Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PwPFL4M0dfV9WOFUJ6X8LQhzQqE.roa
File: PwPFL4M0dfV9WOFUJ6X8LQhzQqE.roa (raw, json)
Hash identifier: M6623udqcfjbEXtSacWS3wFvY6Gyev6qWpY5miovwrI=
Subject key identifier: 3F:03:C5:2F:83:34:75:F5:7D:58:E1:54:27:A5:FC:2D:08:73:42:A1
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0185711E69872195361C7447F72FC8F84F41
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PwPFL4M0dfV9WOFUJ6X8LQhzQqE.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201106
IP address blocks: 45.156.146.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:69:87:21:95:36:1c:74:47:f7:2f:c8:f8:4f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f03c52f833475f57d58e15427a5fc2d087342a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:02:d1:26:9c:38:2e:5d:1f:58:26:94:c4:
04:c4:94:16:fc:04:70:4c:cb:0d:83:a1:60:45:3b:
42:51:d9:8a:f8:4e:b1:55:dc:a2:f8:2d:38:02:99:
46:27:ac:11:47:3d:db:ba:2a:d9:1b:a1:2e:87:7f:
b3:37:17:a6:a1:b3:65:ab:e3:15:56:ac:20:4e:04:
69:da:ac:5e:df:4d:50:76:e1:41:f3:5c:ba:52:2c:
a6:f0:cd:9d:52:be:28:bd:29:3e:b5:0f:de:ff:c9:
6a:ca:98:9d:6c:15:fc:f8:90:c3:78:39:3b:e0:c3:
fd:31:d3:f6:38:da:92:3c:d6:ed:b8:c0:a2:24:9e:
06:51:c1:c4:25:72:be:ed:c5:28:04:46:6e:bb:88:
6a:13:b0:17:42:47:2c:b8:f0:ad:bc:54:90:cb:2e:
8d:53:f7:85:98:ff:fa:28:c8:0d:7d:1f:82:ec:94:
aa:50:17:8d:d5:fa:45:15:68:52:f3:02:bd:bc:8d:
88:4a:92:31:80:66:79:66:44:eb:73:6f:65:49:29:
43:d1:88:0b:fc:1a:66:91:19:7b:e8:5f:1a:d4:b9:
f4:d7:30:f1:d0:3f:87:d8:11:10:66:ac:4a:41:0f:
ee:12:44:86:ee:9b:78:b7:39:89:51:ff:96:1a:25:
56:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:03:C5:2F:83:34:75:F5:7D:58:E1:54:27:A5:FC:2D:08:73:42:A1
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PwPFL4M0dfV9WOFUJ6X8LQhzQqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.146.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:8b:90:93:03:9b:54:f8:64:d3:fe:74:94:cc:f2:09:56:11:
6c:03:3c:bd:37:1b:92:9c:93:64:5c:11:8e:d3:8e:eb:bd:ca:
71:34:f0:8a:6d:fe:e6:66:10:02:28:ec:e4:03:74:0b:6e:88:
f4:81:80:eb:47:c0:08:b5:5b:e4:fe:25:a5:6d:b5:5f:15:0d:
72:ff:90:9a:94:f9:fc:b0:b0:af:6f:61:2f:4f:01:6d:26:1a:
0d:eb:02:fd:86:5a:27:02:35:36:23:65:b8:19:4b:bf:e0:d5:
70:08:a0:4b:30:d6:5d:6d:32:84:5d:e4:c3:67:e1:84:e7:c1:
9e:df:52:9e:4a:be:01:ca:ee:bc:69:b7:db:fd:3a:3f:df:ae:
08:9f:42:a7:b8:5d:27:40:66:eb:6c:a8:7b:d8:ad:da:78:4f:
a0:ea:8b:e8:32:00:86:c6:04:27:ca:b4:94:32:04:29:25:b9:
95:64:1d:f3:f5:47:b2:bd:e7:29:b2:8e:fd:45:2f:e2:d7:90:
11:6c:2a:0a:e1:e2:18:01:3f:98:38:1e:23:b6:ee:35:27:d7:
cd:f3:33:cf:59:2a:77:cc:e6:b1:9e:66:8b:d3:73:0a:4f:6d:
e1:25:6b:2a:2f:f1:28:e4:ae:f9:b3:df:94:fe:b8:ed:86:3a:
f4:5f:7a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 19 07:02:22 2023 by rpki-client on console-ams.rpki-client.org