Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/xJxQ_M8Vy592FMlgy6K85W7iGc4.roa
File: xJxQ_M8Vy592FMlgy6K85W7iGc4.roa (raw, json)
Hash identifier: N2LNjJxrbA1mG9W3I33BhZoZGPwKWfVT6EDn43xVdc4=
Subject key identifier: C4:9C:50:FC:CF:15:CB:9F:76:14:C9:60:CB:A2:BC:E5:6E:E2:19:CE
Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Certificate serial: 018CC7273785CDC5A948A91F3AAE4C673B62
Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/xJxQ_M8Vy592FMlgy6K85W7iGc4.roa
Signing time: Mon 01 Jan 2024 22:31:25 +0000
ROA not before: Mon 01 Jan 2024 22:31:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.14.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jan 2024 14:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:37:85:cd:c5:a9:48:a9:1f:3a:ae:4c:67:3b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Validity
Not Before: Jan 1 22:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c49c50fccf15cb9f7614c960cba2bce56ee219ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f1:32:a3:fa:a6:7a:d6:43:a0:91:ea:1d:28:
e8:de:38:3e:18:5b:2d:14:94:16:90:91:92:f0:6b:
86:23:66:90:cf:3a:43:67:80:6f:f3:fc:83:c3:b2:
9e:ab:3a:99:a7:1f:7c:ef:a6:d2:5f:99:67:77:93:
a9:26:aa:f6:bc:e4:9c:39:c7:ac:3d:72:43:6e:3f:
2f:4d:cc:a2:c5:4e:ef:3a:2a:5f:6c:64:a8:0f:29:
7d:c9:c1:15:12:ff:e9:09:ed:07:1c:37:ae:01:b6:
21:83:a6:5b:2d:0e:16:20:33:e5:ec:f4:fd:e5:5f:
f1:aa:65:97:8f:db:55:5f:bd:3e:0f:e7:ea:e0:96:
11:d5:3d:a9:60:c1:bc:5e:25:61:b7:2f:fd:60:cf:
76:00:89:72:92:c4:67:dd:ce:4c:88:86:05:52:cf:
13:80:7a:a8:4f:17:d0:f0:be:18:ed:e1:7e:f7:8a:
af:28:f5:d9:33:c6:c7:9c:d3:36:73:52:34:0c:32:
03:43:15:e5:c5:d4:cc:54:40:b6:2e:ca:8f:4e:47:
96:27:39:1c:74:54:95:77:0d:b1:8d:46:40:c1:d0:
53:73:9a:87:bc:95:04:7f:fc:6d:42:6b:b8:ce:a3:
e0:2f:38:95:82:e1:5d:69:0b:3b:11:d4:10:9e:70:
7e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9C:50:FC:CF:15:CB:9F:76:14:C9:60:CB:A2:BC:E5:6E:E2:19:CE
X509v3 Authority Key Identifier:
keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/xJxQ_M8Vy592FMlgy6K85W7iGc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.81.0/24
Signature Algorithm: sha256WithRSAEncryption
70:16:a5:1b:1d:d0:2e:00:fa:62:87:84:94:0a:91:b7:a0:07:
26:98:1b:c1:d7:f2:51:48:a6:05:b4:a5:dd:94:32:19:6e:d0:
f1:db:7a:fa:69:67:2f:ff:9b:b8:7a:7b:0a:f0:db:a3:b2:0a:
66:88:d8:da:f2:28:ed:e9:a2:93:58:a7:fe:7d:60:e0:f1:ab:
d9:77:6f:f3:5e:58:2b:88:b9:4a:b5:37:31:73:50:77:4b:10:
6e:ef:5a:c7:26:aa:10:5a:15:e4:15:00:5e:b7:67:33:74:fc:
e4:96:f0:d4:a5:9e:6a:12:9b:23:98:e0:8d:67:74:ce:fe:69:
4e:39:52:a1:e1:81:cb:e5:b3:3d:1f:ca:d6:dc:be:84:f0:c4:
0e:c5:75:3a:fe:2b:d1:3d:59:63:f6:17:ea:07:40:f7:36:9e:
4c:25:0f:c4:47:99:d5:d6:d1:73:d1:df:9f:cd:a5:77:a0:e9:
5c:8c:33:04:2f:f1:5f:9c:69:28:07:b7:d4:84:0d:9e:04:6e:
e4:ee:77:3a:f5:e3:58:56:71:6d:bf:cc:de:8a:30:4e:30:b4:
e4:90:97:38:7d:6a:34:b9:81:e0:6b:d0:67:82:55:d5:0b:92:
e8:8d:d0:cd:5b:52:8b:53:b2:64:ac:dd:e4:ce:94:f9:ac:01:
54:e5:82:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 27 19:41:59 2024 by rpki-client on console-fra.rpki-client.org