Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/AIg0yUOdt4qQ2irQ6e87LoudaGw.roa
File: AIg0yUOdt4qQ2irQ6e87LoudaGw.roa (raw, json)
Hash identifier: ugeGY1YHbDXA/3g+4KkdDCwHYzRDaLEwOLLqZDqkb6M=
Subject key identifier: 00:88:34:C9:43:9D:B7:8A:90:DA:2A:D0:E9:EF:3B:2E:8B:9D:68:6C
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 018571DE84092CE0E19DD3AC53317D0289FA
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/AIg0yUOdt4qQ2irQ6e87LoudaGw.roa
Signing time: Mon 02 Jan 2023 09:44:46 +0000
ROA not before: Mon 02 Jan 2023 09:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210504
IP address blocks: 45.11.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jan 2023 08:23:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:84:09:2c:e0:e1:9d:d3:ac:53:31:7d:02:89:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Jan 2 09:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=008834c9439db78a90da2ad0e9ef3b2e8b9d686c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:29:4b:da:7c:07:b5:3c:05:80:f4:2a:ce:3c:
fa:7b:e7:12:1e:47:31:b7:07:fa:19:a8:6d:d8:0b:
d6:83:31:42:05:6d:4a:fe:c8:1c:50:9c:4d:f4:bd:
f5:0e:5d:d1:86:ad:ef:90:76:70:c5:13:cf:9e:54:
28:9b:8a:42:69:3c:ca:68:15:a4:82:c2:cb:7a:3b:
11:5e:99:7d:80:22:24:78:a8:1f:0d:37:8a:f1:4b:
0e:6f:ad:bb:61:83:af:07:ff:ac:d9:34:b7:85:f8:
79:6e:4e:5b:93:f7:24:81:d9:5d:ad:94:25:7f:26:
29:5c:6c:0c:9f:4a:ee:81:f8:c9:b2:5f:b6:ba:56:
97:17:b7:17:d0:4e:5f:6e:d6:db:4e:22:d5:86:33:
06:d8:35:b9:e8:5c:5e:d2:e3:86:64:8e:5e:f3:94:
63:36:3a:02:42:45:3d:67:3a:ad:00:0a:62:db:91:
6f:77:3a:23:20:49:f5:58:c3:f8:4a:dc:8d:b6:98:
05:62:bf:0b:77:c4:43:b7:bc:44:f5:65:6b:06:1d:
86:92:9c:c9:2a:ba:c6:ba:1a:a2:ea:9e:06:d6:9c:
fb:cb:92:09:08:76:91:43:be:c4:18:51:80:b0:e6:
3a:b7:13:b4:d3:bf:e2:e0:27:54:cf:2a:9d:21:5b:
23:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:88:34:C9:43:9D:B7:8A:90:DA:2A:D0:E9:EF:3B:2E:8B:9D:68:6C
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/AIg0yUOdt4qQ2irQ6e87LoudaGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.78.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ae:ec:14:89:f5:15:82:de:7e:e6:f2:11:74:94:28:2c:ec:
b8:1b:51:8a:f9:7a:66:c2:3a:c1:f8:26:3a:29:08:a6:80:61:
b7:ff:d0:51:70:f7:e7:df:42:6e:6d:c6:33:e1:8b:48:07:c4:
84:c1:7c:b8:9f:f8:0e:92:25:e0:ab:61:8d:30:f7:2b:2a:48:
50:f6:4d:e3:27:01:d5:fe:a8:7c:1e:13:e4:dc:83:f9:46:bb:
ed:d0:e5:79:a9:48:df:aa:ea:b0:96:6b:e5:e8:3e:86:91:2f:
b4:24:db:b1:6e:51:2a:c2:8c:d6:5b:a3:95:b6:ec:13:7b:d6:
d4:c3:69:dd:70:2e:aa:01:74:bc:44:ab:1e:e5:d2:51:24:e4:
c8:b4:70:bc:7e:9e:d2:47:9f:e9:e7:ee:5f:71:be:8b:60:0e:
13:f4:b0:09:94:50:a1:10:7f:c7:16:ca:09:70:a9:bd:81:5f:
f1:4b:46:aa:4d:fd:62:d5:d5:db:13:5e:8c:f6:b4:83:69:84:
cf:33:d8:f3:3d:49:e2:d3:d9:7a:c4:9f:90:b9:f3:e6:fe:17:
a5:ba:3d:bc:8c:37:d4:1b:6a:ac:f7:9c:fa:db:25:47:c7:0b:
21:a7:75:e4:ef:07:da:ec:a3:7e:22:83:64:95:51:20:f4:01:
53:99:03:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:26 2024 by rpki-client on console-fra.rpki-client.org