Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/DEdkWkj3GNyyovGs1TemR2u53Ng.roa
File: DEdkWkj3GNyyovGs1TemR2u53Ng.roa (raw, json)
Hash identifier: 7jXqGLCncZxh1O/FVRSwZKm1XrejWUP6rOWSHzbTVwU=
Subject key identifier: 0C:47:64:5A:48:F7:18:DC:B2:A2:F1:AC:D5:37:A6:47:6B:B9:DC:D8
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 018CCA2B9D4803C98E70F0C8C99264E26866
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/DEdkWkj3GNyyovGs1TemR2u53Ng.roa
Signing time: Tue 02 Jan 2024 12:35:05 +0000
ROA not before: Tue 02 Jan 2024 12:35:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212301
IP address blocks: 45.67.233.0/24 maxlen: 24
45.67.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 09:06:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:9d:48:03:c9:8e:70:f0:c8:c9:92:64:e2:68:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Jan 2 12:35:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c47645a48f718dcb2a2f1acd537a6476bb9dcd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4f:f4:65:bd:09:3d:25:3c:f0:b2:13:5b:e8:
1d:53:d1:c9:e1:30:b6:59:43:5b:9a:c3:cf:51:49:
d6:36:f8:3a:3f:a9:21:4e:c4:a8:f8:e1:44:00:0c:
21:e7:4e:64:9e:e7:b4:b0:b4:3a:2c:5c:10:40:43:
95:7b:34:53:fc:5d:87:17:3a:19:84:17:0e:7a:96:
b8:29:ec:aa:71:0b:63:85:39:34:95:20:fa:1d:19:
64:ab:fb:37:d9:37:49:4d:9b:11:1f:3c:cb:f2:1d:
19:e5:32:71:66:a1:f4:44:e7:b0:78:35:a5:ef:e4:
a9:2a:db:69:5f:41:02:b7:b0:17:df:d7:4f:78:ef:
57:ec:78:ba:16:f4:35:3c:5f:25:7f:11:47:01:37:
dd:a4:67:32:c7:28:1c:3a:39:37:8e:76:0e:c7:20:
6a:35:e0:10:c3:9d:0e:ca:58:fe:d5:e3:fd:d1:7a:
61:61:71:a4:3d:8c:62:1d:54:a0:f4:d4:8d:6b:48:
5b:62:e1:b1:b3:c8:ce:95:55:2d:5a:2d:6b:bf:47:
bf:f9:f4:b9:a9:5e:95:ca:1e:a2:cd:ae:f0:2a:8f:
d9:d4:7c:3d:3f:34:8e:8e:bf:67:81:88:c6:cd:29:
c6:6d:7d:c8:4f:dc:e1:fc:3d:2b:b0:12:89:29:a2:
7f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:47:64:5A:48:F7:18:DC:B2:A2:F1:AC:D5:37:A6:47:6B:B9:DC:D8
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/DEdkWkj3GNyyovGs1TemR2u53Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.232.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:2d:98:21:2e:12:9d:ee:36:b5:ad:96:56:a0:71:6d:e8:1a:
05:37:28:29:01:11:21:26:ac:44:4c:6a:59:20:c4:d4:ea:3b:
69:25:ff:98:f6:08:e9:ed:bd:ca:28:64:9e:eb:8a:79:38:2c:
e5:b3:e0:9d:98:e2:c8:c2:d5:dc:07:0c:69:80:25:37:3b:73:
b8:3e:6f:a0:da:5e:56:6e:f0:42:4a:37:50:15:f3:95:6c:87:
c5:d2:01:f6:72:15:d9:6f:47:5f:e6:46:22:ad:6a:5b:3c:8e:
8d:13:d3:14:7c:22:0d:38:f4:a1:12:dd:72:3b:c3:9f:8f:2a:
b0:f1:de:b9:a3:d1:71:42:c4:86:90:65:6b:d3:51:2e:78:a0:
7e:02:64:45:5e:57:25:c2:6f:3d:0e:c0:19:82:8e:3f:fc:22:
9f:4c:cd:5e:54:6b:70:a9:ba:35:31:8c:2d:31:54:f1:3e:5d:
a2:8e:ec:df:cf:8e:a5:0e:19:af:d8:d8:3b:f1:cb:12:25:20:
22:ee:06:d1:29:06:04:d5:3b:df:44:c0:7a:a5:ad:1b:7a:29:
86:ca:9d:a8:48:bb:8d:95:19:3d:2a:91:a3:00:3f:24:1b:25:
4d:86:37:01:07:0f:3e:c9:a3:85:de:55:8b:79:a7:41:2a:99:
50:52:55:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:20 2024 by rpki-client on console-fra.rpki-client.org