Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/EhEUhsHEXLCrwRjCbwmqnY7K2Xc.roa
File: EhEUhsHEXLCrwRjCbwmqnY7K2Xc.roa (raw, json)
Hash identifier: Ih028P9uCFIMYO2hG2ru+RbmkScjLVmbCtQjfHz8pms=
Subject key identifier: 12:11:14:86:C1:C4:5C:B0:AB:C1:18:C2:6F:09:AA:9D:8E:CA:D9:77
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 018714C62D3DB536E5E1E2E9ECB2A746BA08
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/EhEUhsHEXLCrwRjCbwmqnY7K2Xc.roa
Signing time: Fri 24 Mar 2023 17:59:04 +0000
ROA not before: Fri 24 Mar 2023 17:59:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206485
IP address blocks: 45.129.136.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:c6:2d:3d:b5:36:e5:e1:e2:e9:ec:b2:a7:46:ba:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Mar 24 17:59:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12111486c1c45cb0abc118c26f09aa9d8ecad977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:51:16:45:30:23:3c:e1:56:33:73:13:3f:d1:
9c:c2:a7:50:57:28:61:42:c1:f6:d7:ae:11:3c:c5:
8a:d5:03:50:55:fa:0a:8e:db:5e:7d:37:a2:ca:3f:
a3:ea:be:4d:fd:a1:ff:cd:64:c0:f6:65:95:e5:01:
c7:83:a3:ec:36:91:1c:cd:30:79:c7:97:e0:1b:cb:
00:97:56:4b:41:27:97:6b:04:74:21:3c:62:22:b4:
f4:19:91:a0:16:9e:37:8f:dd:75:6e:8b:f0:3e:c8:
1d:f6:6f:96:19:81:7d:9b:09:4b:ad:f3:68:12:32:
d0:8e:b5:f9:56:4a:55:22:ff:cb:4c:a6:82:2e:ec:
6d:58:3b:ce:fd:0e:e9:85:02:96:bf:f9:4e:fc:5b:
c3:3e:09:b2:9c:48:f5:09:ed:d0:37:9c:4b:69:e3:
e9:68:26:2d:ed:d5:10:f6:ec:20:d6:e7:12:7f:c5:
cd:1c:fb:d3:a3:4b:bc:88:65:df:64:d7:85:b2:23:
2f:1c:50:e6:dd:53:08:85:a0:a2:96:be:8e:48:55:
fb:60:65:7c:69:85:80:42:ca:48:0b:b9:7c:f8:95:
59:45:bf:e7:3a:fd:2e:6a:b6:47:5f:ec:74:d0:a6:
ad:0f:cd:f2:7f:cc:74:0c:b2:92:0c:13:d2:a4:78:
d6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:11:14:86:C1:C4:5C:B0:AB:C1:18:C2:6F:09:AA:9D:8E:CA:D9:77
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/EhEUhsHEXLCrwRjCbwmqnY7K2Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:7d:fe:ea:ad:c5:24:50:ea:1d:c1:44:33:7a:3c:f0:22:21:
d3:24:87:64:01:d4:55:0f:2f:97:cd:3c:15:9f:e8:8e:3f:11:
68:77:c7:10:e0:5c:ad:55:78:3e:04:2b:0d:2f:f4:56:2a:8c:
b7:71:b1:de:62:6b:04:89:5e:d5:64:0a:54:0e:8e:29:a5:eb:
80:b4:64:68:ec:e4:1d:32:bd:8d:4b:11:5f:0a:1c:1a:0e:a6:
69:34:e2:97:15:a3:33:9c:4b:c9:11:97:78:4d:0e:de:20:99:
71:b3:0f:c8:d0:ce:e0:e6:2e:b9:c5:a4:3b:a5:b3:53:c2:f2:
e5:9d:7f:98:1d:ff:a2:67:46:ff:27:a9:e5:50:e8:32:68:1c:
28:ce:94:82:69:4a:4d:48:55:0f:69:9e:03:85:14:0c:5a:9e:
0b:1e:a1:d7:fe:43:42:3e:52:fa:cf:91:21:35:21:8e:6e:3e:
53:94:c7:ae:18:98:b9:7b:b0:e1:48:9c:29:17:9a:4f:57:38:
64:36:7d:0d:05:c6:f5:28:42:b4:78:c5:25:6d:0a:f9:0d:a3:
31:ba:5b:45:df:66:06:1d:0d:02:82:83:36:0a:62:3a:d1:eb:
04:be:56:98:39:fd:21:83:0a:ad:99:6b:a0:ce:9d:a3:c0:8c:
12:ae:bb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:54 2024 by rpki-client on console-ams.rpki-client.org