Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/3gaT8n3nvnCNV9CKeB88ajyUls4.roa
File: 3gaT8n3nvnCNV9CKeB88ajyUls4.roa (raw, json)
Hash identifier: 8iqTny1e3jtQFvrp1MIrOHQDME2aj/kAASB7czN/sNo=
Subject key identifier: DE:06:93:F2:7D:E7:BE:70:8D:57:D0:8A:78:1F:3C:6A:3C:94:96:CE
Certificate issuer: /CN=2628cc7f06ea09a247f6be9e9e574c4f37b4e9b6
Certificate serial: 01857343ACC9867804AE15BA1656EC5316EE
Authority key identifier: 26:28:CC:7F:06:EA:09:A2:47:F6:BE:9E:9E:57:4C:4F:37:B4:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JijMfwbqCaJH9r6enldMTze06bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/3gaT8n3nvnCNV9CKeB88ajyUls4.roa
Signing time: Mon 02 Jan 2023 16:14:53 +0000
ROA not before: Mon 02 Jan 2023 16:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56595
IP address blocks: 45.149.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:ac:c9:86:78:04:ae:15:ba:16:56:ec:53:16:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2628cc7f06ea09a247f6be9e9e574c4f37b4e9b6
Validity
Not Before: Jan 2 16:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de0693f27de7be708d57d08a781f3c6a3c9496ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:03:4f:3a:70:86:23:03:4c:e8:8c:e2:67:a2:
b0:59:71:a5:b6:6e:a1:83:8b:37:60:f8:de:fb:a8:
a9:44:f8:af:6d:44:46:80:15:7a:a3:91:6a:f3:4f:
1a:67:3a:c6:f9:98:61:fe:37:ab:fa:f4:ea:6f:c9:
67:66:ad:45:ff:93:3b:b2:30:4a:01:26:ed:29:3f:
bd:aa:38:57:26:0c:e9:49:54:f3:21:b8:4c:9f:37:
52:8f:d5:3a:c4:8c:b1:c8:f0:d6:95:6e:03:3c:7f:
1f:31:35:0c:ab:4a:70:f3:a5:c7:7b:bf:ba:e1:93:
05:59:d8:84:7c:55:99:3f:60:b5:77:6d:2c:59:31:
be:a5:ae:8d:f6:d3:55:f2:6c:d5:59:7d:88:54:25:
58:c6:fe:6b:ff:4d:cc:97:11:b2:7d:57:51:6e:dd:
d7:64:f6:9b:7d:5c:60:8e:ca:5b:1b:95:9f:6d:99:
4a:a5:d0:35:a5:c3:25:dd:7e:a6:f9:e8:a8:47:fe:
96:1b:74:77:fd:cc:a9:ba:3c:2c:79:f5:17:b1:3b:
84:f5:d7:86:00:76:87:18:7f:0f:e9:50:3a:c8:58:
97:20:4c:5e:a1:cb:83:92:b9:72:79:3a:1a:f3:a4:
2e:8e:1c:ce:51:27:b9:9c:ca:6b:8d:ac:07:e6:e0:
4e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:06:93:F2:7D:E7:BE:70:8D:57:D0:8A:78:1F:3C:6A:3C:94:96:CE
X509v3 Authority Key Identifier:
keyid:26:28:CC:7F:06:EA:09:A2:47:F6:BE:9E:9E:57:4C:4F:37:B4:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JijMfwbqCaJH9r6enldMTze06bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/3gaT8n3nvnCNV9CKeB88ajyUls4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/JijMfwbqCaJH9r6enldMTze06bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:44:e7:50:26:2c:69:d7:ea:1d:44:4c:9b:d3:cb:54:fa:ff:
6a:55:d6:da:2a:41:b1:57:6d:fc:8f:52:62:b8:64:cc:a7:ae:
4d:5b:fd:1c:e4:55:70:83:30:73:c6:d0:2d:07:99:28:3d:ec:
6d:16:b2:32:67:38:06:6e:42:8d:5f:81:ea:ee:9a:4c:9a:6c:
39:04:00:f4:a4:79:92:59:36:a3:3e:5b:01:0e:8b:bb:50:a1:
e1:85:ea:ba:52:25:3d:03:11:67:ab:b9:fe:b3:ad:97:7c:40:
f4:e0:12:b3:11:04:9e:65:f8:55:1b:e9:8c:66:1d:bf:1f:e4:
b6:a6:b0:c0:75:39:9f:44:b0:30:90:96:27:fd:c9:d4:4a:03:
99:d7:5a:08:ff:29:f8:45:78:83:e8:ec:34:6a:67:ee:4d:29:
e8:d4:96:66:55:43:d6:d9:3d:c9:08:69:04:38:d8:c8:04:d5:
27:ad:71:95:eb:85:b6:48:eb:0f:8c:bf:f4:51:1c:f2:17:75:
79:c7:4b:af:47:51:70:88:64:ce:9e:7e:3e:99:ed:61:ef:3f:
85:5b:d5:5e:a9:e5:e6:bb:6d:3c:86:cd:75:af:54:8c:11:a1:
64:79:c7:16:08:ff:c6:bf:6c:26:08:ad:b1:f6:20:02:8f:8d:
c3:78:b1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org