Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8lehlF1o9YZ3Lfq0B5deBVxvhj0.roa
File: 8lehlF1o9YZ3Lfq0B5deBVxvhj0.roa (raw, json)
Hash identifier: bkd1DkRLx2k4xzRImRzuLujFMlpGtTvnabMHCQCrJYE=
Subject key identifier: F2:57:A1:94:5D:68:F5:86:77:2D:FA:B4:07:97:5E:05:5C:6F:86:3D
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E02264A22C2A17665ADDC210BEF0A
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8lehlF1o9YZ3Lfq0B5deBVxvhj0.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147186
IP address blocks: 45.67.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Feb 2024 06:17:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:02:26:4a:22:c2:a1:76:65:ad:dc:21:0b:ef:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f257a1945d68f586772dfab407975e055c6f863d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:f5:ed:6b:6d:5b:40:f3:04:f4:92:9f:a9:
09:44:c5:03:6e:dc:fd:65:88:7d:c1:0c:11:23:3e:
30:5c:2d:7e:98:8d:60:a6:b9:c8:95:53:3f:a8:f4:
f7:9e:2c:23:e3:35:53:f0:99:2a:e1:f9:d8:10:05:
84:09:31:89:9b:78:16:8d:8f:d4:b8:fc:9a:00:53:
e7:f9:f4:72:52:e0:29:cf:1b:a8:b9:60:89:b2:1e:
30:b0:83:7b:b0:75:c7:5a:b1:22:59:6a:fe:eb:4f:
94:0d:ca:23:5a:ad:4f:36:f5:58:5d:dc:22:e8:45:
a3:3a:bf:b9:9c:87:e9:e0:bc:9b:84:02:35:88:d8:
da:ce:40:13:cc:99:56:ce:e0:87:01:b3:f9:fe:72:
f3:3a:9b:53:fc:a6:a3:bd:8f:8f:3d:a9:21:f3:fe:
48:4b:70:e0:ec:42:58:b4:2b:c7:e8:ca:e3:4b:11:
ce:ad:4b:b1:2b:44:d2:ae:58:d0:fe:1b:a0:11:25:
1f:dc:f5:dc:3c:84:36:f3:e1:b5:d9:fd:1c:4d:2b:
16:7e:cd:ac:ea:13:e0:4a:09:5c:01:de:fd:e5:0c:
f5:b4:bf:56:fd:45:ca:55:ba:99:16:d3:67:51:95:
b3:be:db:45:46:f7:5d:9f:ae:35:b3:6a:a9:cd:b5:
f8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:57:A1:94:5D:68:F5:86:77:2D:FA:B4:07:97:5E:05:5C:6F:86:3D
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8lehlF1o9YZ3Lfq0B5deBVxvhj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.203.0/24
Signature Algorithm: sha256WithRSAEncryption
16:10:9c:35:57:d8:58:68:63:35:78:bb:86:df:60:ab:15:54:
a0:b1:e8:4c:b6:02:3e:23:b4:be:1a:24:af:1a:dd:19:98:6b:
7a:1d:d5:cd:94:43:27:dc:85:5b:24:9c:51:cd:85:78:02:cc:
e3:1e:94:7f:d4:01:96:84:e3:30:8f:fc:eb:80:9a:73:cb:6c:
54:3d:2d:7d:1f:9d:2b:f9:44:18:71:9b:84:8e:cb:6c:c4:25:
66:c9:8d:84:9a:bb:68:ca:b0:6f:eb:9c:6a:ae:6c:ee:5d:19:
81:b1:cd:52:6c:22:74:ba:87:23:07:96:dd:2e:70:32:4a:72:
bd:ce:0e:46:96:00:e2:71:a1:41:ee:ef:08:91:ad:da:38:2d:
10:57:4a:3e:5b:63:ac:a9:85:fa:5f:25:f4:18:27:eb:4a:56:
93:a5:75:0f:53:25:90:43:e0:96:d9:86:18:e5:f8:5f:43:f7:
17:f8:bd:a8:0f:9f:d1:9d:24:45:6c:c0:8c:b2:05:86:fd:42:
25:72:74:60:28:13:fc:14:b9:c5:62:cc:3b:ac:52:b6:81:77:
c8:07:9b:2e:d0:73:8a:2c:dc:9f:35:e6:ae:b8:4c:17:fa:37:
65:2f:bd:de:cb:d4:bb:05:30:c5:f4:57:b2:3c:00:c9:5e:81:
a0:aa:3e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org