Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gHbZSNTjXt9lTCDbNTAKr3dLGLY.roa
File: gHbZSNTjXt9lTCDbNTAKr3dLGLY.roa (raw, json)
Hash identifier: mwcjFUSY1+LaBwevDqu3daZ5P5gy1bkyPVTtH8UHm04=
Subject key identifier: 80:76:D9:48:D4:E3:5E:DF:65:4C:20:DB:35:30:0A:AF:77:4B:18:B6
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C5411500539C94D35F7760B23A64514
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gHbZSNTjXt9lTCDbNTAKr3dLGLY.roa
Signing time: Sun 01 Jan 2023 07:55:26 +0000
ROA not before: Sun 01 Jan 2023 07:55:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209280
IP address blocks: 45.138.111.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:11:50:05:39:c9:4d:35:f7:76:0b:23:a6:45:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8076d948d4e35edf654c20db35300aaf774b18b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7b:c4:24:d0:20:ea:26:15:fd:e7:5d:37:f4:
9f:21:dc:44:62:dd:58:4b:81:12:48:4d:2a:37:bc:
a9:77:bf:ee:c5:b6:0d:2a:30:03:f7:13:4e:66:f5:
84:ad:1b:ea:20:54:af:9b:48:9d:04:d7:85:7d:ab:
29:be:83:8c:2a:34:5b:9e:38:3b:97:14:d4:63:4f:
a8:7b:69:ae:d3:3a:6c:83:d5:5b:a8:ef:84:98:60:
45:00:0f:86:fe:02:e7:b4:b1:00:66:78:af:2c:c3:
f1:67:cd:c4:91:91:10:f0:51:04:29:92:33:c6:bc:
de:09:5c:b6:e1:ef:2b:cb:ae:4f:60:77:7b:df:08:
a0:8f:a6:74:94:46:f6:e8:36:4c:fa:34:35:e0:d7:
70:b3:f1:fd:e4:23:75:1a:db:b8:34:89:b1:c6:2d:
fe:e8:87:bb:5b:47:a9:8f:c7:bd:71:cc:5f:6e:36:
94:73:3f:9e:37:70:6e:b1:b1:24:cf:24:cd:f6:9f:
06:8a:7e:ba:a4:35:ba:16:28:a9:5b:f0:c6:e3:14:
99:d5:5b:98:ca:81:db:c9:da:17:05:3d:c6:4b:2d:
71:79:2d:c4:85:4f:b8:03:b1:27:fb:62:e1:0f:aa:
3a:fc:44:d3:8c:4e:5e:f3:97:1c:44:4a:0b:b3:f5:
a2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:76:D9:48:D4:E3:5E:DF:65:4C:20:DB:35:30:0A:AF:77:4B:18:B6
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gHbZSNTjXt9lTCDbNTAKr3dLGLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.111.0/24
Signature Algorithm: sha256WithRSAEncryption
23:3f:67:92:58:08:3e:21:f2:19:8a:8a:05:29:da:3d:96:e2:
77:db:3e:68:07:c8:a6:a9:36:5a:e0:81:3c:62:bb:20:3a:82:
f4:dc:cd:1d:00:22:2d:47:9b:2f:26:c1:d5:fa:ca:1d:1c:ff:
1c:1c:b0:4b:69:57:68:b1:66:1d:f7:d2:c0:ae:ef:a1:0f:e8:
63:38:e2:8f:3e:6b:24:87:cf:4c:bd:5e:a9:df:72:1f:4d:b5:
e2:b2:54:ea:7a:b6:4d:cf:72:c6:8e:4e:c2:03:e6:10:bf:47:
14:89:94:00:e5:5a:d0:18:56:f7:6a:aa:c9:fc:2c:3e:ba:50:
4b:72:14:73:98:29:fc:7e:ea:bb:7c:44:fa:4f:5c:fc:0b:25:
90:9d:51:8d:01:b7:47:c6:0c:06:4e:13:86:3f:29:bc:aa:03:
0e:b8:33:f3:44:3e:77:c3:e1:22:aa:6b:dd:4b:e2:73:1e:76:
bc:2e:ca:79:df:8f:f1:73:46:e9:7c:4f:25:85:66:59:2f:f2:
2a:8c:b3:e1:0d:37:ad:6e:6f:af:56:dc:9e:70:d2:93:07:40:
05:35:68:65:e9:9b:97:d5:c4:49:30:d3:69:b6:88:7f:89:cb:
b4:49:f3:1c:3a:88:45:de:6c:ad:88:42:d0:8d:e9:cd:68:aa:
9b:93:2c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org