Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2cc16e-74e4-41ea-abee-05aa5ed47741/1/r0OSw2m-y-skfC3LWjsnKwBIMZw.roa
File: r0OSw2m-y-skfC3LWjsnKwBIMZw.roa (raw, json)
Hash identifier: 7SGNyWL5a6PutMPbhh8zpybe6HRViBjweCoTWAfiIG0=
Subject key identifier: AF:43:92:C3:69:BE:CB:EB:24:7C:2D:CB:5A:3B:27:2B:00:48:31:9C
Certificate issuer: /CN=51c3324c0d7886f5fb17cc8d2672cd247aad2264
Certificate serial: 01856DCAD3B90F038F85BF774ADE66A1D1BE
Authority key identifier: 51:C3:32:4C:0D:78:86:F5:FB:17:CC:8D:26:72:CD:24:7A:AD:22:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UcMyTA14hvX7F8yNJnLNJHqtImQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2cc16e-74e4-41ea-abee-05aa5ed47741/1/r0OSw2m-y-skfC3LWjsnKwBIMZw.roa
Signing time: Sun 01 Jan 2023 14:44:47 +0000
ROA not before: Sun 01 Jan 2023 14:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43915
IP address blocks: 45.143.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:d3:b9:0f:03:8f:85:bf:77:4a:de:66:a1:d1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51c3324c0d7886f5fb17cc8d2672cd247aad2264
Validity
Not Before: Jan 1 14:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af4392c369becbeb247c2dcb5a3b272b0048319c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:19:02:bd:31:63:c5:e1:cb:f9:3e:7b:ea:b1:
7a:bb:a5:ff:b7:e4:cc:d6:ad:01:33:47:04:b5:53:
7d:90:2e:1d:68:fe:a8:42:a1:17:07:d5:35:17:38:
09:29:79:a7:7a:46:3b:68:b1:4d:95:e7:40:f6:c7:
2b:d4:b7:e4:6c:55:26:ef:31:33:e4:3d:f7:1e:b7:
cb:bd:7f:30:9b:74:57:b5:5d:51:03:34:b6:d8:9b:
53:7f:70:d4:a7:e4:2a:96:90:c0:37:64:fa:66:0e:
f6:7d:85:be:c3:fb:5a:fb:eb:99:5c:75:06:b4:bd:
18:93:66:0a:2f:71:5d:14:b1:2f:85:73:ca:c7:6c:
7b:88:75:01:9e:10:d7:79:36:92:7f:a1:fd:45:1b:
47:d9:77:64:20:4f:d2:8d:a1:8d:b8:0f:a3:cb:ee:
52:1e:65:68:e0:f5:de:b8:ef:c9:e6:55:71:e7:17:
ca:2e:77:b1:17:e3:33:05:9e:b1:46:38:75:b2:d1:
a7:61:4a:06:ce:f8:ba:c1:8e:4e:50:73:fc:d5:48:
6c:ad:1a:bd:92:f5:d4:98:23:53:b2:23:4e:93:1c:
5d:7e:b2:54:43:8e:66:4d:30:65:f1:25:2c:1c:b4:
0c:b9:3f:20:a0:3d:42:f5:e9:6e:8a:ff:ba:f1:21:
7d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:43:92:C3:69:BE:CB:EB:24:7C:2D:CB:5A:3B:27:2B:00:48:31:9C
X509v3 Authority Key Identifier:
keyid:51:C3:32:4C:0D:78:86:F5:FB:17:CC:8D:26:72:CD:24:7A:AD:22:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UcMyTA14hvX7F8yNJnLNJHqtImQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2cc16e-74e4-41ea-abee-05aa5ed47741/1/r0OSw2m-y-skfC3LWjsnKwBIMZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2cc16e-74e4-41ea-abee-05aa5ed47741/1/UcMyTA14hvX7F8yNJnLNJHqtImQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.112.0/22
Signature Algorithm: sha256WithRSAEncryption
96:c7:17:5b:11:ad:51:90:c5:b0:b5:16:07:38:c6:22:69:71:
f7:ad:f3:68:f8:05:29:75:b3:ed:ee:bc:1f:f5:94:24:f6:a0:
ae:49:cc:f4:e7:cd:ae:d4:4a:db:68:5f:be:b8:3d:50:bd:28:
fa:22:95:a0:8c:79:22:cb:38:9a:76:9a:6c:9d:2b:2d:1a:15:
ab:06:5c:e1:05:eb:48:bc:a8:9d:92:30:cc:50:80:30:83:df:
7e:4a:4f:6d:09:9c:4d:72:b5:c3:11:90:f6:c2:c3:d2:a7:cb:
26:9d:f0:56:bf:6a:1e:a0:8d:bf:44:9b:1e:50:50:ee:62:a2:
69:c5:c4:c8:31:73:a1:7d:31:c4:00:84:b0:e8:2c:9f:a5:18:
cf:d7:de:01:7d:04:18:98:ff:12:49:90:9b:20:30:97:b2:d9:
cf:93:da:73:13:b6:4d:b6:65:66:b5:e3:e4:dc:6f:2c:2a:9c:
75:86:d7:2a:6f:06:0d:10:0d:72:d7:86:22:28:52:33:88:71:
d0:14:0c:8e:d8:af:c9:6a:b5:32:ca:02:9d:cb:03:a7:69:2e:
20:b0:48:76:c5:8b:64:7a:57:d7:db:3f:1d:43:54:d6:e1:de:
9e:37:57:0a:04:40:eb:52:3b:40:4a:ae:15:2d:68:a9:31:f8:
d2:73:4c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org