Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/7gWNU-z37UH4T8a2tpWazCqtWLg.roa
File: 7gWNU-z37UH4T8a2tpWazCqtWLg.roa (raw, json)
Hash identifier: INgRghn/qFpQAY+6nWflpMUQHtOgLJgsDxSJBEyY+DQ=
Subject key identifier: EE:05:8D:53:EC:F7:ED:41:F8:4F:C6:B6:B6:95:9A:CC:2A:AD:58:B8
Certificate issuer: /CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Certificate serial: 018570675A2D430D6D77C66F11EDA759C7E3
Authority key identifier: 80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/7gWNU-z37UH4T8a2tpWazCqtWLg.roa
Signing time: Mon 02 Jan 2023 02:54:59 +0000
ROA not before: Mon 02 Jan 2023 02:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208012
IP address blocks: 45.129.121.0/24 maxlen: 24
45.129.120.0/24 maxlen: 24
45.129.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:5a:2d:43:0d:6d:77:c6:6f:11:ed:a7:59:c7:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Validity
Not Before: Jan 2 02:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee058d53ecf7ed41f84fc6b6b6959acc2aad58b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:55:30:bc:98:4f:cc:fb:5f:6c:75:f1:48:
e8:4d:32:24:65:e5:d9:74:64:99:24:7b:05:82:5b:
91:14:8a:ad:dc:0c:8b:22:02:ec:e7:b4:e3:b7:6f:
65:5f:1a:80:5b:77:7c:b9:f5:3e:bf:19:4f:b6:b1:
87:4f:3a:5c:aa:44:f9:97:df:ae:9b:92:5d:5b:b1:
d9:01:91:b5:54:07:e0:c0:92:99:db:a5:a7:9e:8c:
6c:1d:30:b6:1c:86:32:b7:fe:44:e5:21:ff:77:60:
78:f3:b0:9a:dc:17:c8:87:ab:cc:7c:c7:b4:dd:90:
98:56:c8:20:cf:2e:2f:7c:a6:a0:27:3a:82:59:27:
19:1b:5b:40:35:35:fe:55:08:2c:73:8e:72:23:2c:
1c:83:0e:a3:7f:de:cf:ac:de:6d:09:24:e2:90:19:
ba:51:9b:6f:ab:f2:7c:37:83:71:a4:25:f1:f1:0d:
d2:d1:95:8e:f4:a6:19:13:80:a3:c9:51:e2:83:b2:
ed:c6:03:36:9d:2c:65:59:9c:5f:9d:53:d0:92:9d:
09:c3:49:fd:ec:ac:cb:f6:0c:a4:67:96:a1:01:96:
67:f3:7b:49:04:99:31:8d:2f:88:03:ef:31:db:f8:
c6:bb:21:75:4d:8c:ae:7b:5c:c0:50:85:c0:90:24:
c3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:05:8D:53:EC:F7:ED:41:F8:4F:C6:B6:B6:95:9A:CC:2A:AD:58:B8
X509v3 Authority Key Identifier:
keyid:80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/7gWNU-z37UH4T8a2tpWazCqtWLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/gGnZ_-BIpwAD8W8G4k2b8tuF61I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.120.0/23
45.129.123.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:16:f3:5d:5f:41:96:71:e5:db:59:33:6f:ac:8b:4f:e1:f5:
b2:a8:73:8c:ba:03:9a:e3:47:2a:62:ad:f4:b0:49:1d:7e:c6:
fe:e8:5a:15:98:11:c1:c4:f5:3b:83:6c:d1:6f:18:73:f9:40:
9b:fc:61:52:f2:32:93:6b:e2:73:a4:a8:f8:4f:34:99:5b:6c:
19:fe:10:c9:b0:e9:17:d2:d3:b4:57:48:07:bb:57:d0:d5:a3:
08:fe:6e:26:e8:dd:29:18:82:17:8d:14:9f:b9:bd:6c:2b:f0:
af:5b:06:f0:06:15:92:4e:8d:8c:ad:79:a6:e4:c5:cb:35:7f:
54:e2:30:e4:0c:00:f0:56:0d:9d:e4:72:e1:09:ac:df:a9:32:
d7:3e:fe:bb:b0:d0:7d:05:f1:a9:dd:28:6d:d6:d1:57:96:72:
09:5d:09:76:35:ce:9b:c5:3e:de:6d:8d:f1:e3:97:44:07:5d:
eb:70:87:23:34:65:20:f0:ed:cb:09:77:b8:e8:08:0d:51:f1:
63:73:71:ef:cf:bb:86:a3:cd:76:6e:c5:8c:48:f9:1c:c2:be:
d4:ac:a8:45:82:bc:31:15:53:44:64:2c:32:20:cb:84:7f:5b:
3b:8e:76:c4:61:ad:6b:86:42:27:00:b1:d5:f4:06:f6:0b:0c:
63:6d:ce:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org