Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/G8r8am-NjqQQLM4Gu4t_3wFyunk.roa
File: G8r8am-NjqQQLM4Gu4t_3wFyunk.roa (raw, json)
Hash identifier: QQzgOMzRKQ4+RQJ64MtJV7vERgNkjyNfxnmOuJPL4FA=
Subject key identifier: 1B:CA:FC:6A:6F:8D:8E:A4:10:2C:CE:06:BB:8B:7F:DF:01:72:BA:79
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018DCBACFEAE8162822529AE37AD58DAD29B
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/G8r8am-NjqQQLM4Gu4t_3wFyunk.roa
Signing time: Wed 21 Feb 2024 12:38:48 +0000
ROA not before: Wed 21 Feb 2024 12:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215539
IP address blocks: 45.11.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 24 Mar 2024 13:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:ac:fe:ae:81:62:82:25:29:ae:37:ad:58:da:d2:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Feb 21 12:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bcafc6a6f8d8ea4102cce06bb8b7fdf0172ba79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fe:21:03:e1:69:cc:81:1a:2d:79:c3:3d:35:
e9:23:9c:3f:77:1a:7a:d9:0a:5b:2e:7e:48:59:d5:
06:b8:a3:9b:3a:cc:5d:06:5d:ce:39:a9:13:6d:bd:
40:09:67:1a:99:47:ec:97:15:e7:0b:f9:d0:8a:ba:
ae:30:b7:a2:a3:2d:5b:be:35:82:4f:02:80:cd:79:
5e:a9:f1:ef:da:04:80:22:50:2e:74:4b:c7:96:ac:
d6:b1:3d:c5:b8:de:0e:6c:57:b4:8f:4c:fa:f9:e4:
03:af:80:ab:2d:28:f8:2c:36:00:98:35:72:19:ee:
f7:ef:92:1a:18:4f:82:cc:b6:66:e8:b8:28:65:0f:
3e:11:04:fb:16:96:2d:80:88:8c:7e:61:64:85:5e:
bc:dd:b7:ad:7e:89:54:45:2c:35:cc:8d:68:96:33:
6f:7c:6b:80:f2:b5:75:19:a3:fd:ce:93:0c:ce:0e:
8a:e5:8a:4c:e6:07:1e:fc:3d:a4:e8:2e:22:6b:cb:
4e:f7:1c:b8:bb:ef:14:9f:9a:d3:e7:6b:06:4d:92:
52:7d:ac:6c:11:fb:da:86:67:ec:42:d2:b0:38:7c:
dc:60:2d:19:ab:0f:a3:c1:a4:fd:ec:da:35:7d:7e:
6c:69:64:2f:52:59:e0:53:08:be:3c:37:0b:b7:0b:
fb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CA:FC:6A:6F:8D:8E:A4:10:2C:CE:06:BB:8B:7F:DF:01:72:BA:79
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/G8r8am-NjqQQLM4Gu4t_3wFyunk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/23
Signature Algorithm: sha256WithRSAEncryption
23:29:7f:b0:d7:12:46:10:9d:8d:01:02:e4:37:6d:30:58:48:
83:06:8c:cb:8d:08:ff:f9:6b:13:a3:09:53:d5:cd:83:f3:aa:
3c:bf:01:10:3e:c2:4d:8a:76:2c:ff:fd:bd:19:a9:ec:86:58:
6f:d4:f1:01:6d:0e:fb:68:50:39:0e:b6:bf:4a:9d:ad:e6:78:
3f:81:14:91:8b:76:1e:5f:67:21:13:52:70:25:3e:92:a6:4a:
c0:da:22:0d:73:89:6b:aa:53:33:ce:7b:08:64:10:e2:2e:ed:
25:59:af:a9:9b:38:12:2c:ca:bf:2b:5c:46:27:01:52:82:d9:
dd:e3:b4:0c:08:da:29:24:a6:49:ae:ac:d3:c0:81:29:84:4e:
10:43:98:9c:22:c6:ce:4b:cd:f7:4b:dd:25:33:ae:d3:eb:19:
bc:b8:3e:9d:1b:f8:08:4f:10:c2:b1:2d:75:b1:db:ae:0b:c5:
8f:2a:62:a8:48:4e:05:be:29:8a:87:73:7a:01:f9:39:49:f3:
60:51:e1:38:dc:ef:27:52:d1:68:b4:90:b5:15:ab:d1:e2:6e:
73:6a:5f:34:63:bd:f8:a0:20:5a:be:6e:31:0f:36:a6:5f:f2:
ce:4a:f3:54:de:18:68:11:56:17:e3:96:c5:39:2b:43:1b:87:
41:7f:87:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org