Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/j0Stjznaf47gStJTOdQ9SkXvklo.roa
File: j0Stjznaf47gStJTOdQ9SkXvklo.roa (raw, json)
Hash identifier: eM+h7V3z644zAmvc7ifIJjHPnd2QsUy9TmgJRUDD+NI=
Subject key identifier: 8F:44:AD:8F:39:DA:7F:8E:E0:4A:D2:53:39:D4:3D:4A:45:EF:92:5A
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018D8537AF03F44F307BD10D20AEA0F2F807
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/j0Stjznaf47gStJTOdQ9SkXvklo.roa
Signing time: Wed 07 Feb 2024 20:17:15 +0000
ROA not before: Wed 07 Feb 2024 20:17:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215555
IP address blocks: 45.152.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:85:37:af:03:f4:4f:30:7b:d1:0d:20:ae:a0:f2:f8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Feb 7 20:17:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f44ad8f39da7f8ee04ad25339d43d4a45ef925a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:41:2d:b1:ca:4d:c7:c4:13:bc:5a:0a:b5:32:
76:3d:26:90:8d:2a:c8:55:a4:b8:ce:e5:cb:0c:7d:
f9:6e:58:58:d3:ca:71:7f:a2:25:3a:fd:b5:52:65:
8f:95:54:66:16:29:39:37:2a:78:c3:87:32:b6:5b:
6c:5e:e1:c7:9b:02:bd:95:ca:15:74:64:51:37:9e:
9b:64:d4:b3:f3:fb:93:5e:39:85:f6:cd:05:f5:77:
01:43:07:6d:86:23:f9:4b:7a:4d:0d:5e:eb:93:6b:
58:b9:fb:1b:bd:43:ec:c8:72:b1:40:94:b3:d0:94:
8c:7c:36:3b:bf:01:4b:40:53:1a:1c:9d:8f:cb:6f:
5e:ec:d9:de:34:db:21:0d:ea:69:bf:9e:df:ea:6c:
76:7f:5f:98:d5:94:59:3d:fb:61:5d:f5:1a:74:47:
35:0d:08:37:b0:fd:9c:c0:de:eb:70:60:ef:f1:03:
16:d9:c7:4d:d9:bd:6c:b1:6b:6f:e1:43:c7:af:36:
e8:54:17:7a:6a:10:f3:02:41:ef:de:da:af:01:cf:
3c:10:40:e3:e2:1d:a1:23:3c:5d:72:a0:c8:39:a4:
db:7b:a4:89:fc:c2:a7:62:e3:50:85:12:7e:9e:2f:
51:74:24:d3:06:22:88:34:cf:c7:03:56:3f:6c:e9:
ec:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:44:AD:8F:39:DA:7F:8E:E0:4A:D2:53:39:D4:3D:4A:45:EF:92:5A
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/j0Stjznaf47gStJTOdQ9SkXvklo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.58.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:5c:89:30:25:dc:f8:a6:2a:0e:0f:2e:5d:bb:d9:b5:00:6c:
36:64:e3:d5:3c:9e:ad:8f:2d:89:45:3d:a2:84:5a:8a:46:15:
bd:6c:fd:1e:d5:67:56:87:b2:f7:a7:e3:a6:ad:29:c4:fd:9f:
54:28:65:af:31:e9:bb:2e:5e:82:d1:b0:bf:b3:be:0f:33:f5:
fa:c9:7f:db:20:8f:b6:5a:08:43:af:bb:4a:4f:ee:5c:c2:f5:
f2:bb:9d:44:d1:72:55:bb:53:93:a4:33:83:6e:cf:48:32:7f:
23:e5:23:34:38:08:9a:cb:05:09:3e:4d:3f:6a:11:1a:05:9a:
f6:cc:aa:21:fa:e0:ad:37:2d:5a:2e:2d:87:b7:db:fa:f8:be:
f7:88:b1:7f:21:77:2e:4b:18:f1:1e:e2:71:cb:70:3f:56:66:
b6:d9:02:5d:a6:e4:67:e4:39:19:ce:62:bd:b2:c9:9a:89:dd:
d3:76:4f:42:bf:9c:b3:3f:e2:ca:89:29:e6:12:ef:8c:78:4c:
e1:01:b6:5c:84:82:4d:74:8c:79:14:63:f0:b8:27:a5:e7:89:
5d:84:82:04:1f:cb:e3:bd:6e:3d:b5:23:80:df:13:5c:5d:62:
d8:e3:19:a2:e0:5a:a6:4b:4b:ec:89:82:4d:ad:26:af:04:bf:
1c:6a:23:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org