Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ARh0VyW_NesC1hgy-czj0r-rmyU.roa
File: ARh0VyW_NesC1hgy-czj0r-rmyU.roa (raw, json)
Hash identifier: Z67p2n3uffssc4a2+pQPFas3e5zTBcYEV1fI/eD7O+s=
Subject key identifier: 01:18:74:57:25:BF:35:EB:02:D6:18:32:F9:CC:E3:D2:BF:AB:9B:25
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018DE638F37F49F6597E3E5C572C9EECB518
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ARh0VyW_NesC1hgy-czj0r-rmyU.roa
Signing time: Mon 26 Feb 2024 16:21:48 +0000
ROA not before: Mon 26 Feb 2024 16:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216068
IP address blocks: 147.45.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 14:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:38:f3:7f:49:f6:59:7e:3e:5c:57:2c:9e:ec:b5:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 26 16:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0118745725bf35eb02d61832f9cce3d2bfab9b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:90:c7:c0:e9:8e:7c:94:f2:2c:3d:62:f3:79:
bb:42:28:b0:f7:f8:c7:de:64:d5:d5:79:4a:c9:74:
8a:79:c3:16:74:ab:e8:16:e7:1b:ca:63:4e:79:23:
f7:b2:b1:98:cd:7e:3a:03:28:58:f9:4b:4e:32:47:
70:4e:cb:fd:0c:81:ed:63:61:08:02:23:3f:1c:63:
c2:16:2c:49:31:b0:8d:0d:24:63:00:00:38:4b:53:
24:22:fc:cb:35:b0:da:fd:6e:c1:2b:de:dc:c7:06:
56:5e:92:25:24:dd:95:a7:66:f2:62:1a:1f:29:85:
9f:27:c4:05:66:69:76:81:27:eb:15:1d:49:d9:45:
66:a5:d3:88:a2:cb:33:95:64:80:83:9e:45:cb:83:
17:5e:a2:2b:f1:20:5d:64:86:98:11:c3:fc:4d:d7:
38:73:f8:72:5a:33:ed:a8:73:d2:fd:10:87:d3:72:
27:3b:b2:79:5a:c7:ff:19:f0:23:60:be:87:f5:12:
74:12:d2:15:c6:16:0d:ad:1c:a5:2b:88:e1:4f:b6:
fd:df:5b:99:eb:9d:33:d3:cf:38:b3:14:42:48:ac:
e5:09:d9:f0:0f:bc:83:9e:17:79:58:25:63:be:4e:
33:9e:5a:bf:c4:26:06:37:f7:e3:c6:5a:21:31:7a:
34:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:18:74:57:25:BF:35:EB:02:D6:18:32:F9:CC:E3:D2:BF:AB:9B:25
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/ARh0VyW_NesC1hgy-czj0r-rmyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.112.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:c0:13:37:6d:5c:ba:ac:fd:20:ad:77:96:ae:ab:75:66:67:
81:d4:a9:48:a5:3b:83:90:66:4b:27:99:d9:d3:d7:f5:fe:b5:
7a:7c:3d:da:04:b8:d3:b1:49:6e:ca:e1:3d:a4:a3:d9:dc:ca:
a6:7c:da:4e:0e:92:4b:4a:3d:0c:06:4b:25:8f:77:b8:12:c5:
8c:2e:18:26:ad:33:f1:c0:d1:8c:50:01:5d:b0:fe:bd:5b:aa:
86:82:42:63:dd:c1:23:65:59:e3:ef:37:f9:24:f2:e3:9e:71:
7d:6d:37:2d:d7:85:4b:7e:ae:a6:d6:b7:8a:72:a9:32:52:4a:
aa:81:42:bb:02:e5:04:3b:71:f7:02:78:3e:70:3e:0a:83:df:
37:06:2f:51:ec:a2:2d:1a:2e:84:3a:b6:0d:35:07:4e:9e:9d:
3f:65:77:ff:6f:55:15:ca:e4:be:84:32:bd:14:af:7a:dd:05:
52:8b:5f:1d:ec:a4:f2:98:27:84:1c:b4:f6:c3:b7:ed:ed:76:
ed:53:14:36:13:11:d9:7f:a4:18:a9:41:98:8b:f4:68:0c:0d:
6a:0e:e9:8a:7d:bf:07:54:62:4f:67:72:8b:b7:7f:fb:68:19:
86:c1:a8:07:f0:cc:55:f4:1a:a4:7f:90:92:72:b3:e1:b3:5c:
e0:86:e8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 18:30:17 2024 by rpki-client on console-fra.rpki-client.org