Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7I6rMTPbPsvr2vKDU95pLi0SRew.roa
File: 7I6rMTPbPsvr2vKDU95pLi0SRew.roa (raw, json)
Hash identifier: HMCiFFBnxnJZJCPLL0L+v1nInX+ePVRRh/jCM14xfNM=
Subject key identifier: EC:8E:AB:31:33:DB:3E:CB:EB:DA:F2:83:53:DE:69:2E:2D:12:45:EC
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DD0365FB90483E3CAD9CD9FA207139
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7I6rMTPbPsvr2vKDU95pLi0SRew.roa
Signing time: Tue 02 Jan 2024 06:29:36 +0000
ROA not before: Tue 02 Jan 2024 06:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203217
IP address blocks: 45.8.72.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 06:42:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:03:65:fb:90:48:3e:3c:ad:9c:d9:fa:20:71:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec8eab3133db3ecbebdaf28353de692e2d1245ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:39:b0:e9:b2:89:bf:92:14:df:32:9b:9e:
c5:b5:52:7e:2a:5f:0a:33:bf:89:3d:3f:9b:5c:cb:
1e:36:aa:4d:ea:98:0e:aa:e4:8d:16:54:40:b3:a3:
0e:0b:65:77:06:8f:ce:3c:12:3e:33:d3:63:80:7e:
49:0a:48:6a:72:6a:fa:c0:f9:ac:72:b8:6a:71:19:
25:be:23:80:4b:2e:34:a7:ca:98:a6:5a:53:c5:29:
51:4d:0d:f1:ed:d1:23:07:15:27:39:18:c9:7d:7a:
d3:18:c6:1e:80:26:10:34:c1:fb:a5:20:ad:b0:b3:
b6:51:e6:40:4f:9c:bb:d7:a2:ca:b5:86:33:14:94:
54:39:b7:3f:85:25:7f:4e:a2:96:d5:a6:a4:ab:92:
73:a2:58:69:c4:6d:c9:7f:33:12:91:f5:4d:d2:14:
a7:66:68:1c:84:72:1e:e1:51:e4:8c:b5:b8:7b:5b:
b7:28:1d:89:0b:3b:1b:0f:81:df:3a:35:2c:59:4d:
08:dc:21:b1:97:e4:2b:df:ed:65:6e:94:f9:d3:1a:
6f:eb:ad:de:2b:c2:95:13:f4:0d:9f:d9:ac:48:28:
96:b4:a4:51:3c:f6:24:a5:7e:21:81:f6:39:63:73:
ce:a0:2b:53:80:27:d7:1e:6c:6f:f6:c5:a9:e9:61:
be:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8E:AB:31:33:DB:3E:CB:EB:DA:F2:83:53:DE:69:2E:2D:12:45:EC
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7I6rMTPbPsvr2vKDU95pLi0SRew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:0f:db:43:0d:f6:5f:c6:8e:79:af:3b:80:3e:91:79:fd:b6:
c0:f1:7c:0e:8a:8d:7a:c9:41:8e:49:66:98:81:df:35:6d:4d:
7b:32:be:a6:71:40:2c:9b:28:e8:0e:38:01:75:a6:8e:f5:1b:
d6:cb:15:07:c8:9c:8c:fd:00:35:7e:b7:0a:bf:1b:d4:03:e9:
6f:89:40:8e:d3:ad:6c:ec:b6:94:69:68:46:84:69:22:be:1a:
00:e4:99:ae:b0:e1:19:36:9a:b2:e7:3f:a1:5c:1d:e5:dd:f8:
11:fc:66:c6:da:85:c3:78:5d:70:e8:49:5f:2b:5f:1e:10:d4:
f4:b3:b7:69:9b:9a:98:5e:28:94:ee:16:38:76:47:b3:cb:31:
60:b9:70:2d:3d:47:a8:d0:e9:0e:6d:10:b0:69:e1:55:93:59:
8b:39:c8:0a:6f:11:57:24:56:e0:35:97:70:1f:86:11:70:e3:
61:35:06:74:87:83:74:6d:b5:50:35:f6:8e:3a:5f:15:12:80:
51:a7:84:d6:d8:56:70:88:df:be:dc:b2:75:a6:df:9b:df:5d:
93:60:93:f2:a0:b0:00:b0:6d:f0:d5:79:27:e5:86:6d:19:4e:
ac:f2:80:ba:3a:ce:b2:06:ff:cc:54:9e:2b:cb:5a:ca:32:b1:
14:2f:36:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 07:23:14 2024 by rpki-client on console-ams.rpki-client.org