Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/DlMDX_zGJGpNSA7c6dyF3tG325k.roa
File: DlMDX_zGJGpNSA7c6dyF3tG325k.roa (raw, json)
Hash identifier: 74SrHagwroRjyCEV8URoypR8Ghg3f4XoUxrWR0rODNs=
Subject key identifier: 0E:53:03:5F:FC:C6:24:6A:4D:48:0E:DC:E9:DC:85:DE:D1:B7:DB:99
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 018C7C0F98F6B0F50D0490AAFF5D45980C6E
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/DlMDX_zGJGpNSA7c6dyF3tG325k.roa
Signing time: Mon 18 Dec 2023 08:34:06 +0000
ROA not before: Mon 18 Dec 2023 08:34:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 45.158.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:0f:98:f6:b0:f5:0d:04:90:aa:ff:5d:45:98:0c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Dec 18 08:34:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e53035ffcc6246a4d480edce9dc85ded1b7db99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:f7:50:0a:8f:1e:ef:ee:96:8f:7e:47:15:
2e:1a:04:31:f8:24:2c:7e:14:be:f1:c9:e3:5f:ea:
bf:32:ee:d8:95:a7:b3:18:b0:96:24:6a:b8:b9:0c:
b1:4c:65:ac:70:3e:08:74:be:ea:95:5e:b5:0a:8a:
9a:16:a9:4d:ca:d5:0b:21:9d:1e:eb:50:77:e1:b1:
c2:ab:3b:1f:b2:c9:9d:18:ac:72:88:f9:32:71:f9:
36:a2:4f:48:a5:e9:ca:4f:5e:e6:25:92:5c:5c:9d:
6c:2e:28:9f:de:21:e1:04:ea:9a:56:45:25:76:b5:
7d:98:20:29:d5:2a:dc:94:d5:c8:c5:f5:d0:4e:cd:
4c:6a:4a:7e:83:c3:7b:26:cc:b3:cc:bc:9e:f7:65:
f1:af:73:31:09:1e:6f:3d:20:0f:4d:9a:c8:a4:54:
3e:68:9c:78:15:3b:b9:7d:5a:f5:e5:2e:cd:a7:23:
2a:37:b7:12:18:93:9a:88:9c:da:fc:e9:87:d8:db:
d6:54:0b:eb:4a:f3:6d:b0:74:bd:90:55:cc:56:7b:
61:b6:0f:b0:ed:a0:aa:44:a5:aa:2b:7f:e5:41:7f:
02:3f:56:86:54:9f:19:e4:ce:a8:21:f2:aa:cd:76:
6e:79:2a:d9:59:23:ff:72:4d:28:2e:7c:80:84:b5:
c3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:53:03:5F:FC:C6:24:6A:4D:48:0E:DC:E9:DC:85:DE:D1:B7:DB:99
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/DlMDX_zGJGpNSA7c6dyF3tG325k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.88.0/22
Signature Algorithm: sha256WithRSAEncryption
09:86:ee:0d:53:38:49:25:9a:05:38:a2:d5:4e:bf:3d:9d:64:
f3:b8:1d:a1:8c:14:d9:1d:66:a8:e3:17:15:29:0c:5d:c2:13:
2e:47:df:5b:90:08:57:11:25:a0:a3:f6:ac:bc:fc:a4:f9:d8:
6a:95:7f:01:67:d1:63:88:51:49:63:17:2b:79:09:38:2c:6e:
d7:20:c2:c3:bb:4a:7a:56:45:5d:bb:9a:92:0c:c6:2b:3e:c2:
d6:81:8d:44:bb:31:fc:3c:b3:10:09:ee:74:9d:1f:9e:5c:83:
a5:d0:61:e4:8e:48:f1:b4:54:3d:c1:28:53:a8:61:d0:33:85:
25:03:e2:16:d0:19:fb:c1:38:ab:63:40:07:94:67:22:8a:e2:
0e:3b:80:0a:ea:cd:34:73:78:8c:b6:00:14:7d:f3:54:e3:71:
7b:8c:57:da:ae:ee:48:71:1d:b0:68:ac:78:79:98:71:23:d0:
22:f2:b1:85:32:c4:a6:c3:3a:86:4f:29:49:12:82:b8:29:15:
92:d0:94:0f:fb:cf:ec:5f:84:42:78:ec:3b:90:c0:9c:d1:b1:
0f:89:d4:ba:97:c0:70:23:9a:b9:5c:c5:92:47:ed:25:20:54:
42:9c:11:e9:e9:2b:5f:11:4e:7c:6e:8b:af:87:9a:da:24:e1:
30:a7:07:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:18 2024 by rpki-client on console-ams.rpki-client.org