Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/JbEAL7rHQ2H_K_Mo-90rWV5OfaI.roa
File: JbEAL7rHQ2H_K_Mo-90rWV5OfaI.roa (raw, json)
Hash identifier: md0hTKnhA5DI0WQk9K6NRNLHrko2MSUzqrjPqY1yu7w=
Subject key identifier: 25:B1:00:2F:BA:C7:43:61:FF:2B:F3:28:FB:DD:2B:59:5E:4E:7D:A2
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 01891F43E6A75197747D2935C73CA7D4FB09
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/JbEAL7rHQ2H_K_Mo-90rWV5OfaI.roa
Signing time: Tue 04 Jul 2023 04:58:10 +0000
ROA not before: Tue 04 Jul 2023 04:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 45.147.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:43:e6:a7:51:97:74:7d:29:35:c7:3c:a7:d4:fb:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 4 04:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25b1002fbac74361ff2bf328fbdd2b595e4e7da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:82:98:11:af:99:6f:78:07:85:3b:51:f8:
d4:eb:57:d9:9c:09:7a:4e:5a:8e:61:ab:88:cb:fb:
ef:11:29:00:3c:73:08:5a:6e:9d:77:5f:88:66:57:
fb:2d:64:cd:76:aa:48:b2:e7:b8:76:3f:84:80:d7:
9b:20:60:c6:32:48:96:f8:94:46:0d:aa:f3:7e:4a:
1e:5a:7c:71:b6:d7:e6:89:f1:c1:a6:51:ce:70:45:
bc:29:c8:ea:b4:23:2a:63:3e:0d:c5:96:22:fc:dc:
26:9a:82:6f:d4:6d:4a:9f:f0:84:38:2f:b0:38:b9:
93:4e:e9:6b:28:fc:09:35:dd:af:93:6d:14:fa:31:
78:90:01:ea:05:1c:fe:af:45:4b:b1:3d:0e:8c:cc:
8a:10:61:5d:a2:67:77:c1:e1:40:57:f5:89:dd:77:
17:61:01:a9:cd:e9:e1:e1:ea:9c:25:e2:11:b2:a2:
02:96:1b:00:64:30:0f:ce:81:8e:0d:d4:52:e4:b6:
68:92:1c:61:77:d3:4d:55:96:87:d5:7a:fd:20:09:
7c:8a:b1:75:16:b6:a2:0c:de:e5:49:c7:3e:81:3c:
1f:cd:69:4c:da:9d:6c:7a:9f:ed:63:5a:f1:95:8f:
2f:e4:f9:b7:7e:07:ab:68:69:54:27:d1:5c:bb:f3:
26:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B1:00:2F:BA:C7:43:61:FF:2B:F3:28:FB:DD:2B:59:5E:4E:7D:A2
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/JbEAL7rHQ2H_K_Mo-90rWV5OfaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:dc:a4:7d:c2:89:ae:c7:c5:1e:28:4e:fd:08:af:49:ee:f5:
1f:34:af:38:59:5b:f7:bf:86:d8:b7:00:ec:1f:3d:c6:aa:08:
88:48:c2:59:cf:d1:2b:01:1f:a8:ef:f5:9b:eb:cd:15:8f:da:
c1:5b:3c:c6:e6:bc:70:11:b1:65:b8:e8:e6:af:b8:d4:15:b8:
27:27:21:63:07:27:2f:ca:05:69:b8:02:de:59:80:1e:d2:e8:
b2:3e:f3:58:96:3a:79:65:1f:a8:76:bc:e1:79:da:66:fb:10:
5f:5a:c8:c3:68:d3:d8:a6:64:ad:f0:a4:c1:84:16:61:0e:0e:
8b:c9:0e:59:71:91:53:53:80:6d:f2:d0:bb:ca:b3:69:b5:87:
de:a9:35:f8:be:36:1a:0b:80:9a:a5:09:27:3b:1b:9e:1f:98:
83:55:99:b0:b4:99:81:a3:60:a5:8f:58:e3:31:fc:85:5b:1c:
74:10:59:1a:2a:a2:cf:b2:75:30:0f:6e:b5:f4:ba:bd:ae:e4:
44:d1:91:7f:16:77:ba:23:b8:5e:90:b6:fd:ab:74:2e:95:78:
c2:ec:70:70:d8:75:33:cd:4d:70:d4:68:ac:eb:a3:b1:26:c2:
24:35:c8:0f:7f:58:d0:a7:4a:2a:1d:d9:fe:15:e1:d2:9a:c4:
c4:e4:d4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net