Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/olZ4CqJOIYDfj2kqeDgIIY6mHB0.roa
File: olZ4CqJOIYDfj2kqeDgIIY6mHB0.roa (raw, json)
Hash identifier: SaQQhGc7GjH67Lx5v2BzULDX2yyj6WNZJP1TUdziKT4=
Subject key identifier: A2:56:78:0A:A2:4E:21:80:DF:8F:69:2A:78:38:08:21:8E:A6:1C:1D
Certificate issuer: /CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Certificate serial: 01856F5DC6C304DF33DEADD67347B93F1A74
Authority key identifier: 53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/olZ4CqJOIYDfj2kqeDgIIY6mHB0.roa
Signing time: Sun 01 Jan 2023 22:04:54 +0000
ROA not before: Sun 01 Jan 2023 22:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56596
IP address blocks: 45.8.58.0/24 maxlen: 24
45.8.56.0/24 maxlen: 24
45.8.57.0/24 maxlen: 24
45.8.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c6:c3:04:df:33:de:ad:d6:73:47:b9:3f:1a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Validity
Not Before: Jan 1 22:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a256780aa24e2180df8f692a783808218ea61c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:64:9f:26:03:21:cd:c7:d8:e0:58:28:d2:
5c:7d:6d:3c:95:d9:fb:08:01:9d:4c:15:d5:5e:eb:
0c:a5:ce:84:59:9d:46:4c:c7:ff:b0:e0:e4:19:fe:
e7:98:a8:b3:1a:b4:f2:1d:93:df:20:d1:f8:3a:44:
25:0c:04:bb:3f:0a:b4:36:57:e2:4f:0d:5d:1b:ed:
df:9c:d3:77:0b:fd:f3:f5:36:d4:f6:9a:45:c0:e0:
8f:0a:c0:1a:a3:1f:f1:a7:9c:37:13:21:4d:53:0d:
a4:d0:eb:24:82:2e:aa:14:c7:76:aa:62:43:a9:64:
6c:cd:d7:c5:3b:bb:7f:14:ca:a3:34:5c:33:c1:cb:
72:71:ab:88:96:b0:8c:7d:20:5e:c8:8b:72:cb:b8:
96:bd:af:3d:e3:7f:6c:9b:a1:0b:3a:a5:4a:9c:3f:
ca:0c:67:ce:f5:20:8a:8d:2d:a9:85:e1:9a:39:3a:
d8:92:fc:3e:13:e2:16:c4:a1:45:e1:62:77:ae:44:
45:11:5b:87:46:56:8e:4b:7a:6c:87:f1:37:a1:22:
50:28:4e:cf:e5:55:56:2c:1d:ce:a9:07:b2:42:10:
ef:77:6c:9a:5a:94:bb:6b:2e:ad:f6:78:f2:c4:0b:
b0:98:3e:b5:50:6b:13:34:00:a3:f0:c3:2e:c7:92:
8d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:56:78:0A:A2:4E:21:80:DF:8F:69:2A:78:38:08:21:8E:A6:1C:1D
X509v3 Authority Key Identifier:
keyid:53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/olZ4CqJOIYDfj2kqeDgIIY6mHB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/Uwt27wq1VbyLB2H2BopE4QsrMfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.56.0/22
Signature Algorithm: sha256WithRSAEncryption
38:1e:d1:1f:6d:d7:e1:ee:23:d7:61:2c:77:a5:dc:f5:0b:dd:
ff:8d:01:65:12:f2:e4:27:c1:ed:13:70:9c:05:41:58:52:b5:
e4:bd:77:66:85:3b:15:63:a8:ed:d8:29:fc:5d:5b:5c:54:55:
ca:6d:05:00:49:21:f8:9f:2a:e7:4a:69:e9:23:33:28:ff:fb:
2a:39:7e:8e:ea:9c:c2:38:75:2c:4e:a5:a9:12:21:cb:88:1f:
1d:3f:2a:ac:3c:5c:ac:ea:e2:ea:08:a8:e0:d6:86:8e:a1:c0:
00:51:43:0c:6b:93:7e:33:c5:83:16:29:e2:2a:77:d4:83:c6:
b1:00:8b:48:44:a8:54:d8:79:2e:2d:32:08:09:c2:3b:75:56:
df:3a:29:8b:e4:62:ec:46:4c:61:45:4f:a2:06:e7:9f:0f:9f:
0e:f1:d1:f0:80:a8:21:f4:4b:d6:c0:cf:04:27:a0:cc:28:dc:
83:57:ee:83:87:a3:99:60:45:ec:bb:4a:f1:58:b8:94:2d:97:
ff:54:05:54:4d:82:f3:2c:14:f8:bf:b9:83:b6:a4:ba:e2:87:
3b:04:45:74:40:cb:de:83:62:06:7e:bb:82:fb:a9:dd:39:ef:
2c:d1:6d:e5:66:95:27:8d:a0:ae:a1:15:05:8b:f9:f3:db:c4:
00:dc:cd:51
-----BEGIN CERTIFICATE-----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Generated at Thu Oct 12 14:24:30 2023 by rpki-client on console-fra.rpki-client.org