Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/lX0yz4B8ztXhztYZcGIyKfLZJJg.roa
File: lX0yz4B8ztXhztYZcGIyKfLZJJg.roa (raw, json)
Hash identifier: 24ioQ/gfK3kKdktPpyAgYqhxvVi+SN2ru+CvS0Wpn30=
Subject key identifier: 95:7D:32:CF:80:7C:CE:D5:E1:CE:D6:19:70:62:32:29:F2:D9:24:98
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 01877B47D9A74798FB47BDF9F120C642F20A
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/lX0yz4B8ztXhztYZcGIyKfLZJJg.roa
Signing time: Thu 13 Apr 2023 15:41:58 +0000
ROA not before: Thu 13 Apr 2023 15:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134351
IP address blocks: 45.147.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7b:47:d9:a7:47:98:fb:47:bd:f9:f1:20:c6:42:f2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Apr 13 15:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=957d32cf807cced5e1ced61970623229f2d92498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d2:2c:d1:cb:04:ca:9c:f1:71:35:8d:c6:96:
6c:c9:28:c4:70:7e:b2:cc:eb:b3:34:27:45:87:05:
61:6d:d3:f9:b3:59:19:73:b8:39:9b:fa:f7:fb:88:
81:97:46:96:c5:15:97:41:ab:06:83:e7:ab:67:8c:
4a:cd:a0:1b:92:92:98:10:b4:23:1b:21:07:fe:5c:
e3:2c:8c:fd:6a:aa:e0:ea:ed:69:cc:e9:65:e2:ec:
92:4a:5d:0b:88:e9:0e:b2:29:17:7a:4b:b3:eb:f1:
2e:da:aa:dc:72:34:40:71:54:e3:9c:26:ad:74:e6:
a8:d0:3d:a8:56:41:e3:e1:7d:7f:bf:e9:78:4c:2e:
77:49:6b:cc:17:f1:25:65:c4:cb:7c:63:13:13:80:
00:7e:8d:71:f6:05:60:10:68:e0:ae:a3:73:9a:0d:
3f:8c:a3:9a:ab:8d:3c:8c:82:4b:1e:46:23:20:64:
9b:97:49:dd:0f:16:93:32:d3:47:6f:e7:15:3f:65:
91:e3:76:4a:e3:0e:f1:b4:4f:d9:ab:07:48:9b:e0:
f7:ab:58:1d:07:c8:a5:e3:7d:bc:d3:4b:28:f5:a4:
fe:a5:b6:c5:f8:1c:49:1b:d8:b6:86:5f:a3:72:65:
d5:69:4c:89:32:ca:14:2c:85:50:3b:40:35:de:73:
82:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:32:CF:80:7C:CE:D5:E1:CE:D6:19:70:62:32:29:F2:D9:24:98
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/lX0yz4B8ztXhztYZcGIyKfLZJJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:db:ba:aa:5b:cb:2a:89:24:73:b3:e6:71:d7:5e:34:47:d0:
c2:51:ad:bd:bf:81:d6:07:5c:e9:cb:2a:0a:32:07:2d:07:b7:
7c:65:f3:69:ef:3b:c5:c3:f9:94:1e:3e:dc:b8:63:17:83:33:
9d:f1:1d:92:39:09:c1:9a:31:d0:9f:3e:86:1a:2f:89:3f:77:
82:1f:65:bd:b2:24:bd:55:90:a8:de:73:85:9b:bd:fd:7a:05:
86:9e:c7:cb:b3:a1:73:5c:87:01:13:e9:47:13:f2:65:13:21:
e3:7a:69:f9:4b:12:75:5a:41:c2:08:e9:e9:97:31:76:61:ac:
bb:b5:cf:05:a7:e1:56:62:38:0c:db:ff:ec:c3:87:e0:6f:29:
ce:cb:c4:da:ae:06:ac:83:f4:50:e1:19:a0:77:95:73:c7:55:
44:27:e6:a5:60:5a:6c:c0:72:b9:d2:2f:30:e7:8d:ba:29:38:
91:71:00:8d:7a:cd:67:8d:d8:9f:87:18:cc:0a:fd:83:ff:11:
30:0e:3c:95:16:4b:19:b1:6d:8a:56:8c:f8:8f:f6:c4:b8:a4:
30:02:85:84:13:a0:41:35:a4:10:c3:fe:1a:78:75:0e:69:44:
6f:b6:ad:e8:1d:22:d6:15:e7:b8:72:15:d4:11:45:e8:46:01:
7c:e2:43:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:31 2024 by rpki-client on console-ams.rpki-client.org