Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/N-fzklDjHCaHNadARfowtQcWK9I.roa
File: N-fzklDjHCaHNadARfowtQcWK9I.roa (raw, json)
Hash identifier: 1TIsCw5T3HOYddGbSmYEByXyHPUdwR1++JY/hl2L/ew=
Subject key identifier: 37:E7:F3:92:50:E3:1C:26:87:35:A7:40:45:FA:30:B5:07:16:2B:D2
Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Certificate serial: 018CC727358A315CF8925B507E54ADDD4547
Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/N-fzklDjHCaHNadARfowtQcWK9I.roa
Signing time: Mon 01 Jan 2024 22:31:24 +0000
ROA not before: Mon 01 Jan 2024 22:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11325
IP address blocks: 2.57.248.0/22 maxlen: 22
45.80.96.0/22 maxlen: 22
45.85.128.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 07 Mar 2024 17:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:35:8a:31:5c:f8:92:5b:50:7e:54:ad:dd:45:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Validity
Not Before: Jan 1 22:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37e7f39250e31c268735a74045fa30b507162bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:51:8d:95:51:ed:e1:96:0b:f2:99:df:3c:68:
b2:43:40:76:c2:e6:f7:17:fe:7a:ad:af:91:c9:bd:
29:b9:0f:fb:28:92:e1:39:96:7e:47:27:78:94:1f:
a1:32:9c:6d:72:ac:7a:1d:7c:6a:9a:57:6f:42:63:
1a:9b:b5:53:6d:e8:77:b0:82:bb:96:95:05:45:c2:
80:ac:d1:e3:5a:f2:cf:d1:49:69:4b:7d:e3:75:a1:
b8:a5:02:37:56:3e:66:b5:8c:48:be:e5:cc:83:9b:
3a:e0:fe:36:d3:c5:aa:21:34:e0:03:99:00:23:e5:
2c:0b:57:b0:df:34:f4:93:35:70:d3:54:b3:1e:6a:
3e:4c:28:4b:9c:b2:11:f3:75:3f:a6:9a:65:6e:57:
f4:79:1e:36:fe:10:43:06:26:5e:48:d7:3d:47:c0:
78:51:35:94:b5:48:2b:a4:60:69:65:5f:ba:df:0e:
db:25:8b:d7:c9:dc:c6:cf:b9:58:f1:f8:6c:d5:53:
c3:19:9f:4a:7c:91:dc:b1:78:85:df:be:14:33:5e:
c0:d7:30:a1:8c:cd:68:03:4a:25:33:1a:e5:d5:f7:
70:9f:7f:52:20:63:fb:9c:95:b7:6b:9d:bd:9f:5d:
a2:35:5c:32:82:fd:82:c6:e5:93:35:ee:a8:58:14:
9f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E7:F3:92:50:E3:1C:26:87:35:A7:40:45:FA:30:B5:07:16:2B:D2
X509v3 Authority Key Identifier:
keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/N-fzklDjHCaHNadARfowtQcWK9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.248.0/22
45.80.96.0/22
45.85.128.0/23
Signature Algorithm: sha256WithRSAEncryption
56:b0:8b:33:4c:38:5f:6b:a3:81:6b:c2:b2:f6:9d:f1:46:16:
1a:79:d8:0b:61:06:5b:7c:a9:d3:c6:cf:23:2b:95:ea:0c:a1:
53:71:1d:7f:4a:e1:2c:c0:57:2b:a8:37:8d:22:9e:53:a8:aa:
dd:08:a6:94:3d:a5:4e:73:db:cd:3d:28:48:5f:4d:8c:ea:96:
1d:20:ea:a7:b7:fd:97:17:4c:1e:01:9e:c1:7d:1e:65:a0:84:
4d:9a:23:94:9f:f6:1e:e2:24:6c:73:7b:91:21:fd:0f:26:10:
a9:cf:61:25:8a:43:14:96:03:94:aa:36:aa:df:99:41:21:47:
5d:42:13:46:af:18:78:3f:5c:5a:b0:ad:ec:cf:00:ad:3d:cf:
5f:cd:b2:86:e0:2b:28:3b:e4:b6:1a:50:54:89:c2:7b:7e:0e:
b0:31:93:55:d3:56:5d:ac:ce:75:04:12:e5:21:67:6b:ba:d0:
58:05:f4:8b:54:be:2d:79:f7:15:84:02:1d:b8:b2:fe:a5:d4:
b7:24:50:c8:6d:aa:36:b2:74:65:d6:09:b9:62:23:2b:a3:c2:
f5:6c:6e:cc:77:0a:68:0d:44:65:35:7f:26:8f:40:4b:c4:b9:
8c:e5:58:10:14:37:41:63:d6:b5:a1:85:55:56:2a:7d:9b:17:
b7:54:c8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 22:23:10 2024 by rpki-client on console-fra.rpki-client.org