Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v9f9tv-xg_Wpkmo5_fGTG3zDG-U.roa
File: v9f9tv-xg_Wpkmo5_fGTG3zDG-U.roa (raw, json)
Hash identifier: 3n35UNueJ5N29/TqT0YZLQxvBAuruMD5ikSbN6lRz3Y=
Subject key identifier: BF:D7:FD:B6:FF:B1:83:F5:A9:92:6A:39:FD:F1:93:1B:7C:C3:1B:E5
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710319C79AECC70F2779187C320E34D2
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v9f9tv-xg_Wpkmo5_fGTG3zDG-U.roa
Signing time: Mon 02 Jan 2023 05:45:06 +0000
ROA not before: Mon 02 Jan 2023 05:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207821
IP address blocks: 45.129.134.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:19:c7:9a:ec:c7:0f:27:79:18:7c:32:0e:34:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfd7fdb6ffb183f5a9926a39fdf1931b7cc31be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:92:f2:05:f0:81:d7:20:4a:dd:43:b8:5c:b0:
14:5a:0b:d2:5f:ca:26:ba:fd:e6:46:88:c2:40:ab:
95:a4:4d:87:50:41:27:72:56:a0:39:d9:87:9b:73:
83:fa:37:6c:49:33:dd:a1:f8:1f:d0:9d:2d:04:5a:
f6:76:22:ba:33:04:ee:e5:0e:12:2e:5e:cb:49:99:
41:27:d0:94:5d:7d:7a:37:37:29:a2:f3:98:46:f4:
ef:21:1e:4c:fa:5b:54:b3:fe:15:53:6f:e0:af:d3:
ae:df:3e:f3:bc:2f:94:ef:ab:06:13:54:f7:95:e6:
20:c0:37:82:11:b7:76:90:79:ec:38:14:ab:3f:f9:
ac:1c:72:67:e7:69:77:e3:9a:b3:22:9a:98:b4:8b:
16:63:0e:7f:a0:db:9d:17:0b:1e:52:5c:78:74:ee:
34:75:57:76:4a:2c:b2:5d:ab:f2:fc:8d:db:23:95:
da:14:17:08:d7:c3:49:46:ad:a5:10:d6:b1:cd:2f:
65:00:72:82:f0:94:d4:e0:11:62:20:a9:99:7a:24:
ec:cb:4a:59:e7:da:be:ba:f3:d4:46:be:f4:b3:d0:
1f:6a:83:de:4c:64:5b:58:fc:de:41:38:b3:f5:5c:
9b:60:a0:92:30:75:1c:99:b1:15:28:dd:a5:22:64:
20:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D7:FD:B6:FF:B1:83:F5:A9:92:6A:39:FD:F1:93:1B:7C:C3:1B:E5
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v9f9tv-xg_Wpkmo5_fGTG3zDG-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.134.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:94:65:38:88:95:ca:9d:98:0a:6a:49:d7:61:59:84:51:7e:
28:42:44:18:b5:d1:35:c5:6d:4c:4c:10:80:09:29:d0:83:fa:
a1:fe:86:eb:e7:eb:31:ac:96:56:5e:ec:a7:47:a7:23:dc:a4:
8c:73:e2:dc:b0:6b:95:88:93:37:c2:d7:17:a0:b9:77:75:69:
98:2c:9d:6e:7d:f0:74:91:35:e9:b5:f3:93:f1:c8:b9:c1:9a:
24:2d:58:50:ec:b3:ff:55:22:e8:98:61:15:69:41:32:48:48:
ac:5b:e2:a0:10:37:f7:9e:e1:97:b1:24:bc:43:7c:5b:b4:b3:
42:04:ac:97:da:48:3f:f2:7c:f5:8f:ee:28:43:1f:3b:6f:7a:
bd:91:52:0d:f1:2d:8b:30:aa:74:ea:36:4a:9b:a3:04:3f:7e:
8d:b3:d3:ea:93:c1:b7:96:6f:18:db:47:f9:a0:28:25:b1:d4:
dc:34:3f:56:e6:8c:04:1c:64:50:c6:aa:8d:cc:d1:d8:4c:e1:
fd:b4:04:1a:00:e5:a7:41:c0:14:6e:ca:ba:ed:af:3b:12:34:
5c:58:5c:2f:9a:03:bc:76:a5:ac:05:1b:dc:7b:f2:2f:10:a8:
b3:6e:86:f8:28:a1:b5:8d:30:5e:ee:36:41:78:34:70:b6:37:
e7:27:bc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:18 2024 by rpki-client on console-ams.rpki-client.org