Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/UmT16DTIcOHMlcNxKNA5Bz-9M9w.roa
File: UmT16DTIcOHMlcNxKNA5Bz-9M9w.roa (raw, json)
Hash identifier: wnwhAippTCNW9XP7XCwY1CN7qSsNshE2JBKnjSgt3VU=
Subject key identifier: 52:64:F5:E8:34:C8:70:E1:CC:95:C3:71:28:D0:39:07:3F:BD:33:DC
Certificate issuer: /CN=522a22bccd3de8265afd55f9830ffc01c83af726
Certificate serial: 01857095226AD4CF3BABA332E54FB1A3F627
Authority key identifier: 52:2A:22:BC:CD:3D:E8:26:5A:FD:55:F9:83:0F:FC:01:C8:3A:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UioivM096CZa_VX5gw_8Acg69yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/UmT16DTIcOHMlcNxKNA5Bz-9M9w.roa
Signing time: Mon 02 Jan 2023 03:44:59 +0000
ROA not before: Mon 02 Jan 2023 03:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208770
IP address blocks: 45.136.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:22:6a:d4:cf:3b:ab:a3:32:e5:4f:b1:a3:f6:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522a22bccd3de8265afd55f9830ffc01c83af726
Validity
Not Before: Jan 2 03:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5264f5e834c870e1cc95c37128d039073fbd33dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0d:88:6f:08:1f:da:41:cc:b7:72:77:55:e8:
d5:bb:1f:cb:f0:7c:a8:75:5d:21:22:46:e1:88:4e:
9c:23:76:42:db:9e:6d:59:6a:e4:cb:f6:8f:30:ca:
61:f0:a8:2c:1b:62:e3:18:8c:7e:22:99:b7:01:33:
99:74:c9:59:68:29:91:04:10:2d:e7:5d:10:82:ac:
bd:bc:df:1d:36:dc:02:8c:d5:3c:e3:8e:65:20:d5:
1b:ac:aa:13:a7:0b:29:c8:ac:51:e1:6e:34:a4:16:
99:37:83:10:21:1d:9d:a5:6e:e8:8a:0e:f9:b6:a9:
91:bc:02:17:11:38:f6:b8:12:58:d9:7d:c7:12:9a:
a2:b9:dc:ad:ef:65:a3:79:f3:de:52:ca:ea:c6:fe:
f9:60:b3:de:5f:bf:0a:9b:2c:7b:d3:12:0c:11:0c:
e3:2b:f4:bd:05:4d:fa:24:5c:0a:12:2c:f0:70:08:
38:55:1c:77:ae:83:d3:29:dc:79:4d:5c:56:f9:80:
e4:33:b0:89:db:f5:b1:03:34:24:20:23:f5:f8:8d:
2f:d2:0c:a8:4a:fe:49:12:6a:4e:5d:1b:63:4e:3f:
46:f8:ce:f5:a8:26:23:e7:8f:f0:c9:64:84:fd:8d:
c7:a6:45:47:5f:65:65:9d:e8:69:18:3f:a6:97:e9:
d8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:64:F5:E8:34:C8:70:E1:CC:95:C3:71:28:D0:39:07:3F:BD:33:DC
X509v3 Authority Key Identifier:
keyid:52:2A:22:BC:CD:3D:E8:26:5A:FD:55:F9:83:0F:FC:01:C8:3A:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UioivM096CZa_VX5gw_8Acg69yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/UmT16DTIcOHMlcNxKNA5Bz-9M9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/UioivM096CZa_VX5gw_8Acg69yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.44.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:95:a7:e2:9d:0c:f6:ff:b6:95:56:bd:b1:3b:4d:f0:e9:d4:
9f:6f:16:94:f0:82:68:69:06:2b:0d:a0:f3:44:e0:95:d1:46:
38:0f:70:95:d2:a2:43:bb:7d:75:4d:53:b0:89:fb:33:2c:cb:
32:69:5d:1e:aa:34:93:1e:21:a8:20:63:41:41:65:2e:71:f7:
8e:2c:72:8a:af:42:e6:0a:0f:f7:ba:08:f6:1e:e7:7c:fe:f2:
94:08:c5:43:ce:2e:5e:48:8b:01:fe:46:81:b4:bd:9e:25:cf:
43:c1:0d:c9:4c:36:94:f7:fa:9e:e6:05:af:b1:7c:4e:e6:af:
bd:28:ea:39:3c:e5:64:41:9f:02:b9:74:f7:9e:d1:ff:9b:a5:
29:1e:b4:a7:86:76:57:73:8c:8b:8f:11:70:1a:fc:17:1b:5d:
b0:f4:09:5c:bd:88:3c:8d:da:6a:3a:86:38:0c:d4:12:a5:23:
64:85:fe:4f:d9:7f:88:74:24:a9:8e:f0:40:3e:70:ef:a3:1b:
41:2e:42:25:1e:b7:e8:08:62:f1:38:2a:48:50:28:ba:de:33:
ea:4b:40:21:06:10:34:00:35:e1:f4:50:5c:bc:ea:34:c9:f6:
1a:5e:70:a4:10:eb:cd:bd:5e:7f:87:58:3e:d1:c1:26:60:d4:
75:ba:79:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org