Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOciqGb0g9NJd1sERVVPyMOXhQo.roa
File: eOciqGb0g9NJd1sERVVPyMOXhQo.roa (raw, json)
Hash identifier: MX7GeOsihx//uDaEAtr+Z+PgG70Rvx5/nc2lWbNZXrI=
Subject key identifier: 78:E7:22:A8:66:F4:83:D3:49:77:5B:04:45:55:4F:C8:C3:97:85:0A
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01857103204DC637AF7CC818807524B4E745
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOciqGb0g9NJd1sERVVPyMOXhQo.roa
Signing time: Mon 02 Jan 2023 05:45:08 +0000
ROA not before: Mon 02 Jan 2023 05:45:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212411
IP address blocks: 45.129.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:20:4d:c6:37:af:7c:c8:18:80:75:24:b4:e7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78e722a866f483d349775b0445554fc8c397850a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:39:67:3f:37:c4:2a:30:d3:2c:7f:dc:25:45:
7a:40:85:1b:a3:c6:78:68:b3:97:40:20:f0:6b:90:
dc:f9:75:7c:cd:75:ee:48:99:ad:2a:3a:a0:2a:b1:
fc:5b:3c:87:08:ca:4f:3b:f7:94:ea:7f:41:44:da:
c7:e5:63:38:c9:9b:ed:12:82:bc:f1:4d:f5:8e:6c:
7a:e8:23:94:af:33:ef:37:0e:5e:c6:6a:ff:85:d6:
e6:fe:6b:3e:41:6c:22:9d:8e:91:55:f2:5f:33:34:
e4:5c:43:4f:e3:e3:4a:0d:ae:20:82:5f:1e:c0:68:
67:cb:ac:20:b0:28:8e:2a:66:3e:67:90:8a:26:a4:
45:ba:d2:f6:a2:91:44:1f:6a:40:b9:14:99:ec:53:
d1:f2:01:9f:01:13:f0:8a:e4:fe:50:b9:3b:9e:fa:
cd:1e:b8:72:71:f3:9a:c2:8d:c8:10:95:b8:83:68:
0f:f4:38:c9:d8:2e:53:bb:a1:1d:1d:24:9e:a0:0c:
4b:91:8e:8d:fd:85:6c:8f:99:e5:31:a4:9d:cd:bf:
c3:ae:6f:18:54:ed:af:c0:b2:ad:21:d2:50:cf:0b:
8d:a8:13:6d:66:4e:d8:88:74:f3:74:97:b1:99:31:
eb:01:06:61:36:82:9e:76:33:58:df:5e:6c:dd:24:
f8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E7:22:A8:66:F4:83:D3:49:77:5B:04:45:55:4F:C8:C3:97:85:0A
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOciqGb0g9NJd1sERVVPyMOXhQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.133.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d4:37:75:85:84:e0:b4:bf:d8:89:f7:82:39:f6:75:90:6f:
f8:42:28:20:0f:cc:ab:b0:19:4d:4a:28:15:ec:71:58:a5:b9:
ad:6b:ba:86:ea:c7:aa:6e:0e:4f:ab:e0:df:68:f4:ef:d1:f2:
d3:62:17:4a:1f:52:ab:a1:d2:94:d3:21:41:99:d3:ac:ea:68:
c7:6c:79:d8:4a:83:70:4d:dd:f1:21:9b:a5:b9:6d:3d:9a:06:
5b:69:95:e3:93:b2:da:08:e0:b7:11:a8:38:48:a7:ec:05:46:
b8:69:a2:a5:45:48:0a:ca:8c:e4:87:43:da:c7:b0:6d:e5:9a:
c6:b7:3e:a2:c4:7c:0e:71:80:de:d7:a4:9e:37:76:71:60:6e:
ae:bd:d1:36:ed:cb:c7:ba:b1:61:ab:f8:7b:46:22:1a:fe:07:
d4:02:e4:3e:c2:87:ce:3d:38:b0:ef:6d:9b:f4:50:b7:d2:30:
d1:4e:0d:70:7c:70:1e:33:2e:49:4c:74:e5:a1:bc:13:16:42:
55:5c:24:99:11:51:23:e2:4b:3f:7b:b3:17:f2:53:00:63:1b:
5a:d5:cd:6b:bf:7d:e7:e7:c1:0e:7b:e3:86:0d:73:26:a8:5c:
d9:64:61:aa:59:dd:b2:0f:9c:63:0e:79:5e:e0:49:63:80:cd:
17:02:05:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org