Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SjQn229N_Szu-3dliXXNZk1bA7M.roa
File: SjQn229N_Szu-3dliXXNZk1bA7M.roa (raw, json)
Hash identifier: 40vHXrdETQyGXbG2ublW9pJxGQi8KqrvfI1vnXj7ngw=
Subject key identifier: 4A:34:27:DB:6F:4D:FD:2C:EE:FB:77:65:89:75:CD:66:4D:5B:03:B3
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CAAB912812F086CF72C019B6124B61092
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SjQn229N_Szu-3dliXXNZk1bA7M.roa
Signing time: Wed 27 Dec 2023 10:01:44 +0000
ROA not before: Wed 27 Dec 2023 10:01:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215933
IP address blocks: 45.157.35.0/24 maxlen: 24
45.130.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:b9:12:81:2f:08:6c:f7:2c:01:9b:61:24:b6:10:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 27 10:01:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a3427db6f4dfd2ceefb77658975cd664d5b03b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:bc:3a:eb:0f:18:a2:fc:f6:76:08:0c:97:
07:71:6d:78:dd:90:6e:06:23:11:82:66:70:70:8c:
c2:51:d7:96:44:54:db:63:7a:86:53:45:01:5b:10:
25:46:47:c8:9d:12:20:50:cb:65:89:b0:60:a9:64:
aa:3d:2f:3c:48:dd:0d:0a:c5:a2:22:87:31:c4:22:
87:40:22:19:df:f3:1c:fa:15:cf:ed:af:f0:34:eb:
d0:a8:c2:29:70:32:44:f9:18:f4:ba:89:cf:62:c3:
28:f6:dc:ea:56:24:66:67:51:34:2d:1a:99:10:56:
f4:ab:c4:b1:3b:66:5b:ff:97:3b:44:2e:22:07:a0:
64:05:fa:36:7a:cb:05:cf:f8:c2:d4:1f:f6:8c:29:
9d:a8:88:48:c6:4f:a9:18:fe:f7:fc:71:ca:c8:c9:
f3:2f:8e:94:65:24:85:7b:0e:86:71:09:61:8e:95:
06:e4:ee:f1:d2:8b:05:c6:02:5f:e2:7e:ea:d5:d4:
31:25:7b:ef:6d:c1:89:9a:43:18:17:1d:dc:10:b7:
8b:bb:ec:33:90:69:41:d2:e1:02:03:dc:80:ec:7e:
da:c4:41:cd:75:42:a4:4a:e4:a6:f1:94:d5:92:05:
57:30:23:4d:a2:fd:fe:45:d9:2c:38:d5:f6:89:2f:
dd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:34:27:DB:6F:4D:FD:2C:EE:FB:77:65:89:75:CD:66:4D:5B:03:B3
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SjQn229N_Szu-3dliXXNZk1bA7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
45.157.35.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f4:62:03:44:b6:73:55:cc:ec:3f:7d:b3:a4:a9:94:bb:ef:
ee:de:aa:43:12:79:00:40:f3:f5:1f:58:d3:3c:28:84:ee:61:
8e:65:76:2f:53:c8:21:39:69:84:c3:d3:84:7b:a0:2f:8e:e2:
9e:94:03:3d:27:9a:9d:41:78:f9:49:26:cf:82:13:01:b3:12:
45:3f:4f:ae:87:06:01:06:47:38:ab:31:fe:14:4f:60:c3:6b:
f0:38:58:1a:0c:63:97:53:01:4f:36:67:7a:cf:20:17:ee:ab:
22:16:3a:83:ed:a9:4c:f5:1e:9d:6a:56:c8:24:72:1b:85:2c:
e7:bb:ca:a2:a5:d1:1d:78:72:07:eb:c1:96:50:97:9f:93:e8:
d7:9e:e2:a9:53:d2:41:91:49:14:bc:85:f5:45:3b:a1:19:97:
dc:a7:ec:13:a9:99:1c:f7:7f:8c:8d:26:d9:03:4d:28:82:df:
52:cd:79:be:4a:9b:13:04:ce:66:0f:ac:58:ea:59:ee:2f:d5:
1e:e5:73:5c:e0:ac:c8:d1:37:1e:57:43:db:7a:63:08:31:d2:
b5:7a:78:9e:72:f1:78:f5:0e:d3:2e:fd:44:91:f4:51:0e:49:
3e:14:14:d0:89:42:83:0d:9c:59:75:44:58:c9:9c:87:ba:8b:
5b:01:89:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org