Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/5BSradMhDm3c8ULxgB18b9jo4o0.roa
File: 5BSradMhDm3c8ULxgB18b9jo4o0.roa (raw, json)
Hash identifier: s2IfFRqx7gKtA/5y3CN97QrFWR3qrbrVc+e8I8KFBtE=
Subject key identifier: E4:14:AB:69:D3:21:0E:6D:DC:F1:42:F1:80:1D:7C:6F:D8:E8:E2:8D
Certificate issuer: /CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Certificate serial: 01889A94EF6FCA5BC3E0E14D565C23467D94
Authority key identifier: F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/5BSradMhDm3c8ULxgB18b9jo4o0.roa
Signing time: Thu 08 Jun 2023 10:37:11 +0000
ROA not before: Thu 08 Jun 2023 10:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 45.89.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:94:ef:6f:ca:5b:c3:e0:e1:4d:56:5c:23:46:7d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Validity
Not Before: Jun 8 10:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e414ab69d3210e6ddcf142f1801d7c6fd8e8e28d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b3:a9:2d:ec:26:2f:26:66:1e:cc:40:03:c3:
a4:7f:0e:65:a6:98:5b:b6:61:39:cf:ae:be:b0:cb:
a0:d0:25:82:58:21:c6:b8:55:a4:5b:db:ac:5e:49:
29:19:d9:9d:8b:ee:b1:ce:bd:3a:0e:92:4c:d1:ba:
18:76:e5:87:8c:93:44:ce:d9:b0:de:a3:73:9e:4a:
6b:6e:0e:74:37:20:b0:89:b4:b1:4e:19:cb:5f:ac:
65:14:1b:a8:35:e1:ca:c4:8c:f7:fe:a8:f5:59:bd:
b4:e9:4e:ce:48:eb:eb:39:ed:04:90:00:48:1c:fc:
72:32:38:39:08:22:f7:53:94:94:35:86:84:a7:29:
08:c0:1a:28:fe:fb:90:b1:8a:cf:c6:01:a4:31:4d:
9d:c9:00:9c:11:de:46:bc:49:55:65:a0:df:94:18:
fb:ac:5e:f7:92:af:b5:cc:c7:34:af:66:f2:f3:29:
81:7c:dc:92:8c:13:33:01:81:2c:6e:91:35:69:7a:
ba:ac:5e:92:56:76:e1:4f:58:ac:48:5d:d2:c7:b4:
1f:14:83:41:81:bc:ac:74:7e:fd:d7:cc:89:9f:7a:
05:2f:14:d9:3d:fb:60:95:44:95:ff:2f:c0:b6:26:
8a:c0:5c:cf:cf:8e:b0:e3:1c:d0:5a:91:3d:6f:8b:
38:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:14:AB:69:D3:21:0E:6D:DC:F1:42:F1:80:1D:7C:6F:D8:E8:E2:8D
X509v3 Authority Key Identifier:
keyid:F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/5BSradMhDm3c8ULxgB18b9jo4o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8Mx6RHSC5XsGBLq7gqUkCc3js20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.21.0/24
Signature Algorithm: sha256WithRSAEncryption
63:b4:7f:09:9c:cc:d9:f8:78:72:ef:bc:0a:87:86:57:55:27:
6a:0c:95:6e:1c:cc:48:09:d4:6f:d0:ed:57:8f:25:9e:0c:fd:
29:10:ee:d0:89:e8:bb:a0:81:70:26:16:01:97:44:29:2c:18:
17:a4:56:0a:27:0d:91:0e:96:61:cf:24:ee:37:89:70:c0:3b:
df:a9:8e:b2:0b:f2:2b:4a:97:df:f6:d2:aa:94:0d:68:26:41:
f8:a2:7e:ea:0b:8e:34:71:ed:c3:3e:d2:56:2b:ca:ff:4c:3a:
08:d8:bd:4f:2b:7d:16:4b:9a:b3:6b:11:f8:a7:5e:70:bd:c8:
da:fe:31:8d:ab:33:1f:5d:b2:6b:60:81:90:d8:2c:1e:d9:64:
d2:ee:50:39:c1:d3:15:e6:52:e1:5b:5a:16:9b:50:95:48:ac:
6e:04:fc:25:29:a1:61:5a:aa:e0:bf:c4:a3:b4:e7:db:2d:c5:
92:ec:2f:f0:58:8c:44:f5:14:ce:fc:16:bc:53:4e:cf:1d:28:
c2:67:a7:55:95:aa:0a:ef:68:c6:f7:f2:0c:12:7c:8e:10:11:
4b:52:cc:7d:b1:01:63:23:01:77:ba:66:6c:11:95:53:30:1b:
24:4a:6c:cd:4d:d9:ec:df:16:ed:db:df:fc:c2:5e:22:d2:59:
f1:a6:c5:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:20:11 2024 by rpki-client on console-ams.rpki-client.org