Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/aBnHKOknSH_FgItHKPEQ719Lnfc.roa
File: aBnHKOknSH_FgItHKPEQ719Lnfc.roa (raw, json)
Hash identifier: efAuRSX9P3infXfk2Z5Vd/R1huG2042WGBEK/FR2AOI=
Subject key identifier: 68:19:C7:28:E9:27:48:7F:C5:80:8B:47:28:F1:10:EF:5F:4B:9D:F7
Certificate issuer: /CN=935f53f5e407e55a2330d9d523a804c0722ca565
Certificate serial: 01856DE6415B3AA13C076EAFC8E096C30D73
Authority key identifier: 93:5F:53:F5:E4:07:E5:5A:23:30:D9:D5:23:A8:04:C0:72:2C:A5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k19T9eQH5VojMNnVI6gEwHIspWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/aBnHKOknSH_FgItHKPEQ719Lnfc.roa
Signing time: Sun 01 Jan 2023 15:14:44 +0000
ROA not before: Sun 01 Jan 2023 15:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208550
IP address blocks: 45.158.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:41:5b:3a:a1:3c:07:6e:af:c8:e0:96:c3:0d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935f53f5e407e55a2330d9d523a804c0722ca565
Validity
Not Before: Jan 1 15:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6819c728e927487fc5808b4728f110ef5f4b9df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:4e:b4:8d:ed:c6:b4:aa:e4:2e:fc:d3:ca:
55:22:c2:33:33:d7:96:da:cf:1d:35:d7:61:e7:be:
99:39:01:c5:08:ab:70:47:bd:05:1f:20:4f:ab:f5:
24:01:d3:00:41:34:d3:d1:47:95:d5:41:b1:d6:98:
06:84:dd:10:52:95:23:fb:c5:af:c3:1b:16:0a:f0:
90:af:6d:02:e7:0d:96:21:e0:f5:d8:34:41:61:4d:
31:56:3d:f9:c5:11:06:f1:76:35:7c:de:54:f5:d3:
0a:41:82:59:e7:f9:7d:82:77:bf:04:d4:a8:8f:c2:
0a:4f:24:96:3b:ab:a7:dc:5a:c0:f0:e3:7c:c8:39:
94:4d:b0:60:69:ba:f3:5a:67:e2:b4:3a:bd:d7:c5:
ff:b5:7d:80:5d:c3:33:48:6b:a0:e6:ec:51:bb:26:
46:65:fe:1b:c8:7a:60:c0:96:a0:73:0c:71:65:3f:
76:fc:57:44:83:ea:4e:0f:cc:f8:65:77:a9:95:f8:
23:31:3d:5c:58:6a:c6:de:87:d8:0b:28:2b:ce:69:
1a:3d:f6:65:60:28:36:bb:27:84:e5:5f:d1:f9:25:
02:95:6a:fe:5b:56:ea:9d:c8:5b:d0:b2:6d:7d:cd:
1d:e2:de:5c:20:f2:74:29:a8:5c:a0:67:1e:8c:27:
4f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:19:C7:28:E9:27:48:7F:C5:80:8B:47:28:F1:10:EF:5F:4B:9D:F7
X509v3 Authority Key Identifier:
keyid:93:5F:53:F5:E4:07:E5:5A:23:30:D9:D5:23:A8:04:C0:72:2C:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k19T9eQH5VojMNnVI6gEwHIspWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/aBnHKOknSH_FgItHKPEQ719Lnfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/k19T9eQH5VojMNnVI6gEwHIspWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.52.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0f:e4:af:5b:31:b1:c4:ea:90:e2:3d:6f:52:e2:e5:65:59:
05:27:b9:a8:75:26:2f:0e:a6:bb:6d:7b:2d:de:af:96:48:46:
df:5c:16:54:4d:93:50:f7:f1:62:2f:28:35:fd:31:40:14:60:
2a:cf:42:8e:14:1c:4d:ec:f3:1a:d5:2f:12:5b:6d:a3:da:3d:
97:b9:26:a3:ec:f2:94:13:19:77:8b:fe:3e:f8:7c:bc:49:53:
16:c4:7d:92:fd:24:a3:3e:06:4d:96:6c:eb:1e:69:a1:6e:31:
67:b5:80:15:7e:7a:23:00:1d:d0:2b:06:dc:04:4d:50:b5:4c:
23:93:03:88:e3:f1:07:b0:b4:62:36:cb:1a:c8:ee:a2:97:05:
9b:d7:15:5c:f4:0b:bd:b5:1e:17:32:56:90:9a:07:b8:9d:9a:
ce:c4:03:ba:2b:45:f6:45:c8:76:61:66:43:33:41:1f:de:2d:
42:d8:02:01:f7:cb:21:3d:ab:92:b1:30:11:4f:08:04:a8:de:
11:d3:6a:63:f9:9b:00:7b:7c:a4:c0:4d:02:c7:b5:36:10:e4:
8f:81:54:78:26:97:00:a7:8a:cf:c8:d0:ed:54:ca:ae:4d:b3:
13:82:7e:e5:87:f8:f4:ef:da:24:8a:d0:dc:2f:7f:3b:45:2f:
c2:8a:9d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:28 2024 by rpki-client on console-fra.rpki-client.org