Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7C19LiAYn_3xCVKau5hKpgP1p-Q.roa
File: 7C19LiAYn_3xCVKau5hKpgP1p-Q.roa (raw, json)
Hash identifier: 8QEN/xcSem21/KqX5QPF+nLNUsbnIktzNJLu5YNI5Pg=
Subject key identifier: EC:2D:7D:2E:20:18:9F:FD:F1:09:52:9A:BB:98:4A:A6:03:F5:A7:E4
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B57F21C6807DBA3373EB2DFB9F02B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7C19LiAYn_3xCVKau5hKpgP1p-Q.roa
Signing time: Sun 01 Jan 2023 18:15:03 +0000
ROA not before: Sun 01 Jan 2023 18:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395003
IP address blocks: 45.82.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:57:f2:1c:68:07:db:a3:37:3e:b2:df:b9:f0:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec2d7d2e20189ffdf109529abb984aa603f5a7e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:40:1b:03:b9:6e:52:f9:87:3c:8f:1e:53:f4:
22:6d:2a:19:4d:c8:d4:a5:99:3c:e3:a0:0c:7a:e0:
fd:b8:6e:0b:62:90:2a:17:19:d7:a4:23:72:23:67:
68:36:c2:a8:6c:46:38:34:4e:78:84:af:00:75:db:
ad:c6:ae:e2:9d:fa:7d:7a:94:32:87:69:ef:0a:ac:
9a:e9:36:2a:d8:4a:d7:be:fc:ee:3b:1c:0b:3e:94:
65:08:71:b0:23:70:94:c8:e5:19:05:51:16:74:37:
ad:a9:08:b7:88:4a:e3:e4:85:2c:84:77:b4:a8:f3:
e8:9f:c3:a3:39:1f:a2:09:3f:87:3e:8c:d9:cc:0e:
7c:4a:b3:6d:5d:d6:b8:16:1d:92:62:d2:3b:42:85:
c2:25:51:23:08:d4:67:57:b3:3e:34:49:15:96:cc:
bc:b7:69:53:d7:24:8e:32:ef:f8:74:e5:fd:3a:53:
fd:83:60:81:3f:5e:3e:8b:81:e0:9f:68:1a:d3:e2:
44:ed:30:08:70:4c:ff:0f:f5:45:06:c3:cf:a8:02:
e1:34:9a:9d:96:af:86:45:75:6f:77:ec:a3:a9:25:
90:11:ea:27:64:28:b1:44:60:81:a0:f5:d6:4e:6d:
1c:48:3c:24:78:84:bf:88:f1:d2:16:b7:ae:b9:82:
a4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2D:7D:2E:20:18:9F:FD:F1:09:52:9A:BB:98:4A:A6:03:F5:A7:E4
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7C19LiAYn_3xCVKau5hKpgP1p-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.245.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:22:b6:09:37:c8:0f:d3:e2:07:c7:fe:89:f3:fb:bf:22:f0:
75:76:5b:36:4d:8b:4e:c3:d3:e7:13:cc:eb:78:b9:a6:4c:f7:
05:1c:23:7b:8c:b9:4e:72:1f:4b:c1:a7:a5:b4:3b:3c:b6:ee:
a6:12:26:de:03:40:36:8d:30:fd:03:69:ce:8c:f0:86:c5:25:
91:cf:4d:76:2a:b1:be:ae:ac:6f:5f:74:b7:e0:f1:f8:86:8b:
bd:97:a2:b7:80:e6:45:1e:e5:f7:7c:82:ab:17:2d:ce:c9:71:
05:7a:74:2e:b4:a8:bb:c6:2e:44:00:59:f3:3c:df:9b:a4:7f:
39:e4:ca:3c:a3:05:63:e1:ef:25:c8:29:70:20:19:f5:16:10:
7e:91:97:e6:3a:fd:2f:69:57:d7:cd:99:67:b8:ad:76:86:ac:
40:10:98:9a:e9:1d:91:2a:87:cc:0c:37:28:69:84:1c:99:f5:
c8:34:6d:7a:3f:84:39:89:c2:a5:52:55:e2:b6:d6:18:ed:9b:
8d:a9:5c:d2:55:ff:c3:14:32:0c:60:1c:65:79:e1:db:fd:fa:
30:6c:74:b5:98:0b:d0:18:d2:2a:79:92:ff:22:a0:0d:f8:78:
b6:f1:62:a8:f2:72:37:39:fd:44:86:92:5f:81:df:5d:37:87:
12:72:05:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org