Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/8UwnxVrfg41lkImw6iKv15lCP2I.roa
File: 8UwnxVrfg41lkImw6iKv15lCP2I.roa (raw, json)
Hash identifier: Gbxfv0AC/HXvF3oe+bv0/ew5RDK9ckEzPv5f0fmBAOA=
Subject key identifier: F1:4C:27:C5:5A:DF:83:8D:65:90:89:B0:EA:22:AF:D7:99:42:3F:62
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 018572D5BB02C5F84678976F844504208A67
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/8UwnxVrfg41lkImw6iKv15lCP2I.roa
Signing time: Mon 02 Jan 2023 14:14:47 +0000
ROA not before: Mon 02 Jan 2023 14:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5577
IP address blocks: 185.5.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:bb:02:c5:f8:46:78:97:6f:84:45:04:20:8a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 2 14:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f14c27c55adf838d659089b0ea22afd799423f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fd:68:b3:6e:6c:72:17:22:53:63:1b:c8:f4:
b2:38:63:62:22:46:33:f9:37:6b:8f:70:68:ff:42:
4a:ae:d7:5a:55:51:bb:a1:48:f7:95:2d:b4:31:82:
09:27:b3:28:e0:af:02:9e:19:5d:c6:2c:d6:15:1c:
d6:47:f5:3f:26:b2:e0:8d:a2:d4:cd:be:62:25:2a:
f5:b9:95:ad:25:96:c0:a4:58:d0:58:09:55:73:2a:
8b:f4:7d:e1:29:2d:38:55:80:14:bc:cf:23:f9:50:
08:d2:f9:25:c2:56:57:1d:e8:c3:e8:55:ad:30:a4:
55:21:08:08:13:60:b3:d2:4c:03:5f:79:7d:9d:29:
db:1d:08:9b:0e:86:24:f4:12:cf:49:b0:17:29:f9:
1a:fb:14:ec:5d:64:f5:e4:72:56:98:89:f0:80:e1:
3e:1c:33:8a:e4:89:76:32:55:27:4c:46:83:21:24:
c6:2d:90:69:3d:3b:9f:ff:d0:84:fe:2d:12:5a:4a:
4a:d0:b2:2a:0e:6c:b3:60:60:c4:8a:57:49:09:e7:
0b:53:e5:e9:11:50:a9:54:66:bd:2f:7b:68:9b:31:
0d:b1:9c:d0:c9:89:e2:4d:aa:5b:9d:2f:62:61:9e:
ca:ab:f7:74:02:36:62:1e:80:68:e3:c1:d0:33:df:
a0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4C:27:C5:5A:DF:83:8D:65:90:89:B0:EA:22:AF:D7:99:42:3F:62
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/8UwnxVrfg41lkImw6iKv15lCP2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.45.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ff:bc:6c:2b:18:cc:5b:2a:f1:6a:3a:71:27:ad:c5:54:a7:
a6:a3:a1:0a:a9:11:af:c9:6a:81:c7:23:65:f5:2c:51:41:dd:
df:f0:0b:03:92:c0:fc:1c:89:e0:48:a6:f5:7f:16:0a:19:12:
96:fd:f0:bd:ad:6a:7f:d9:b9:9b:35:ff:53:4f:98:56:c5:92:
22:36:57:cb:7b:16:39:07:b9:f5:d4:3e:46:06:08:9a:25:d5:
4a:f3:8a:95:09:6c:d6:2b:bd:8c:ca:15:57:bf:4b:00:2e:57:
38:a3:1f:0c:43:f7:2b:ee:6c:7a:14:5f:7b:84:42:0e:04:30:
58:a9:2e:19:99:61:a2:e3:6d:e5:6e:0d:ca:0a:30:e4:7c:25:
00:ae:c3:5e:18:a6:02:f9:5c:31:9f:e8:f3:e8:ca:42:0e:12:
a9:64:c7:a2:0e:0c:18:ee:d0:3b:c8:dc:e5:63:b3:5d:fb:48:
85:6e:d3:a4:3f:7d:dc:87:36:53:ae:b0:dc:52:78:76:57:44:
ff:25:22:ee:21:ce:a0:8e:a0:16:35:bc:0e:a7:bc:e4:6e:e9:
9b:6a:37:e4:f6:d1:d9:cf:75:47:60:49:c7:82:81:74:63:2b:
16:00:a3:bc:06:b5:49:f5:f5:0c:c4:63:78:79:66:57:05:48:
0f:72:e9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:45 2024 by rpki-client on console-fra.rpki-client.org