Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/F5KoW3EVoSCbkbpPXj7L53GMTNk.roa
File: F5KoW3EVoSCbkbpPXj7L53GMTNk.roa (raw, json)
Hash identifier: cU4yrXc7YZgyy3o2dTXxRQGyUwQre5wSieaZuxRQdO8=
Subject key identifier: 17:92:A8:5B:71:15:A1:20:9B:91:BA:4F:5E:3E:CB:E7:71:8C:4C:D9
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 018A83AB3542CE40533BD638BB63049A29D3
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/F5KoW3EVoSCbkbpPXj7L53GMTNk.roa
Signing time: Mon 11 Sep 2023 09:55:50 +0000
ROA not before: Mon 11 Sep 2023 09:55:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207616
IP address blocks: 45.67.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 15:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:ab:35:42:ce:40:53:3b:d6:38:bb:63:04:9a:29:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Sep 11 09:55:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1792a85b7115a1209b91ba4f5e3ecbe7718c4cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6a:05:a0:b2:f5:5d:10:2f:1b:8e:e0:1b:c5:
70:79:a6:54:80:9b:fe:9f:e9:fd:e1:92:20:31:e3:
ce:02:38:4e:c7:11:d2:74:92:f2:66:f6:4c:1a:a5:
15:64:9a:7f:f0:34:09:eb:f5:88:25:ab:bf:2e:72:
13:d6:5a:c1:bf:43:39:f7:71:5b:8b:90:74:80:a2:
62:ed:dc:40:31:c6:2c:32:f2:9b:6d:3e:af:05:21:
fb:c6:be:15:8e:ce:1c:78:4b:90:d5:fa:d5:d3:87:
65:76:f5:f0:4e:52:a6:ad:5c:b1:93:14:f8:35:49:
9f:ce:05:4f:b0:35:47:21:6a:9f:18:2e:8d:32:e7:
b9:7b:07:2d:16:5f:66:2b:d7:81:4b:5d:35:ed:96:
83:30:fb:61:e9:d2:32:6f:65:c3:3a:fc:b3:a9:13:
e7:0b:79:41:1b:b9:1f:fd:0e:be:45:ec:a6:51:ef:
dc:c9:18:c7:b4:f4:75:9c:a3:5d:c7:f7:42:82:f6:
13:37:ae:af:f2:5b:a6:d6:75:c6:55:34:1b:b5:e4:
28:37:e7:6f:3e:2f:3b:c7:a3:7c:e3:ad:79:b3:51:
5b:9e:3f:91:e9:20:c7:19:9b:54:71:a4:93:22:1d:
f0:aa:c0:77:77:f1:22:54:db:b2:7f:82:cc:53:1f:
df:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:92:A8:5B:71:15:A1:20:9B:91:BA:4F:5E:3E:CB:E7:71:8C:4C:D9
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/F5KoW3EVoSCbkbpPXj7L53GMTNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.15.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:2d:26:8a:30:93:89:41:b1:f1:c5:f0:f4:cb:dd:45:1a:0d:
e1:0e:0f:ca:2a:be:c3:f7:3e:68:65:fc:fb:27:b0:f4:ad:83:
48:d9:ff:ce:9a:e7:ab:fc:b3:c6:72:be:cd:55:95:8b:98:78:
51:0c:6c:dd:37:3f:d2:42:b0:b0:75:68:2b:db:71:5b:04:07:
fe:46:7c:d6:c3:9b:0d:8a:f5:5f:f7:1e:37:1f:68:ed:c1:d0:
80:60:e2:db:f4:c0:4f:50:77:f0:2a:a0:d8:fc:79:1b:43:33:
7c:7a:08:09:74:70:8e:a1:55:82:81:ad:e6:2a:db:6d:45:bc:
c9:c2:e8:fa:1a:8f:98:5e:0e:3f:69:7e:31:09:43:1a:66:ef:
f5:24:19:e3:36:34:97:b6:b1:f5:28:1c:2f:80:95:2d:fb:a1:
e2:77:a8:18:58:7a:e0:6c:16:26:e8:3a:eb:37:14:a6:a0:e0:
78:34:82:b4:79:2c:64:96:59:ac:83:ac:80:cf:83:9e:88:0f:
d5:a0:f5:b4:ef:45:8e:e4:20:87:74:c7:11:4c:f0:66:09:15:
20:e9:0c:b4:cd:78:ec:4d:da:d8:89:bb:2e:95:b3:c7:ff:95:
4b:bd:da:aa:e1:9c:cd:ae:c1:38:5e:71:e3:c7:cd:97:cb:47:
e6:f1:3d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org