Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/gFAwElglwhYd2b7igBSxjO7TFdU.roa
File: gFAwElglwhYd2b7igBSxjO7TFdU.roa (raw, json)
Hash identifier: 9ODwqVwQxFvu9gK/v/Npi+M4J7gqDSWLxiTQzgSmp8c=
Subject key identifier: 80:50:30:12:58:25:C2:16:1D:D9:BE:E2:80:14:B1:8C:EE:D3:15:D5
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 01856ED4D2696C65438B473F81EE80D2010E
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/gFAwElglwhYd2b7igBSxjO7TFdU.roa
Signing time: Sun 01 Jan 2023 19:35:19 +0000
ROA not before: Sun 01 Jan 2023 19:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 45.129.92.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d2:69:6c:65:43:8b:47:3f:81:ee:80:d2:01:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jan 1 19:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=805030125825c2161dd9bee28014b18ceed315d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cd:fa:a1:81:cc:d9:13:2b:88:f3:81:66:ef:
3d:e6:bc:16:eb:d2:7d:7e:c4:0c:71:be:8d:60:36:
b4:6a:aa:06:78:65:58:6f:0f:f2:65:f6:4f:52:92:
f4:14:8c:ca:60:e8:5e:49:13:8f:4f:c9:09:bd:01:
aa:64:49:e2:e5:a9:52:cb:9b:de:5e:83:f5:3e:3b:
b2:6d:39:91:83:99:3b:4c:30:75:05:e8:c2:d5:87:
a2:ab:91:d8:07:fc:a2:cf:2a:b9:fb:e4:cf:d2:c9:
2a:5b:0c:f9:fe:1d:2e:54:6d:5a:90:da:fc:58:cb:
2e:3f:59:e6:5e:9d:44:df:1a:3d:28:f7:4a:9a:de:
04:59:c7:b0:2e:f6:9d:ab:77:58:0a:19:f3:b1:3e:
02:89:b1:1e:be:96:de:66:a2:2a:30:84:bb:a8:27:
a6:06:8a:52:54:df:3d:3e:b3:af:e3:da:98:76:79:
1f:0d:f9:b7:22:50:bd:b7:df:e9:57:78:b3:f8:f2:
2a:33:a1:b7:d3:5c:e6:25:31:dd:9e:58:91:16:e5:
8b:89:f7:da:fd:ed:76:cf:d4:21:5e:8a:f6:a2:de:
23:76:91:7e:ba:a2:7a:f6:cf:0e:9c:96:49:d5:d3:
e9:53:f3:0e:06:6d:94:ff:63:c8:ed:7f:f7:ed:8c:
b7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:50:30:12:58:25:C2:16:1D:D9:BE:E2:80:14:B1:8C:EE:D3:15:D5
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/gFAwElglwhYd2b7igBSxjO7TFdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.92.0/24
Signature Algorithm: sha256WithRSAEncryption
57:be:3b:26:b1:56:5f:51:42:1d:98:fd:89:ea:a9:42:39:20:
55:41:98:15:b2:3d:ef:a9:ce:7f:fd:87:73:79:9b:4c:65:10:
50:62:5b:0b:73:25:c1:cb:d1:00:d3:b0:dd:27:4d:a6:02:ba:
fc:ae:aa:c2:57:c3:94:be:0a:20:6a:dc:71:c7:c3:5d:1c:31:
26:c3:c1:d5:9b:9b:f8:6b:7d:ff:43:37:71:67:2e:bd:b1:4f:
c0:d7:80:31:77:46:bf:25:2c:b2:4d:8c:7b:c6:44:4e:2b:c9:
ff:79:7b:ca:e1:3c:1a:ba:d1:c7:80:74:2f:b5:b0:5f:97:96:
43:6e:91:ba:bb:ed:e6:ee:39:73:6e:5e:7e:24:7b:da:67:9b:
bf:5b:a9:d7:d9:5c:b3:a7:a1:c8:c8:0f:fb:2f:9e:cd:63:6a:
9c:a5:45:61:36:10:79:d3:b5:19:97:8c:7f:50:20:2b:0a:49:
eb:4b:dc:4e:85:7b:8b:59:28:1e:10:14:0a:88:5d:88:07:8a:
a8:d5:2e:af:77:8d:07:7d:9b:75:60:95:2c:6a:d3:97:e9:59:
7d:5e:97:4d:fb:ff:06:ea:4e:dc:eb:f6:85:a9:8f:80:3c:21:
4e:11:71:46:24:8c:4f:1f:f4:1a:f7:57:ec:14:2d:2b:b3:66:
ad:1d:af:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:47 2024 by rpki-client on console-fra.rpki-client.org