Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/1-5ajYUtfEWxLtDp-6Y17ut7JtA.roa
File: 1-5ajYUtfEWxLtDp-6Y17ut7JtA.roa (raw, json)
Hash identifier: 3q89iZeOSZxS8tVE/VLKO5Ss5d4Ecr86GzOsrF/KwyM=
Subject key identifier: D7:EE:5A:8D:85:2D:7C:45:B1:2E:D0:E9:FB:A6:35:EE:EB:7B:26:D0
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 018635DC7F43A3A2AC90FA531572A9293AE3
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/1-5ajYUtfEWxLtDp-6Y17ut7JtA.roa
Signing time: Thu 09 Feb 2023 11:08:08 +0000
ROA not before: Thu 09 Feb 2023 11:08:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.158.88.0/24 maxlen: 24
45.158.89.0/24 maxlen: 24
45.158.90.0/24 maxlen: 24
45.158.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 14:43:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:dc:7f:43:a3:a2:ac:90:fa:53:15:72:a9:29:3a:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Feb 9 11:08:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7ee5a8d852d7c45b12ed0e9fba635eeeb7b26d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:99:a7:71:69:08:6a:1c:c9:eb:46:46:85:
6c:ac:fb:f4:e8:6b:62:66:55:44:51:4a:c1:0c:e8:
76:23:57:3f:19:01:7a:e8:8f:d4:14:f8:05:c8:c5:
cb:e5:31:25:23:20:73:e9:df:f7:59:02:31:37:f7:
d7:cb:22:1e:ab:52:84:2c:d5:9a:7e:4e:10:55:6a:
27:20:23:eb:1b:22:60:d8:ce:3e:8a:e6:cd:f4:ea:
ef:12:91:f3:e8:53:6c:a9:ef:04:ab:fd:67:de:1f:
0b:b9:8a:71:a8:ed:bb:4f:46:00:23:7c:08:8f:dd:
7d:4d:18:18:8a:25:51:83:a4:e5:4d:9f:8f:41:c1:
65:b4:c6:69:18:9d:1b:d6:2d:61:37:42:6d:c2:e7:
09:44:23:16:5c:31:8b:b7:1a:1e:da:33:4b:85:6a:
95:34:2d:76:8b:78:ea:49:d4:ad:ec:df:5a:a6:23:
3b:6e:2c:3f:17:e7:43:57:5c:28:a4:41:67:61:0e:
64:20:37:fe:13:05:d6:3d:58:7d:3f:71:83:4b:8b:
9a:08:10:3e:f3:e0:06:13:8d:d1:06:0c:c0:95:95:
74:c2:57:d5:a6:3d:fc:31:65:c6:02:ac:b8:51:a1:
f0:91:a7:c3:12:05:9d:50:61:c9:6e:41:6a:bc:e6:
05:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EE:5A:8D:85:2D:7C:45:B1:2E:D0:E9:FB:A6:35:EE:EB:7B:26:D0
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/1-5ajYUtfEWxLtDp-6Y17ut7JtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.88.0/22
Signature Algorithm: sha256WithRSAEncryption
36:60:b1:c2:d6:cb:45:50:b5:a5:22:01:38:f5:ff:6c:d0:15:
e3:fe:1d:c5:5e:7c:ea:c2:b3:31:6c:c5:2f:af:37:40:d4:77:
2b:85:28:2a:54:b3:45:ce:a8:eb:7d:55:a1:38:3b:e5:32:9f:
ac:5c:ef:87:24:80:81:c8:10:15:88:fb:ad:fa:7d:b6:e3:94:
8a:c2:d9:01:da:f1:6c:d1:44:50:90:d4:76:47:a2:62:16:d4:
da:63:55:2c:c5:ed:cf:1a:81:41:4e:39:73:ca:70:27:27:5c:
64:64:dd:c2:65:6b:cd:02:fa:f8:f4:54:4c:d1:a0:99:cf:bf:
0f:ce:52:56:6a:ae:6f:14:fc:24:56:52:f0:65:57:4b:40:75:
41:e1:f5:a1:54:70:b0:49:8e:7d:46:e1:b8:25:6d:f4:b4:18:
73:0f:c9:41:4e:98:06:7c:57:fc:6d:7d:16:15:d0:99:ca:2a:
9b:7c:c9:d6:f5:2a:7b:97:28:00:2a:8d:80:b7:ee:4f:31:92:
75:4b:16:12:70:69:05:7a:13:cf:59:8a:d6:b0:ec:51:88:f5:
c2:e2:93:c3:b1:c2:1b:08:a0:b7:21:7f:4a:91:71:8d:90:4c:
5b:2e:b6:c5:06:c4:d5:02:15:42:a1:9e:51:0b:82:75:d6:16:
39:62:67:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org