Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9d1b44-1dec-45ee-92de-fa7988b714bc/1/AuWhoSGKbtEL4xuZqF4-TGqAWsc.roa
File: AuWhoSGKbtEL4xuZqF4-TGqAWsc.roa (raw, json)
Hash identifier: usO5Ff8II5YvBW5YXbk19pw5xksNqYSQ1Dy0mggcpxA=
Subject key identifier: 02:E5:A1:A1:21:8A:6E:D1:0B:E3:1B:99:A8:5E:3E:4C:6A:80:5A:C7
Certificate issuer: /CN=78cb4975b93b4593576048338564ea3eb09dc8e2
Certificate serial: 018571D792207A73F8DC9F6E17C09D509D39
Authority key identifier: 78:CB:49:75:B9:3B:45:93:57:60:48:33:85:64:EA:3E:B0:9D:C8:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eMtJdbk7RZNXYEgzhWTqPrCdyOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9d1b44-1dec-45ee-92de-fa7988b714bc/1/AuWhoSGKbtEL4xuZqF4-TGqAWsc.roa
Signing time: Mon 02 Jan 2023 09:37:10 +0000
ROA not before: Mon 02 Jan 2023 09:37:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212816
IP address blocks: 45.136.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:92:20:7a:73:f8:dc:9f:6e:17:c0:9d:50:9d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78cb4975b93b4593576048338564ea3eb09dc8e2
Validity
Not Before: Jan 2 09:37:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02e5a1a1218a6ed10be31b99a85e3e4c6a805ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6a:b9:61:d9:62:64:87:85:a4:98:1b:ce:d9:
e0:48:61:82:3d:db:d3:fb:b3:4f:98:0e:d6:de:b6:
43:35:22:39:cb:f5:e4:35:61:b8:d0:f6:14:a3:12:
e1:aa:c4:c6:6a:56:40:ab:98:7e:91:b0:d3:18:ab:
82:f2:6b:40:a1:a0:c3:c9:ac:21:3a:76:b1:3f:58:
40:51:11:48:a4:79:a8:c7:64:43:74:bd:0b:34:40:
8e:ea:6e:18:b6:2d:41:20:ac:90:f4:b5:51:75:7b:
37:d0:34:d7:5c:f4:f2:95:f8:36:3b:df:d2:7c:9c:
0f:11:77:cc:14:2d:42:1e:5e:27:c6:e5:be:66:0c:
93:ae:73:1a:37:75:c8:5b:46:c9:de:8e:41:0a:07:
a9:2d:c1:63:3e:09:b5:83:da:b6:a2:39:94:89:b7:
da:92:c0:cd:6d:9e:99:88:d7:ee:14:08:3c:c8:65:
8d:d1:c1:51:86:c9:21:00:85:84:ab:2c:71:39:3b:
41:2e:43:7c:6f:2b:77:ab:c3:63:c6:b2:3f:36:0a:
2f:f9:03:e3:a4:96:ac:f8:23:4a:55:f3:f3:ef:48:
d0:19:81:9f:7d:63:c1:a5:c8:f1:ec:e0:9c:57:3b:
8b:e1:24:81:e5:dd:4b:35:f8:24:5f:41:19:b0:12:
40:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E5:A1:A1:21:8A:6E:D1:0B:E3:1B:99:A8:5E:3E:4C:6A:80:5A:C7
X509v3 Authority Key Identifier:
keyid:78:CB:49:75:B9:3B:45:93:57:60:48:33:85:64:EA:3E:B0:9D:C8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eMtJdbk7RZNXYEgzhWTqPrCdyOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9d1b44-1dec-45ee-92de-fa7988b714bc/1/AuWhoSGKbtEL4xuZqF4-TGqAWsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9d1b44-1dec-45ee-92de-fa7988b714bc/1/eMtJdbk7RZNXYEgzhWTqPrCdyOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.40.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:7a:89:53:99:43:99:4a:f2:60:f2:e3:8d:28:17:a6:ab:d4:
00:84:41:50:e2:37:7b:d7:42:3b:0e:61:ac:af:50:e8:09:1d:
47:b9:ce:3e:46:3e:27:3a:2b:28:b6:d7:5b:d3:6d:30:69:0b:
fe:74:c1:37:fe:d6:fc:39:2c:fe:d4:74:5e:7e:6f:f2:3d:88:
07:b9:db:72:1a:c8:bd:7a:3a:26:90:65:ef:74:21:12:e8:d8:
a5:b5:d0:a6:25:3d:d0:1e:0a:f2:d5:0d:74:d1:01:36:61:d7:
68:74:0f:45:7b:0c:fc:b8:d3:22:e5:3d:3a:1b:a4:dc:96:60:
fe:0d:d1:85:df:36:ce:18:d4:44:e1:aa:f6:9a:9e:84:5e:fa:
26:8e:4f:10:b3:2f:cd:48:dd:26:6c:09:cd:25:58:5b:6c:6b:
83:1c:a0:64:3b:0a:15:e6:c5:d4:f6:fa:47:3d:fc:bb:59:54:
e6:4b:42:31:56:ef:3e:49:d8:96:63:fc:92:38:20:dd:89:32:
2d:91:e5:df:4c:d1:80:2b:56:fb:6c:d3:9f:3a:a3:23:c7:3f:
9b:c1:a0:f3:93:fb:46:46:3e:e6:33:0f:fa:54:e0:be:70:f9:
b4:fa:44:e0:13:2d:f0:1e:3e:a5:5b:56:28:25:f5:0e:66:ce:
a4:ff:a8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:20 2024 by rpki-client on console-ams.rpki-client.org