Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hAjbYCo8BGVPNwIzVHuHWkQyzYw.roa
File: hAjbYCo8BGVPNwIzVHuHWkQyzYw.roa (raw, json)
Hash identifier: jt5VslTLNv1PnKaBFaOSlPIjXEax2z/s0qHG3gTRSLA=
Subject key identifier: 84:08:DB:60:2A:3C:04:65:4F:37:02:33:54:7B:87:5A:44:32:CD:8C
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 01856C2ECCED557505CF4547F4821E1F7C19
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hAjbYCo8BGVPNwIzVHuHWkQyzYw.roa
Signing time: Sun 01 Jan 2023 07:14:44 +0000
ROA not before: Sun 01 Jan 2023 07:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 141.98.47.0/24 maxlen: 24
45.133.158.0/24 maxlen: 24
45.133.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:cc:ed:55:75:05:cf:45:47:f4:82:1e:1f:7c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 07:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8408db602a3c04654f370233547b875a4432cd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8c:ac:f9:92:f6:88:f6:34:ba:35:b3:20:cb:
9e:3b:c0:34:9a:98:8b:01:e9:97:7a:15:a9:25:b3:
52:e8:1e:98:50:b2:d5:1d:48:c4:9f:28:7d:34:c4:
da:94:68:d7:d5:cd:25:28:8b:11:37:c6:1e:19:45:
15:06:2b:c0:88:36:cb:a1:dd:c6:03:58:8f:f9:4a:
35:ad:0f:1e:21:50:a1:ce:54:ce:33:05:00:6f:ec:
fa:53:62:c9:39:46:ef:aa:3d:71:ca:35:a0:c7:fc:
1d:e1:22:9c:62:60:aa:b7:4a:81:c1:2a:5f:ef:ce:
09:bb:14:49:27:e0:74:3e:50:ec:ae:25:92:5c:79:
79:2b:ef:d6:c2:5b:26:4d:7f:14:3b:89:9c:41:f6:
b7:7d:f8:6f:63:03:b6:5a:2d:d7:5a:8c:c6:91:0a:
63:0c:f7:92:65:67:85:79:f2:ed:cf:82:de:32:77:
51:fc:d3:64:11:24:0f:8c:15:b9:f9:23:5c:9c:bf:
99:54:ca:bd:c8:f6:2a:24:d2:f0:4b:50:b8:32:71:
8e:70:af:a0:18:34:26:76:65:92:1e:d7:0b:76:55:
8e:84:5f:63:23:9d:9b:e1:1c:d2:61:61:0b:c2:e9:
da:2f:7c:94:7d:9d:28:b2:1a:b7:e6:01:b1:03:69:
78:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:08:DB:60:2A:3C:04:65:4F:37:02:33:54:7B:87:5A:44:32:CD:8C
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hAjbYCo8BGVPNwIzVHuHWkQyzYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.158.0/23
141.98.47.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:52:e7:71:23:43:eb:b0:ee:40:fb:50:c3:31:99:ed:bf:55:
1a:b9:6e:6b:76:5c:ea:03:2d:4d:4c:e7:17:ec:4e:78:c5:22:
09:86:eb:82:23:ec:fc:4c:0a:bf:72:73:01:e0:9c:e2:5e:73:
dd:31:f4:bd:18:20:8f:1c:15:fa:80:fa:08:ba:f4:d9:5f:92:
98:01:df:48:37:e3:67:2c:69:cc:b8:c8:08:24:d0:10:14:c9:
be:f8:23:6b:12:5e:50:7d:97:11:0f:5c:0e:1b:4d:08:fa:86:
f2:aa:4e:66:23:b8:b7:d2:ad:13:66:9b:22:eb:6f:da:6d:a3:
3f:44:72:b2:e0:82:e9:43:87:0d:6f:4a:70:99:ce:fe:df:ba:
ef:bc:7b:8f:5c:cd:9f:28:16:00:3e:66:3c:14:de:f4:04:55:
e4:a7:c6:ab:72:5c:1f:b7:20:eb:7b:d3:f1:cc:54:d0:2d:f8:
6d:8a:2d:7e:08:1f:f8:08:70:37:18:91:32:a0:88:ec:14:7f:
23:ac:bd:1d:7e:fb:e1:b9:f2:ff:89:cc:23:48:39:e5:f9:c7:
79:bd:6d:bc:9a:07:c3:d6:b9:38:7c:a2:94:21:b4:12:9f:98:
2d:dd:3a:7c:ef:e7:7e:c6:5c:ab:e5:04:61:69:6a:1b:ce:98:
ba:f4:bc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org