Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/8gja8cdXmrFLGbkNzE0-81S805Y.roa
File: 8gja8cdXmrFLGbkNzE0-81S805Y.roa (raw, json)
Hash identifier: e/EghqU3nIpcDqOd2Bz8yW+1w2AZxzZmSGm547+JQMk=
Subject key identifier: F2:08:DA:F1:C7:57:9A:B1:4B:19:B9:0D:CC:4D:3E:F3:54:BC:D3:96
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01856C8141A80294E117809CE7CA49D7C1E4
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/8gja8cdXmrFLGbkNzE0-81S805Y.roa
Signing time: Sun 01 Jan 2023 08:44:48 +0000
ROA not before: Sun 01 Jan 2023 08:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212166
IP address blocks: 45.149.94.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:41:a8:02:94:e1:17:80:9c:e7:ca:49:d7:c1:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Jan 1 08:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f208daf1c7579ab14b19b90dcc4d3ef354bcd396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bd:c5:36:44:2b:79:76:65:32:cc:9c:e4:b7:
7b:d4:75:52:47:1f:02:b3:1a:5c:2d:a6:dc:0c:c5:
e6:e0:65:96:bd:18:ff:81:e6:b6:d9:6a:ea:48:6a:
a4:b8:31:40:91:48:ff:ce:aa:77:46:19:94:cc:cd:
2b:67:80:50:16:ac:cd:a3:c9:82:3e:fd:ed:a7:14:
e1:78:12:db:5e:35:58:37:62:98:c6:e1:5c:a4:6f:
d6:60:05:75:5a:6d:35:b5:d0:15:c4:6a:98:c8:d2:
4f:86:2b:fb:9a:01:d9:fc:f0:e6:43:98:0a:40:fd:
44:24:04:21:ad:6e:0a:8d:33:1d:78:f8:12:9d:9b:
c2:ff:fd:94:db:ae:a5:de:13:a8:46:6e:dd:f4:43:
2c:f8:5e:11:03:26:0f:da:ee:9d:c0:81:31:e5:4b:
cb:f3:cb:dc:be:c5:f0:39:d6:5d:f0:24:32:51:bf:
fe:a1:51:e5:0e:79:94:30:8b:96:f2:64:c7:73:28:
db:d6:ed:fe:b0:18:7a:7d:97:b8:35:fc:90:70:ed:
b0:27:c2:0b:b1:8b:92:44:ae:15:f3:80:98:2a:14:
ad:76:76:72:bd:30:94:87:db:7c:49:48:00:d2:86:
31:5c:11:7d:4c:ee:a6:43:e1:a8:61:88:82:1f:e0:
4a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:08:DA:F1:C7:57:9A:B1:4B:19:B9:0D:CC:4D:3E:F3:54:BC:D3:96
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/8gja8cdXmrFLGbkNzE0-81S805Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/23
Signature Algorithm: sha256WithRSAEncryption
10:f2:0c:c6:7a:70:67:ab:8d:f1:9e:d1:ab:6b:9b:55:5b:de:
ed:b7:04:eb:fa:50:8c:6e:c2:37:09:63:76:6a:b5:85:f6:20:
d6:d6:4b:1d:97:ee:9c:3b:07:bd:e2:fe:cf:f0:a7:ba:24:45:
5a:d4:76:64:77:e7:94:cd:3b:2e:06:3f:9b:0a:1a:94:70:4e:
53:14:b5:8b:9f:6a:73:11:ce:71:b0:19:c2:ad:1d:e3:92:a4:
4b:b9:1b:aa:e3:38:1d:1a:ee:c4:52:a6:33:63:04:5b:ec:a9:
1b:90:ac:6b:a4:e2:85:7e:ae:d7:57:67:2f:bf:2e:c5:b7:9c:
0a:c5:7f:e0:56:28:3f:31:f3:7b:48:34:30:38:75:bd:9c:88:
97:78:fa:7f:8d:54:3f:09:ad:0c:f4:54:34:26:58:e2:df:81:
00:9c:73:2c:33:f5:dd:92:4f:98:92:19:ca:0b:98:2c:14:00:
ff:3b:0f:2b:23:da:2c:65:a0:7d:67:4b:e6:be:2f:b6:3c:c6:
b1:0d:97:f6:5b:f7:da:c5:4e:9b:68:d5:69:d4:4b:28:22:f5:
0b:04:0c:03:61:4d:b8:68:95:40:b0:46:9a:55:b7:5a:7c:2a:
7e:67:f0:dd:05:00:2b:18:67:ef:07:80:0a:20:c5:71:3b:38:
e3:7b:f1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-fra.rpki-client.org