:82:53:f7:26:f8:3a:8a:
8e:5d:24:ee:a3:cf:3e:f1:30:fc:82:0f:7a:2e:a0:
4e:9e:08:b8:78:c6:1c:dd:98:4b:99:ab:c9:97:2f:
a4:9d:c7:d9:b7:29:2b:90:b6:48:fc:bf:fe:5c:2f:
f2:1e:41:9c:01:b7:a2:b2:3e:b9:e7:e7:7c:05:79:
b1:e7:96:7d:eb:de:eb:97:dd:e7:45:db:65:81:eb:
78:18:8d:dd:d1:ab:0e:a9:96:f6:4a:98:3d:d2:6a:
ab:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CA:F6:F8:AF:16:9A:D0:FA:AF:A0:DF:DA:C8:37:95:8A:DB:C1:27
X509v3 Authority Key Identifier:
keyid:E2:DA:C1:50:84:83:25:F0:F7:25:87:06:4F:8A:BA:37:C5:FF:37:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4trBUISDJfD3JYcGT4q6N8X_N5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/f09759-6ceb-4754-bbe5-3b9e3c53bab0/1/Ccr2-K8WmtD6r6Df2sg3lYrbwSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/f09759-6ceb-4754-bbe5-3b9e3c53bab0/1/4trBUISDJfD3JYcGT4q6N8X_N5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.28.0/22
Signature Algorithm: sha256WithRSAEncryption
10:4e:bb:46:9d:e7:66:5b:9b:97:80:33:c3:c1:35:3e:dd:f4:
25:22:4f:d9:f0:ce:29:74:e4:49:3a:19:8e:2b:68:d1:c5:4d:
0b:8b:94:fe:6d:58:be:5c:0e:9d:a7:89:f6:17:75:ac:07:04:
30:4a:e2:8e:cd:56:fe:4a:e3:20:d4:86:0c:69:bc:b5:de:bc:
d1:81:02:f9:00:79:26:22:63:73:6a:c8:ba:3b:2f:f7:91:29:
4b:eb:7f:65:9e:1c:71:c0:17:1d:09:5d:bd:fe:73:99:38:a3:
d6:2d:09:48:47:57:3e:ba:83:30:8d:4a:9d:a2:32:93:4c:e0:
fd:cc:64:7e:a3:4f:65:30:7c:97:9b:b6:05:10:e7:14:1f:04:
cc:62:a4:43:f8:a8:cc:1b:56:8e:b2:9d:0d:fd:03:91:34:90:
f4:f6:aa:09:8f:0a:04:0f:6d:17:d3:bf:d8:9f:82:54:6a:b9:
34:a2:b5:70:95:69:e7:65:f7:a6:a6:5c:da:25:c9:d5:58:03:
3b:53:91:58:c6:98:5c:60:ed:6b:0a:84:7b:84:5c:29:2a:14:
99:64:15:9e:be:3e:8e:ea:e9:25:b9:c5:10:66:f0:ad:24:47:
1c:0f:3b:9f:2e:19:2c:44:1f:50:9c:65:46:eb:a7:21:b2:b8:
e8:66:6c:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:13 2024 by rpki-client on console-fra.rpki-client.org