Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/635a0d-921f-4711-b7d4-77dee2d79ae4/1/quDdpd7AKgyBPFmkTxqheIZ4rnU.roa
File: quDdpd7AKgyBPFmkTxqheIZ4rnU.roa (raw, json)
Hash identifier: kfy1RnzRTueA75xo4ujJnoy/2l0ikucdc87Smnswfmw=
Subject key identifier: AA:E0:DD:A5:DE:C0:2A:0C:81:3C:59:A4:4F:1A:A1:78:86:78:AE:75
Certificate issuer: /CN=234e9f75c7326f765c8966c2edc00a982a5ea7f0
Certificate serial: 0186883F9AF7BFA7A2902F403B50F181B5EF
Authority key identifier: 23:4E:9F:75:C7:32:6F:76:5C:89:66:C2:ED:C0:0A:98:2A:5E:A7:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I06fdccyb3ZciWbC7cAKmCpep_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/635a0d-921f-4711-b7d4-77dee2d79ae4/1/quDdpd7AKgyBPFmkTxqheIZ4rnU.roa
Signing time: Sat 25 Feb 2023 11:05:14 +0000
ROA not before: Sat 25 Feb 2023 11:05:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211732
IP address blocks: 45.157.148.0/24 maxlen: 24
45.157.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:88:3f:9a:f7:bf:a7:a2:90:2f:40:3b:50:f1:81:b5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234e9f75c7326f765c8966c2edc00a982a5ea7f0
Validity
Not Before: Feb 25 11:05:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aae0dda5dec02a0c813c59a44f1aa1788678ae75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4b:43:5e:21:78:c3:34:63:a4:e7:42:f6:de:
1f:07:93:e8:fe:c4:f3:04:35:0f:7a:51:36:41:98:
1f:98:e0:0f:cd:be:03:a1:7c:76:cf:7e:78:58:6e:
d1:d8:09:3a:90:b2:e0:ad:6b:85:d9:a5:96:5f:d7:
48:d2:5c:7b:66:50:db:39:f3:ba:03:21:c7:00:ad:
77:4f:4a:46:0e:ed:48:f7:06:62:af:99:51:b5:c6:
c0:b3:ba:7c:62:0a:6e:53:06:14:bd:a6:97:10:67:
43:2e:0e:a8:7a:5c:4c:06:f7:60:38:9b:d6:bf:d1:
fc:a1:cc:23:d1:67:99:e0:51:fc:34:6e:30:12:69:
5c:40:c6:28:20:ae:7e:0d:39:b5:6d:75:3c:6a:f0:
ed:ab:14:75:34:c1:18:2f:43:99:b9:5d:4b:e4:97:
71:42:ce:a0:ba:8c:f4:f9:f7:44:72:73:fa:cc:19:
a0:aa:db:2d:86:fe:a0:0b:ca:57:40:88:28:0c:b3:
d2:db:00:37:17:c6:73:ae:21:7f:c3:81:cb:0d:60:
1b:38:41:5b:d8:29:7e:6a:bd:1a:48:27:f5:23:ae:
d9:16:49:c2:b3:17:01:a1:52:73:cb:68:c4:f5:ac:
e9:2b:43:d4:8a:fa:f7:71:07:cf:eb:4d:72:4e:43:
c8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E0:DD:A5:DE:C0:2A:0C:81:3C:59:A4:4F:1A:A1:78:86:78:AE:75
X509v3 Authority Key Identifier:
keyid:23:4E:9F:75:C7:32:6F:76:5C:89:66:C2:ED:C0:0A:98:2A:5E:A7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I06fdccyb3ZciWbC7cAKmCpep_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/635a0d-921f-4711-b7d4-77dee2d79ae4/1/quDdpd7AKgyBPFmkTxqheIZ4rnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/635a0d-921f-4711-b7d4-77dee2d79ae4/1/I06fdccyb3ZciWbC7cAKmCpep_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.148.0/23
Signature Algorithm: sha256WithRSAEncryption
da:34:07:ab:d2:0e:c2:83:ec:c1:c0:73:58:fe:48:3a:a1:0e:
f2:6c:28:1c:68:41:4a:49:ed:9f:fc:bb:6c:9d:9f:51:19:0e:
e5:d7:ee:fa:aa:18:1a:e9:70:c5:d7:8c:27:92:a6:0d:96:5f:
d2:48:cb:82:65:87:da:4b:cf:98:75:72:8c:69:22:38:05:84:
16:2e:f2:99:f7:db:b1:16:22:88:f5:c8:39:46:2a:65:72:d7:
34:16:a5:b7:24:12:d2:2e:56:eb:d3:d7:af:1b:ef:47:ab:97:
98:d2:c8:74:1c:7b:22:5b:64:5e:cc:a2:c0:e7:b6:0e:1c:fb:
7c:ba:ee:fe:53:56:76:93:b8:10:17:1d:d8:5f:9b:f1:4b:c8:
6e:f2:d8:09:0f:45:17:b5:fa:93:f2:a9:bd:5b:a5:3b:b9:03:
f1:31:6c:cc:4a:8c:b3:a6:fe:bb:f6:fd:5b:4f:8f:5f:3f:45:
ec:2c:14:2f:ea:49:e3:92:de:85:4c:af:e4:c8:33:c3:db:a3:
cd:39:22:de:0b:c1:18:cc:93:c2:78:8f:5c:61:1a:24:e3:e6:
a3:1a:47:a7:47:cf:00:01:ae:f5:28:f3:c5:d3:47:94:03:93:
c8:d4:2b:69:be:2c:25:94:8e:2d:bb:03:d8:cf:0d:47:bb:05:
cf:ad:43:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org