Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/UQGQNikG5QF_LZ61gv8pCLTrC38.roa
File: UQGQNikG5QF_LZ61gv8pCLTrC38.roa (raw, json)
Hash identifier: xqbpopzcsVOzxgjJGjVFzLZIHyH9N1RKv4mPqULre6U=
Subject key identifier: 51:01:90:36:29:06:E5:01:7F:2D:9E:B5:82:FF:29:08:B4:EB:0B:7F
Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Certificate serial: 01856F94A0422A8FD5CC1AF97C03901CD8ED
Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/UQGQNikG5QF_LZ61gv8pCLTrC38.roa
Signing time: Sun 01 Jan 2023 23:04:49 +0000
ROA not before: Sun 01 Jan 2023 23:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 45.158.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a0:42:2a:8f:d5:cc:1a:f9:7c:03:90:1c:d8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Validity
Not Before: Jan 1 23:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=510190362906e5017f2d9eb582ff2908b4eb0b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5f:9d:79:13:6a:12:0c:9a:37:c4:e7:34:47:
ff:f5:67:ae:60:93:84:26:ac:98:fc:40:6f:86:92:
9a:59:2a:46:f8:ff:09:ac:f8:d8:92:dd:45:55:4e:
5f:ce:e1:9c:12:7b:01:23:d2:9a:72:6e:8d:14:3e:
0b:42:42:51:aa:81:ea:b9:39:34:c3:3e:d8:c0:ab:
d2:cb:26:ae:99:44:c9:a2:63:9b:37:bf:c6:c5:7c:
ac:07:53:74:20:28:ef:45:c1:f7:24:fd:cb:0e:c3:
9b:a5:74:01:db:51:a3:d2:43:7b:e4:c3:d6:11:0f:
71:7b:9e:a2:01:e5:d2:1c:64:ed:a0:05:68:87:36:
d3:2c:a9:fc:8d:00:b4:28:62:64:49:99:59:f2:00:
b3:d4:cd:bb:d8:89:96:e0:98:46:18:7b:3e:cb:2d:
97:93:3b:0c:95:57:ac:6f:0d:7d:91:5a:d6:59:cf:
c1:ea:17:ec:8c:19:7e:0f:a8:96:13:5d:90:e4:12:
cc:aa:5d:31:bf:ee:1c:56:30:c6:25:3e:0e:b2:8d:
83:98:30:33:86:8f:ed:25:d4:5a:08:26:bf:33:84:
2a:7c:34:c9:d9:35:81:b6:f2:60:3b:be:50:e8:30:
e8:4b:1d:8c:24:18:b0:42:1a:b0:c9:4a:3a:82:f9:
03:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:01:90:36:29:06:E5:01:7F:2D:9E:B5:82:FF:29:08:B4:EB:0B:7F
X509v3 Authority Key Identifier:
keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/UQGQNikG5QF_LZ61gv8pCLTrC38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f2:2a:67:3c:3c:60:31:87:a9:16:40:09:c6:11:3f:f0:4c:
b8:ca:cc:af:0d:f3:af:d3:3b:3b:7c:ab:e4:0c:62:52:ca:4e:
4c:32:d4:b3:05:73:9a:e2:6d:e9:9c:be:b8:ce:82:c6:93:0b:
ab:60:ff:d0:a6:85:33:d3:cd:24:f4:7f:1a:e3:a6:05:b5:cd:
16:6f:43:1a:e2:9f:16:9b:76:92:7e:8a:cf:bc:31:ee:8f:41:
0c:cb:b5:3d:47:9a:8b:e4:83:3d:39:2e:b8:9f:66:a3:5a:20:
e4:8e:8a:e3:4f:7b:bc:d8:78:eb:d6:8e:28:82:5c:9f:2e:f0:
3c:ff:d5:be:60:ac:89:d1:15:ce:30:57:31:8b:a7:b4:f2:70:
33:15:71:78:b8:29:8a:26:c3:2b:13:0a:4c:bd:63:76:d9:a6:
de:e7:c7:40:ce:ce:d3:11:48:25:88:38:46:00:7a:44:2e:92:
e1:4e:8d:79:a4:d9:c2:91:d3:1f:3f:61:93:98:9f:12:06:5c:
29:41:dc:26:dd:b9:49:36:0d:cc:4c:8b:45:28:e4:a7:a7:51:
96:4b:8b:c7:bd:98:44:55:02:4f:5a:2a:38:74:2a:50:85:0f:
b8:97:02:43:6e:ec:25:3c:05:ab:1f:d6:11:ef:45:4e:fe:c1:
ac:4e:d5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:16 2023 by rpki-client on console-fra.rpki-client.org