Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/YxZBL5JDZhRqgFeZ2BZNz8Je8-8.roa
File: YxZBL5JDZhRqgFeZ2BZNz8Je8-8.roa (raw, json)
Hash identifier: OKoGiYHld8aDCKBwwYtyvVgnclEyBWRZSAsQ7XBixL0=
Subject key identifier: 63:16:41:2F:92:43:66:14:6A:80:57:99:D8:16:4D:CF:C2:5E:F3:EF
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0188B4A52BAFEFA3394749A73A9EB4C74CB6
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/YxZBL5JDZhRqgFeZ2BZNz8Je8-8.roa
Signing time: Tue 13 Jun 2023 12:05:03 +0000
ROA not before: Tue 13 Jun 2023 12:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.11.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 23:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:a5:2b:af:ef:a3:39:47:49:a7:3a:9e:b4:c7:4c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jun 13 12:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6316412f924366146a805799d8164dcfc25ef3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:64:cf:c6:27:16:71:cc:80:17:41:2d:90:de:
97:0d:9d:f4:66:35:36:ee:14:3d:bb:0a:22:f0:db:
8f:91:7e:1e:08:c1:ac:f9:fe:62:d9:4e:cb:c8:f7:
86:89:49:33:74:d1:e6:f3:c3:d9:cf:59:58:81:b1:
b5:11:e0:8c:c8:98:5a:07:57:91:3a:fd:90:72:21:
ea:3f:bd:2e:35:07:54:e2:17:36:5d:f6:68:c1:6a:
ca:8a:ef:24:8a:0f:2e:70:ff:94:71:3a:0a:26:b4:
11:df:2c:72:94:28:61:ec:32:f5:6b:d1:02:02:28:
51:33:f1:ee:8d:34:02:22:b5:6a:a8:ad:43:09:8e:
ac:6f:fa:fb:04:5f:5e:4e:72:3f:8a:7b:1c:e2:75:
aa:02:a7:e0:a3:3b:7e:d4:69:9b:41:37:c6:99:19:
dd:34:79:39:da:c1:97:a5:4f:c4:34:78:8a:d7:b2:
ab:86:9b:08:1f:75:f0:83:48:b9:96:89:18:0a:c0:
53:12:80:ea:ba:9f:9c:27:6b:71:b6:b7:26:15:a9:
07:9b:bc:1a:59:ff:b1:3a:84:29:db:40:15:05:ba:
93:40:4b:3a:e3:90:75:d1:81:54:d9:f0:76:9f:2d:
ba:b0:c7:cf:2e:d3:2c:68:6c:4d:cf:31:51:e7:d0:
ee:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:16:41:2F:92:43:66:14:6A:80:57:99:D8:16:4D:CF:C2:5E:F3:EF
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/YxZBL5JDZhRqgFeZ2BZNz8Je8-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.175.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:61:ad:1a:96:d3:59:4d:1a:c9:ca:9b:8e:49:fe:5b:4a:af:
3a:e4:22:14:77:23:ad:54:ae:16:a7:bc:55:f9:ff:94:ae:4b:
21:9f:c4:2f:45:93:bd:c9:30:e7:7d:67:e0:aa:a0:7f:55:62:
00:14:b5:50:5c:bb:81:5f:75:7b:92:c6:44:38:49:8f:4c:52:
5a:21:12:fa:c6:2a:59:66:89:83:2f:b3:db:30:63:4e:41:2d:
e9:4c:d0:20:de:27:27:cb:0c:2a:b2:a5:9e:72:7a:dd:50:c6:
08:5f:ba:61:7d:49:ab:15:76:7a:b7:1f:20:9a:3a:08:a0:e8:
46:47:2b:2a:8b:05:a4:13:5e:ed:a0:2f:d2:c4:15:e2:23:14:
3a:a7:6f:b6:b0:80:bb:6c:3d:c2:3e:23:32:61:a2:89:e8:a3:
c8:b2:c9:53:b3:71:d4:ba:fb:8f:05:94:b8:5c:51:d4:9a:ba:
fe:67:1e:8b:c8:a1:9e:9c:09:b1:85:81:e4:f5:70:f9:62:73:
b3:60:28:41:74:49:4b:3f:a8:79:2b:84:56:0d:56:cd:86:38:
21:e5:48:46:35:59:a9:f0:f8:39:8e:53:a9:4d:00:fb:14:ac:
4b:92:72:9d:b6:06:2d:ad:09:d9:bb:57:38:c0:52:bb:22:82:
98:20:0a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org