Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/4GvkSShhKpLJIWBMm7xDkjQcNm0.roa
File: 4GvkSShhKpLJIWBMm7xDkjQcNm0.roa (raw, json)
Hash identifier: cYXd7Fc5jTgfQPMgLjhOJQYBw4OT98lK515unFSCezQ=
Subject key identifier: E0:6B:E4:49:28:61:2A:92:C9:21:60:4C:9B:BC:43:92:34:1C:36:6D
Certificate issuer: /CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Certificate serial: 018572B4122A1AC07CD991C326319A684634
Authority key identifier: B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/4GvkSShhKpLJIWBMm7xDkjQcNm0.roa
Signing time: Mon 02 Jan 2023 13:38:01 +0000
ROA not before: Mon 02 Jan 2023 13:38:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209459
IP address blocks: 45.82.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:12:2a:1a:c0:7c:d9:91:c3:26:31:9a:68:46:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Validity
Not Before: Jan 2 13:38:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e06be44928612a92c921604c9bbc4392341c366d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3c:f1:9a:e1:fc:08:27:67:11:e0:ff:e8:d1:
25:d4:86:71:bc:e7:b7:fb:15:1b:9e:e0:7f:a7:5b:
75:d9:da:38:cc:73:d9:32:c2:e2:f4:e4:ae:5c:29:
1b:a9:0f:74:92:8b:f5:48:8f:00:85:d1:3b:c7:f3:
99:96:d6:02:f6:a2:47:5d:06:30:50:85:bd:a8:f9:
55:23:98:56:db:d3:4d:c9:14:01:40:03:95:8c:3f:
32:13:9e:bb:ea:88:9a:ba:4f:49:e6:c8:d5:cf:24:
14:ef:e9:c3:41:11:f2:f9:a2:23:f4:ee:3e:1d:a4:
40:64:45:ba:20:97:46:b5:1e:ee:cf:9b:51:9e:1f:
cd:02:b9:81:18:7f:ae:95:67:12:1a:a5:ff:08:21:
e5:3d:54:e6:38:00:71:92:8a:3b:9d:4f:7c:21:0e:
a6:82:c6:d8:d4:fd:32:78:a6:83:1a:71:0a:9d:4b:
7c:97:e8:52:82:d9:1e:4d:d6:67:17:cd:ce:4c:ba:
4d:4a:8b:29:68:e6:9b:76:3d:a5:ac:47:de:b2:a5:
45:b8:58:d5:20:63:b4:45:5f:c1:12:74:ae:98:f8:
55:ec:43:2b:bb:cc:9f:49:ce:42:fd:8a:6b:44:87:
e3:81:e6:fc:e9:32:07:b9:20:7b:68:b6:75:4d:4c:
2e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6B:E4:49:28:61:2A:92:C9:21:60:4C:9B:BC:43:92:34:1C:36:6D
X509v3 Authority Key Identifier:
keyid:B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/4GvkSShhKpLJIWBMm7xDkjQcNm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.136.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:c9:bd:dc:43:0f:14:02:6a:5b:ac:0f:97:d4:01:c2:b0:a6:
d1:7c:93:90:8b:29:26:e6:47:77:3e:21:a3:63:6c:b0:f9:98:
5f:13:40:f2:81:42:86:2c:d2:0f:90:76:1c:fb:3f:e8:80:de:
11:e4:c1:e3:0f:06:2b:4a:7f:fb:8b:a7:23:9a:85:1b:32:77:
b2:0d:e6:10:64:52:8f:c0:7d:42:70:75:71:0c:25:e2:73:ea:
f1:50:b6:0f:65:8b:c2:6b:12:5e:31:73:f1:2f:b4:36:c3:c0:
87:63:8a:89:23:bd:f7:d2:21:c4:6f:13:da:3d:64:e9:ed:b8:
14:56:b3:1e:63:a9:87:e0:93:a7:cf:68:9f:dd:44:38:fc:97:
f4:15:cb:fe:b6:6f:a7:9c:65:ce:d9:bc:ae:3e:03:65:19:c8:
f8:91:d2:8b:c7:a9:17:25:c4:8f:25:76:72:ea:70:f1:3a:7a:
78:56:48:46:23:de:dd:37:b1:13:4c:68:e5:53:b7:86:86:be:
d7:87:e2:1c:4f:29:40:d2:f9:44:59:14:4b:c6:1e:d8:67:e2:
e3:9f:f3:d7:b1:ff:0b:e2:b6:0c:4f:a7:28:e9:40:b8:42:0f:
57:ab:b6:35:4b:e2:2a:25:a7:a1:4a:18:15:95:bf:70:7e:b8:
bc:2f:bb:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:49 2024 by rpki-client on console-fra.rpki-client.org