Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/4IHQD7q0e9-xL53fbE9fbpFI14g.roa
File: 4IHQD7q0e9-xL53fbE9fbpFI14g.roa (raw, json)
Hash identifier: QZ/Wyn2UOrmimQ/mIiV2kxVtenMdtzSegZs+YDzufQQ=
Subject key identifier: E0:81:D0:0F:BA:B4:7B:DF:B1:2F:9D:DF:6C:4F:5F:6E:91:48:D7:88
Certificate issuer: /CN=5cf88adc19eaad13d685b81ec39935bd4b2c69ad
Certificate serial: 018572834756871FE7BDA2E4849C89B65DC0
Authority key identifier: 5C:F8:8A:DC:19:EA:AD:13:D6:85:B8:1E:C3:99:35:BD:4B:2C:69:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPiK3BnqrRPWhbgew5k1vUssaa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/4IHQD7q0e9-xL53fbE9fbpFI14g.roa
Signing time: Mon 02 Jan 2023 12:44:44 +0000
ROA not before: Mon 02 Jan 2023 12:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208862
IP address blocks: 45.82.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:47:56:87:1f:e7:bd:a2:e4:84:9c:89:b6:5d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf88adc19eaad13d685b81ec39935bd4b2c69ad
Validity
Not Before: Jan 2 12:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e081d00fbab47bdfb12f9ddf6c4f5f6e9148d788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cb:bd:e2:11:a9:05:2d:06:85:cb:04:e2:8a:
57:9e:7e:dc:ef:07:20:dd:c0:ca:7f:fd:d6:d2:56:
f1:90:1f:31:49:c7:dd:22:65:ee:88:93:ee:eb:16:
d7:79:16:7c:1b:62:57:ac:de:d9:c0:06:50:3e:4c:
37:71:a5:76:25:50:36:23:de:7c:8f:b1:ce:45:be:
eb:94:80:f8:c2:40:1e:52:84:f1:2e:0c:c3:f2:85:
45:f9:1c:0d:98:87:45:75:8b:16:ba:c0:48:18:e2:
24:a0:9d:5f:84:d7:57:e0:6e:99:15:17:c8:ed:f5:
d5:d1:4b:c1:34:c4:bd:f9:d0:56:8d:7e:c6:66:0c:
0f:2e:c1:07:fd:f7:bc:be:fe:06:ba:49:6f:ba:82:
d6:74:1c:91:6f:29:19:14:7c:ac:23:3e:b2:34:b3:
b9:cc:72:72:5b:96:14:47:39:7e:de:06:7b:b7:34:
5e:44:50:57:be:f4:f8:9b:84:9e:0f:22:c0:c2:43:
6f:30:78:9e:a1:75:af:ff:71:ce:01:15:df:fd:a9:
e6:f6:3b:27:62:6a:97:77:69:3a:2e:8c:8a:34:05:
06:74:29:c5:31:d7:9c:9b:ec:d9:08:2b:23:d5:60:
94:9d:ce:b5:9a:19:d8:62:33:0d:89:8f:fc:5d:7d:
0d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:81:D0:0F:BA:B4:7B:DF:B1:2F:9D:DF:6C:4F:5F:6E:91:48:D7:88
X509v3 Authority Key Identifier:
keyid:5C:F8:8A:DC:19:EA:AD:13:D6:85:B8:1E:C3:99:35:BD:4B:2C:69:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPiK3BnqrRPWhbgew5k1vUssaa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/4IHQD7q0e9-xL53fbE9fbpFI14g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/XPiK3BnqrRPWhbgew5k1vUssaa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.0.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:12:6a:6c:2f:85:0a:ce:1d:14:a7:45:8b:db:96:49:4f:b4:
3f:fc:29:5a:e0:8c:9d:93:81:79:02:d7:7f:e4:16:3d:80:bb:
62:f3:a1:e8:12:3f:c3:d4:c4:3c:da:8f:b8:35:24:f5:45:9d:
85:b2:77:16:8f:6e:00:f5:3f:f0:46:14:de:66:f2:fc:0a:a1:
cf:c4:7b:87:5c:8f:cf:63:95:15:6e:80:91:d1:84:93:ea:05:
5a:68:fb:7d:1e:44:9e:71:2c:da:18:bb:70:08:cd:6b:ee:f8:
1f:93:13:03:53:cb:ce:fb:82:93:60:ef:d6:fc:cf:76:a1:ce:
4b:15:76:f6:59:e9:ac:94:ca:9e:4f:8e:10:44:3f:eb:56:b4:
5f:7e:fc:39:4b:95:9f:e2:02:d6:5e:ea:07:1a:95:d5:d9:3b:
e8:cd:c9:03:43:f5:9a:ad:b5:90:dd:e9:e0:cc:50:1e:28:3e:
cc:f0:2b:04:15:58:1a:fe:a4:50:b1:6e:02:b4:6b:00:dd:ee:
c9:c2:27:f9:1d:fe:1d:71:6c:e0:76:10:e9:68:93:30:7e:75:
11:1a:5c:d3:5b:fd:1e:32:bd:86:8c:74:3d:83:6f:19:a8:81:
55:62:e1:d9:50:23:a5:b8:98:da:4a:af:67:3b:55:74:da:2b:
7f:23:90:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:22 2024 by rpki-client on console-fra.rpki-client.org