Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/LzbqlKdubC5sZxcSeOKjGEcCeW4.roa
File: LzbqlKdubC5sZxcSeOKjGEcCeW4.roa (raw, json)
Hash identifier: 0bAvPN76gb+9fBwR/qkL5y5DS5GdUzh26TGx9QLYZn4=
Subject key identifier: 2F:36:EA:94:A7:6E:6C:2E:6C:67:17:12:78:E2:A3:18:47:02:79:6E
Certificate issuer: /CN=b08ace0eb3e2df49fdbb77726716fb65e7777964
Certificate serial: 018C624A1B4249CCD68A8DE8B4F0293D86F2
Authority key identifier: B0:8A:CE:0E:B3:E2:DF:49:FD:BB:77:72:67:16:FB:65:E7:77:79:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sIrODrPi30n9u3dyZxb7Zed3eWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/LzbqlKdubC5sZxcSeOKjGEcCeW4.roa
Signing time: Wed 13 Dec 2023 08:27:52 +0000
ROA not before: Wed 13 Dec 2023 08:27:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202422
IP address blocks: 45.135.229.0/24 maxlen: 24
45.135.230.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:4a:1b:42:49:cc:d6:8a:8d:e8:b4:f0:29:3d:86:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b08ace0eb3e2df49fdbb77726716fb65e7777964
Validity
Not Before: Dec 13 08:27:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f36ea94a76e6c2e6c67171278e2a3184702796e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:37:d8:d2:fa:bc:d2:fc:54:99:1b:a4:96:
4d:d6:2f:3b:ed:41:af:9b:dc:19:86:1f:92:10:c1:
b9:f5:47:8f:a6:c8:b4:77:f9:4b:9c:d0:a2:e9:01:
a4:28:fe:d8:81:27:f4:6e:d6:b1:10:9f:58:6e:51:
67:1a:9a:70:df:27:c5:c8:1e:87:7f:c6:0f:d6:8f:
89:4e:3a:b6:7e:28:63:a4:37:3e:80:93:68:25:9c:
3d:44:52:ae:2c:fd:c2:61:b0:6a:a2:89:6f:db:d5:
c2:95:6a:a3:0a:b7:fc:82:18:83:61:c7:bf:de:cb:
b1:4a:4a:f7:78:82:5b:b5:20:ca:73:f9:2f:1a:6a:
30:d8:c1:b8:41:e0:55:2c:bd:02:88:b7:16:2c:5e:
08:3b:1d:e5:1c:62:8d:c8:49:2e:b0:0c:66:c6:15:
01:ea:18:1b:c0:93:50:3e:b0:f6:ea:83:31:63:bc:
51:af:47:07:4e:4d:bd:c5:a1:63:99:39:1e:3e:e7:
1b:eb:a9:0e:a1:74:b2:c8:e8:0c:45:14:4a:f0:30:
43:40:c2:f9:d5:79:7f:b9:6b:53:db:0b:9f:a9:15:
9e:8d:d3:c3:9a:a4:f0:cb:78:d6:7c:17:71:7a:2e:
c7:91:c9:39:4e:05:aa:e9:3b:17:5e:5e:93:9b:2c:
cb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:36:EA:94:A7:6E:6C:2E:6C:67:17:12:78:E2:A3:18:47:02:79:6E
X509v3 Authority Key Identifier:
keyid:B0:8A:CE:0E:B3:E2:DF:49:FD:BB:77:72:67:16:FB:65:E7:77:79:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sIrODrPi30n9u3dyZxb7Zed3eWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/LzbqlKdubC5sZxcSeOKjGEcCeW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/sIrODrPi30n9u3dyZxb7Zed3eWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.229.0-45.135.230.255
Signature Algorithm: sha256WithRSAEncryption
0a:85:3b:40:fa:c9:42:65:cd:ed:9f:18:d3:9f:f0:82:44:bb:
c7:e2:f1:38:32:0d:1e:2b:32:0e:fc:a0:17:b6:a1:d3:0d:09:
3a:4a:82:86:29:24:14:c9:21:1c:81:49:64:28:cc:73:e0:72:
93:05:6d:ff:f1:52:92:53:2d:b5:40:67:9e:26:7e:72:d2:bb:
2f:63:bf:f4:0c:ac:22:a4:2c:2d:3b:9c:52:96:2e:09:53:ef:
a3:64:d0:34:8f:34:e2:7e:95:d4:8b:8d:b2:c0:7a:e6:f4:85:
ec:b8:41:6c:d6:e7:25:88:08:e7:84:4a:97:e3:bf:af:fc:e2:
04:6a:04:59:4b:05:70:d4:75:6c:87:c8:af:99:d0:51:79:34:
48:68:c7:8d:3a:ef:48:a1:b0:fd:d0:b6:65:73:06:ce:27:a2:
82:2b:e2:94:2c:1f:b7:77:63:66:9d:ad:0d:ea:5b:f1:79:93:
bb:68:e4:5f:d5:bb:ce:d8:a5:95:fe:df:10:ad:13:34:5a:66:
8f:68:98:9d:3f:75:83:c3:ca:13:d2:79:c2:2b:b5:5a:e5:9f:
d7:03:a2:57:67:c9:fa:23:16:bb:1e:64:dc:72:aa:9c:85:df:
72:67:14:40:65:db:52:ec:22:bb:82:49:91:7c:4e:fc:35:bd:
92:75:c8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:51 2024 by rpki-client on console.sobornost.net