Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/sDHX2YyAdpa5ks2ND_WBnMsqnNE.roa
File: sDHX2YyAdpa5ks2ND_WBnMsqnNE.roa (raw, json)
Hash identifier: 0vuaUk+TtuUFjBCg/voHTzaJY6xtshCnzEG8NotWXS8=
Subject key identifier: B0:31:D7:D9:8C:80:76:96:B9:92:CD:8D:0F:F5:81:9C:CB:2A:9C:D1
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 018A42769E9CD8775DA5FFE6FFF83AB15197
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/sDHX2YyAdpa5ks2ND_WBnMsqnNE.roa
Signing time: Tue 29 Aug 2023 18:03:04 +0000
ROA not before: Tue 29 Aug 2023 18:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 45.146.162.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:42:76:9e:9c:d8:77:5d:a5:ff:e6:ff:f8:3a:b1:51:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: Aug 29 18:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b031d7d98c807696b992cd8d0ff5819ccb2a9cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:22:d8:d4:24:b2:2b:14:c3:cc:86:73:c4:bd:
9e:79:8d:b3:16:6c:f7:59:94:59:e2:bf:75:41:47:
5f:06:9a:d3:ef:c1:76:79:e8:b8:ac:ec:68:25:93:
ec:eb:48:b4:65:9e:c6:e9:65:46:76:a3:1f:14:10:
6d:08:fa:b8:ca:2d:90:a1:5b:62:85:32:23:5f:29:
2c:ae:e9:51:69:5b:fb:68:4d:60:71:41:38:84:7f:
37:86:5c:78:20:f3:d5:e6:c9:2f:f4:2f:30:5c:8b:
b9:3b:a5:25:43:4e:ce:fa:c5:da:1f:8a:52:7e:b8:
81:aa:55:2a:c1:70:05:e4:36:e5:8a:c2:14:97:b3:
32:0c:7e:44:97:34:d0:ed:2f:48:d9:88:8b:fe:1d:
28:8f:02:34:e5:29:eb:dc:9d:cf:38:46:6b:15:f5:
5e:8d:d4:55:b8:b9:2d:cd:cd:f4:fc:2e:af:4e:69:
1c:df:c3:f5:df:40:1d:b7:f3:40:28:8e:13:4a:25:
ce:37:ef:99:70:2b:1d:1b:a4:40:3e:58:25:4e:4b:
aa:45:65:b8:57:4b:80:b0:d2:bf:73:e3:dd:7c:d4:
8d:1a:78:70:d6:71:59:be:c7:3e:19:78:ce:54:e5:
8a:a2:18:e1:33:d2:34:42:a3:c2:ef:8c:d3:7d:7f:
c3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:31:D7:D9:8C:80:76:96:B9:92:CD:8D:0F:F5:81:9C:CB:2A:9C:D1
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/sDHX2YyAdpa5ks2ND_WBnMsqnNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.162.0/23
Signature Algorithm: sha256WithRSAEncryption
65:3c:0d:15:60:64:b1:00:f9:1a:10:ca:ce:8f:59:ff:3c:57:
4b:56:44:a1:fb:cd:3a:bf:ce:ca:10:91:37:d9:d4:de:63:e1:
ec:02:e1:b7:d2:14:41:54:45:e7:9c:76:5b:61:ac:2d:41:5f:
f5:99:95:26:22:ff:b1:a0:b6:b0:f7:7a:b7:9e:4d:ff:29:85:
b4:ce:04:30:1e:71:af:c2:c8:0c:13:47:73:b5:2a:f9:94:e6:
cc:d4:1d:af:a6:5a:1d:cd:22:39:46:7c:3d:3f:9a:05:af:42:
56:3d:be:a4:88:52:66:02:05:dd:e7:6b:f4:75:de:d2:3d:c3:
b4:7a:49:0d:8d:ac:91:94:4d:eb:cd:23:4f:fd:60:0d:ff:f1:
c8:6e:ee:e9:20:92:a7:f1:c7:e6:cc:01:f2:16:88:b1:de:0e:
12:ca:03:d0:9f:76:78:fb:68:2f:f8:66:a1:9d:05:6f:a0:fe:
72:d6:d2:ea:da:6b:f1:2d:fc:14:0b:5a:23:13:bf:d9:e4:47:
27:ba:18:64:fe:7f:3b:fc:1c:66:ea:61:93:f3:0d:39:2d:c3:
bb:60:eb:e3:c6:77:b0:89:3e:6a:eb:a6:e0:12:db:b9:ab:74:
21:be:46:0e:58:a4:8f:75:3d:66:68:9d:dd:d5:f9:a1:83:6b:
df:5a:4d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 29 13:32:29 2023 by rpki-client on console-ams.rpki-client.org