Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/LhFekIUmGAsKfo2CTTLy6uUN_Ho.roa
File: LhFekIUmGAsKfo2CTTLy6uUN_Ho.roa (raw, json)
Hash identifier: Anl3x3FDIGjm31NkUfASvwGE+NaS+VKeUdCDK5g2oWY=
Subject key identifier: 2E:11:5E:90:85:26:18:0B:0A:7E:8D:82:4D:32:F2:EA:E5:0D:FC:7A
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018713A121F9A32A5B07038376E0A94D7AD5
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/LhFekIUmGAsKfo2CTTLy6uUN_Ho.roa
Signing time: Fri 24 Mar 2023 12:38:59 +0000
ROA not before: Fri 24 Mar 2023 12:38:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 45.149.94.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:a1:21:f9:a3:2a:5b:07:03:83:76:e0:a9:4d:7a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Mar 24 12:38:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e115e908526180b0a7e8d824d32f2eae50dfc7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:67:1b:57:7f:bd:2f:cf:92:c0:b3:fd:cb:5f:
d2:12:36:47:34:ed:16:14:0e:c5:92:a5:d7:63:5e:
ea:3b:b9:dd:3c:65:a7:2f:c1:9d:26:4f:19:f2:db:
83:57:d9:c5:91:72:a8:1c:1a:bc:4a:cb:8b:15:ab:
95:68:d8:e9:48:74:f9:17:f7:71:e6:b2:af:9b:fd:
75:9d:41:8a:e0:e6:b3:21:26:2a:33:67:44:74:c0:
f1:63:ff:87:48:6d:ef:aa:74:fe:c8:18:b9:2e:2f:
21:3e:6a:76:a2:c3:85:48:a7:61:48:2b:78:38:81:
ab:13:71:ef:f7:22:62:82:f5:ba:15:5d:3b:80:b0:
94:50:27:6a:87:a0:e7:56:f7:c6:19:47:6f:6a:66:
4d:dc:18:0f:32:73:6e:74:c6:15:54:ae:6a:8c:ef:
57:e5:2b:58:6c:f4:11:ae:19:04:4e:9b:34:bd:29:
7d:b7:80:13:45:5c:77:14:ba:af:22:f8:98:d3:07:
39:05:1b:0b:76:0c:cb:6b:a6:79:54:77:a5:bd:bd:
24:a1:64:b4:ee:94:10:10:f4:cc:64:ef:59:4e:15:
0e:84:62:a5:a8:ac:0c:3b:7d:46:48:66:33:4a:54:
b6:d6:c8:fa:5b:cd:13:e7:31:53:d1:29:b6:da:af:
78:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:11:5E:90:85:26:18:0B:0A:7E:8D:82:4D:32:F2:EA:E5:0D:FC:7A
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/LhFekIUmGAsKfo2CTTLy6uUN_Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/24
Signature Algorithm: sha256WithRSAEncryption
88:82:72:76:c5:6a:a8:b6:44:65:ef:8a:a4:e0:7e:bc:3f:1f:
d9:93:ba:5b:d5:fb:ee:8e:f8:ec:7f:8b:b1:49:86:d7:ff:75:
42:9a:72:9b:63:6c:88:0a:68:73:7b:65:0a:ed:fc:bb:fd:2c:
7d:10:0a:b3:b2:b2:66:3c:77:a4:1f:3f:47:94:22:51:74:ed:
16:e9:7e:7b:1f:41:b4:b8:9a:10:54:02:ed:a0:f6:2a:9f:d3:
9a:73:61:c8:72:6b:39:95:65:ea:a8:2f:3c:20:b6:4e:42:c2:
cc:1c:d1:1e:a8:6d:63:b3:62:b0:12:3e:59:07:1b:1d:c2:e4:
92:43:90:73:7c:0d:9e:e4:7c:d0:0b:f9:fe:91:4b:d6:b4:8d:
4a:e8:e0:8b:4d:ae:96:48:cb:b4:7a:c7:5c:37:74:f9:df:37:
d2:ca:29:92:80:b9:74:07:fe:92:e1:fa:02:31:5b:fb:fb:39:
dd:fc:32:15:6a:66:4a:ce:84:e7:c2:45:a5:b7:1a:31:c5:be:
a8:49:89:d6:42:0e:a6:14:5d:64:35:ee:82:d4:aa:98:4a:73:
5b:ee:ef:32:7c:64:49:51:81:e6:8b:a1:d0:57:cf:d8:67:f9:
f6:99:8b:74:1a:a1:91:10:7c:9d:c5:50:e2:4a:f3:3a:ef:1f:
b8:e1:c2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 21 06:02:41 2023 by rpki-client on console-ams.rpki-client.org