Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/W76GEPzQ8SGFK84wcU3jPJ8WHag.roa
File: W76GEPzQ8SGFK84wcU3jPJ8WHag.roa (raw, json)
Hash identifier: RZ/tcC+x/PIBEvOYrNSeX0rthH3KWiJBQkzbLJRHnp4=
Subject key identifier: 5B:BE:86:10:FC:D0:F1:21:85:2B:CE:30:71:4D:E3:3C:9F:16:1D:A8
Certificate issuer: /CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Certificate serial: 01856F94A9B2B50A77112A32137464352FE5
Authority key identifier: 6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/W76GEPzQ8SGFK84wcU3jPJ8WHag.roa
Signing time: Sun 01 Jan 2023 23:04:51 +0000
ROA not before: Sun 01 Jan 2023 23:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208144
IP address blocks: 45.157.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a9:b2:b5:0a:77:11:2a:32:13:74:64:35:2f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Validity
Not Before: Jan 1 23:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bbe8610fcd0f121852bce30714de33c9f161da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a7:25:12:a4:77:d2:70:df:00:b8:c4:10:71:
78:8a:ec:58:f0:79:19:ce:83:72:04:d5:5c:39:7a:
f1:52:39:71:92:c6:9b:36:46:83:8f:94:00:58:67:
a5:01:61:aa:5b:f0:9c:0f:a3:41:02:3c:3c:b0:27:
22:c1:b1:9f:30:2c:4e:e1:68:1b:74:96:f7:82:1d:
0b:cd:c7:18:d0:fb:ef:c0:45:9e:60:70:cb:44:95:
3f:5e:43:66:ee:9a:8a:7d:12:44:fb:87:41:ea:a7:
a9:71:bd:d9:35:64:64:1e:3c:4e:ef:81:6f:58:ce:
fc:a6:1f:ef:2b:60:c7:24:05:83:ae:cd:ad:9b:2d:
86:15:24:24:37:60:10:e6:3a:f0:64:35:0a:fd:b4:
48:0d:01:3c:ab:2f:4c:6a:38:89:39:f9:3e:ff:09:
fe:fc:81:3b:a0:bd:28:d8:89:0c:5f:41:39:0d:69:
ef:02:76:f6:12:05:84:f5:47:e6:78:47:6a:d9:98:
ec:13:18:ef:62:02:84:fa:6b:c8:de:48:2d:8d:03:
76:a6:d4:29:72:1e:a3:63:98:c3:e9:16:68:bb:be:
55:02:79:d7:93:54:92:37:2a:88:45:85:98:db:7b:
da:3e:42:d0:24:19:39:8b:5b:b4:d1:73:d4:b3:49:
4a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BE:86:10:FC:D0:F1:21:85:2B:CE:30:71:4D:E3:3C:9F:16:1D:A8
X509v3 Authority Key Identifier:
keyid:6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/W76GEPzQ8SGFK84wcU3jPJ8WHag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/bAqWFKxOEOei4qW8EvhiMGTInvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:71:d4:24:56:33:9b:9d:74:1d:e3:1b:be:79:33:24:b5:7b:
7a:b0:5d:75:d2:1d:0e:cc:eb:05:8d:15:5d:26:0f:8e:e4:87:
cd:5a:01:2e:cb:a9:38:a4:67:3b:4a:7e:9a:34:07:8b:5e:54:
5c:08:f3:95:7c:03:ac:ea:b1:df:85:65:d7:d1:4d:69:49:43:
b0:5e:42:71:35:01:e1:4e:f2:81:69:06:02:27:d6:14:6a:64:
28:0a:fa:61:cc:ca:b3:a4:8f:d1:f5:41:87:3f:a9:89:67:70:
5b:1c:f8:d5:83:06:52:33:89:7f:84:5d:61:a5:55:b8:9c:f8:
38:42:fb:98:d0:50:f7:d5:59:8f:71:5f:10:a7:ff:52:0a:e9:
db:4a:11:a3:0e:01:ac:08:61:1c:90:88:a4:ee:9e:01:30:df:
7b:a9:41:2e:d7:a4:c3:29:75:8c:72:03:b4:50:1c:65:9d:05:
4b:df:36:7c:4f:07:d6:4d:fc:5a:15:47:41:20:a9:12:81:59:
48:ae:bb:68:a4:fd:1e:55:b3:44:46:a9:89:3f:b1:69:4d:19:
e3:92:88:2d:60:d7:fd:1a:e3:25:06:dc:ea:d4:9e:c6:08:97:
0d:19:10:e6:69:25:f1:3c:f3:7d:e9:c3:83:24:0d:c3:db:76:
86:08:3c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org