Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/auIiPeWVQTLMGihQoENxkJ4bKAA.roa
File: auIiPeWVQTLMGihQoENxkJ4bKAA.roa (raw, json)
Hash identifier: w/3P4hlaxLDs21Oqohdm3S6QF9cHo7pDaY4JLh352mo=
Subject key identifier: 6A:E2:22:3D:E5:95:41:32:CC:1A:28:50:A0:43:71:90:9E:1B:28:00
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 018A83AB359CCD2128359231E64C9021640A
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/auIiPeWVQTLMGihQoENxkJ4bKAA.roa
Signing time: Mon 11 Sep 2023 09:55:50 +0000
ROA not before: Mon 11 Sep 2023 09:55:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216395
IP address blocks: 45.67.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:ab:35:9c:cd:21:28:35:92:31:e6:4c:90:21:64:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Sep 11 09:55:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ae2223de5954132cc1a2850a04371909e1b2800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:13:0e:58:b4:01:93:37:25:c6:5b:b6:f7:0e:
c4:38:88:eb:6c:af:dc:5f:f7:a5:7f:fe:f2:fc:7a:
d0:17:20:10:7b:8a:9a:74:fe:53:0d:fc:b5:e4:7c:
83:ea:df:3d:19:93:7f:cd:1b:01:1d:06:2d:85:0f:
45:29:b4:a8:8a:22:47:5c:3d:2c:74:d8:6f:77:92:
6d:95:82:8e:f9:9f:ad:88:70:ee:cc:7e:15:bb:97:
f0:56:96:4c:d1:60:6e:bf:6d:fd:f6:b5:55:69:cd:
2c:55:f2:b4:a6:08:d6:e5:90:c9:6b:14:13:f6:63:
ba:fb:01:0d:13:80:4b:e1:ba:4c:44:06:fe:7c:32:
83:3c:3e:a9:0a:65:a0:04:67:b6:20:31:c9:f6:c4:
92:d8:40:29:9a:28:fb:79:39:ce:86:10:50:f3:29:
6c:94:93:ec:d6:49:92:08:7f:23:ed:16:c8:5b:72:
3d:1f:c8:5a:bd:8c:25:a3:ef:a2:98:1b:05:1b:ea:
45:63:eb:81:75:dd:80:27:30:14:20:18:cb:e2:c9:
e1:d1:21:a2:d1:3d:b6:82:82:5e:03:05:ea:d4:d3:
aa:2a:06:d7:f8:65:a7:e7:8a:ac:a8:81:6c:4c:2d:
3f:63:e3:1a:cb:ad:ae:a4:71:53:8b:3b:ee:a4:e9:
dc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E2:22:3D:E5:95:41:32:CC:1A:28:50:A0:43:71:90:9E:1B:28:00
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/auIiPeWVQTLMGihQoENxkJ4bKAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.14.0/24
Signature Algorithm: sha256WithRSAEncryption
27:d9:7f:c3:38:b3:0a:75:a9:ad:7f:14:88:3d:62:1a:07:c2:
48:d9:33:72:4b:a0:24:b3:9a:04:2d:b5:fb:9c:66:02:0e:75:
75:cd:8e:0c:e4:38:36:6e:07:a7:11:99:ff:de:5d:3e:70:5f:
e1:6e:4f:e6:52:49:83:49:a1:46:a2:d1:2b:d0:ad:b1:22:d5:
a0:fc:ee:60:82:58:5c:71:76:81:57:b9:87:ad:ee:e5:74:53:
a3:cb:d0:df:99:1b:62:08:0c:41:26:34:cc:95:d3:43:ce:74:
1b:81:da:bd:b9:90:bc:be:3f:dd:43:8f:bf:28:3c:41:fe:42:
91:7c:d2:55:c4:14:62:bc:aa:05:26:f4:a2:ba:3f:91:08:d5:
85:62:ad:23:30:f4:7b:68:c3:80:49:33:50:bd:f3:77:45:9e:
6b:63:d5:ca:b6:60:18:b8:c9:48:25:09:31:c2:9e:7f:b3:21:
fd:36:3b:7c:17:d0:e6:87:86:c3:ab:7d:d4:8e:ea:b8:bd:ab:
0a:51:50:e1:c8:3b:0d:bf:54:96:d9:5f:19:0e:b6:6c:28:76:
b3:a5:ae:69:8e:bb:2c:b6:a5:44:9d:3c:ed:f4:b0:30:0a:11:
3f:4c:a9:0a:05:b9:80:f5:96:a5:4b:da:52:cf:4c:da:51:0a:
66:79:24:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org