Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8NMSdicwX7YR-kILW1Bfde4tiss.roa
File: 8NMSdicwX7YR-kILW1Bfde4tiss.roa (raw, json)
Hash identifier: TIoFZz4VDlpFtr00srZ5iFBHVTvEEUM1HcL1uiLVTBc=
Subject key identifier: F0:D3:12:76:27:30:5F:B6:11:FA:42:0B:5B:50:5F:75:EE:2D:8A:CB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE62C7A772F3CED9E98297FAE282C1F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8NMSdicwX7YR-kILW1Bfde4tiss.roa
Signing time: Sun 01 Jan 2023 10:35:01 +0000
ROA not before: Sun 01 Jan 2023 10:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396998
IP address blocks: 45.134.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 08:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2c:7a:77:2f:3c:ed:9e:98:29:7f:ae:28:2c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0d3127627305fb611fa420b5b505f75ee2d8acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fa:c7:26:86:d7:ed:c4:d5:d1:11:88:b6:fe:
4c:77:35:d2:fc:34:6a:43:ee:ba:cd:e0:b3:4b:ed:
b5:76:ea:06:22:ea:77:9d:37:a2:97:5e:13:9f:99:
34:10:0f:86:da:01:53:a3:69:e7:66:96:33:3c:a3:
38:7a:8d:95:e3:59:53:d0:11:6d:20:aa:e2:12:69:
6a:08:2c:f0:c7:92:e3:ff:a7:49:4b:ff:92:28:c4:
8e:cf:ea:2f:12:b0:09:cc:bb:8a:1b:58:83:0d:72:
8c:02:79:bf:46:d0:51:0f:5a:80:94:42:1d:ab:46:
47:06:ab:6a:68:05:55:0e:7c:06:24:eb:ae:9a:bb:
5f:ea:f1:a8:7e:07:e3:8d:e4:3c:7e:7b:33:79:56:
cf:4a:86:ca:b8:c4:7f:3f:d5:28:09:52:9d:9f:72:
20:4c:4d:82:e0:ea:3e:43:14:67:e2:8f:9e:90:20:
ef:95:1e:c3:42:96:e7:c5:20:2e:56:2d:71:a8:14:
96:88:58:84:13:0c:2a:a3:8a:0a:7c:ba:f1:21:37:
46:5c:52:64:97:fd:b5:2b:d0:9e:c3:34:7f:b2:6b:
1e:52:cc:0c:19:4f:a3:f2:be:4b:4a:a5:b4:54:c7:
01:bb:ab:38:85:27:f9:66:e0:37:9b:f3:d3:b5:38:
44:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D3:12:76:27:30:5F:B6:11:FA:42:0B:5B:50:5F:75:EE:2D:8A:CB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8NMSdicwX7YR-kILW1Bfde4tiss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.36.0/24
Signature Algorithm: sha256WithRSAEncryption
21:57:38:b7:3f:a7:42:27:38:c5:66:39:a1:aa:5d:5e:f5:51:
92:68:54:09:16:de:ba:bc:c9:49:a7:37:37:47:2f:b1:65:16:
1a:cf:8e:55:21:e6:e9:dc:a1:c4:0a:32:fe:55:c1:0e:20:ec:
92:85:93:59:d7:1c:e2:a3:70:c1:a6:5a:9c:56:21:a5:a3:33:
61:58:68:30:e1:29:6a:aa:11:80:44:d1:c2:51:8c:8a:3f:39:
23:ab:9a:aa:a3:ea:bd:d5:f0:1d:a7:a3:37:a2:f7:9a:5f:6d:
e7:5f:be:d6:1e:24:58:cf:ac:0b:46:80:c6:a7:ef:5e:b0:6f:
79:80:39:fe:5f:a9:59:16:c4:f8:b1:8d:66:4e:9e:03:82:d5:
e6:d8:3d:ca:d4:5c:2b:8f:57:02:6b:df:57:b6:fc:d2:00:1b:
79:7c:44:95:1f:ce:1b:e8:e5:fa:7e:d7:b7:80:f2:60:39:4a:
03:ae:b2:c9:f1:5d:99:eb:53:fb:a1:66:86:ab:9f:f7:d6:d1:
55:f6:93:a6:c2:c1:92:5e:32:cf:d7:a1:7a:b0:86:65:12:7b:
53:ec:45:59:ff:1c:29:71:65:68:7e:c2:72:2c:01:32:2c:d7:
86:bf:c6:94:3e:ce:68:40:51:66:59:c5:66:ea:6e:40:f7:ea:
b6:00:e5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org