Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/wXXLlXohDVFBQKazQmTXcEQghbs.roa
File: wXXLlXohDVFBQKazQmTXcEQghbs.roa (raw, json)
Hash identifier: S1O0CHLBxm5EPbrGdhnGX5y5pv1izXdHf5kE5RB1zH0=
Subject key identifier: C1:75:CB:95:7A:21:0D:51:41:40:A6:B3:42:64:D7:70:44:20:85:BB
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 018572DA38BBF665FC7E52672956BAD9D4DC
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/wXXLlXohDVFBQKazQmTXcEQghbs.roa
Signing time: Mon 02 Jan 2023 14:19:42 +0000
ROA not before: Mon 02 Jan 2023 14:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207671
IP address blocks: 45.91.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:da:38:bb:f6:65:fc:7e:52:67:29:56:ba:d9:d4:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 2 14:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c175cb957a210d514140a6b34264d770442085bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:df:29:11:11:5d:64:25:b3:2f:ff:aa:12:
8e:ad:a9:28:fb:2e:2e:c2:38:69:7f:6c:44:a5:01:
c6:b5:f3:d0:09:1c:04:5f:7f:02:2a:8f:8b:42:3f:
ae:62:e4:fc:97:77:c5:cc:d0:b0:ab:2b:10:1e:0e:
10:09:dd:a4:4b:a1:f8:8d:3b:b8:4c:c8:bd:1e:c3:
bd:36:65:4d:be:1a:fd:7b:1c:16:90:22:0b:88:f3:
c9:b1:dc:d6:50:bf:d1:28:66:1a:71:7b:0c:0e:88:
0f:a4:be:48:2d:a1:e4:cb:e8:29:99:94:01:75:7e:
7d:57:2c:e5:f6:8b:42:b0:3c:eb:a2:f7:13:3e:6a:
3b:75:fa:24:0c:e9:11:22:98:9b:b6:09:cd:b0:81:
c0:48:86:3f:5f:bf:c3:5c:e5:68:27:9c:6d:59:29:
21:da:95:0e:1d:14:e7:74:29:34:ab:68:93:2f:ba:
4c:c2:31:e3:c8:bb:01:aa:28:56:44:2a:8a:5c:29:
db:f5:15:e3:ca:3b:f0:4d:56:20:8c:72:97:14:27:
8f:96:06:cc:f4:32:03:6a:4d:af:3b:29:99:98:ce:
42:54:8f:1c:23:e8:9c:9a:92:81:7e:62:8d:c6:5c:
23:f7:0f:8a:a5:20:5e:15:7b:25:d6:ab:15:28:d6:
98:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:75:CB:95:7A:21:0D:51:41:40:A6:B3:42:64:D7:70:44:20:85:BB
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/wXXLlXohDVFBQKazQmTXcEQghbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
41:22:95:ee:07:28:b3:ab:02:3b:c2:7e:48:88:7d:fd:94:23:
72:83:0a:31:f5:65:28:22:a4:83:3a:6a:b8:e2:af:fe:0a:2e:
6a:46:8d:a2:6c:5c:7a:70:59:f4:e0:98:95:1f:53:4a:4a:8f:
f2:ae:cc:60:6f:8b:c8:f1:67:d6:b2:0a:9a:ad:84:c7:69:77:
f5:3f:78:e3:39:91:81:4e:4e:de:c9:4d:04:78:8d:14:06:cb:
2d:b6:cc:80:e5:19:b3:02:3e:36:13:79:af:61:26:45:29:1e:
a3:b1:25:17:d8:f9:7c:60:2a:98:37:39:e5:56:0e:87:67:39:
a8:73:95:a9:f3:53:45:cb:29:a2:2b:e4:1d:b8:28:f5:56:eb:
74:55:81:13:7c:c0:2b:29:03:7a:da:ac:e8:b1:d9:f4:b6:b1:
9c:9d:23:c6:9f:63:e0:52:0e:23:cf:a2:8d:14:58:e4:92:05:
53:17:25:cf:48:24:fd:c2:45:a7:85:48:c1:a4:c8:d2:38:46:
09:b8:40:6b:e2:8b:6d:c4:a3:b4:95:06:79:24:11:ea:7a:f1:
cc:46:d3:75:32:7d:de:73:48:9c:f4:f9:a5:83:d2:ea:b8:a2:
67:21:a4:f2:81:36:4d:be:1c:fd:68:b0:31:70:53:80:17:63:
eb:25:de:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:52 2024 by rpki-client on console-fra.rpki-client.org