Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G8hGHTQh1ZvxZpIz3YQfbAg011E.roa
File: G8hGHTQh1ZvxZpIz3YQfbAg011E.roa (raw, json)
Hash identifier: Mo3byhRUnrHhxlP3UE3lziTxDchdry5LyT43iWWrGkw=
Subject key identifier: 1B:C8:46:1D:34:21:D5:9B:F1:66:92:33:DD:84:1F:6C:08:34:D7:51
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01865EFA75BD444F9EAC6A8F96D9B36D1FB8
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G8hGHTQh1ZvxZpIz3YQfbAg011E.roa
Signing time: Fri 17 Feb 2023 10:45:17 +0000
ROA not before: Fri 17 Feb 2023 10:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199854
IP address blocks: 45.134.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 08:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:fa:75:bd:44:4f:9e:ac:6a:8f:96:d9:b3:6d:1f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Feb 17 10:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bc8461d3421d59bf1669233dd841f6c0834d751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e8:42:2d:97:76:44:58:b7:19:11:20:6b:77:
3e:e4:c6:e0:2b:be:c7:fc:77:19:8f:fa:bb:a1:b2:
63:0c:4c:e2:bb:6a:dc:7a:b2:47:58:e0:ea:ba:65:
ab:e8:08:cb:14:71:61:40:5c:6c:7d:95:aa:25:ca:
48:f1:02:12:31:1d:ef:16:79:79:d3:4d:1b:11:b0:
ee:54:b3:3b:0a:67:93:3d:12:4c:2e:fc:f1:6d:4b:
60:46:2b:a0:57:2d:35:7d:31:51:07:7b:69:c7:f1:
74:dc:72:1e:5d:98:79:83:fa:e3:35:32:53:36:e4:
13:39:ef:b2:cd:4e:fd:58:67:f1:c2:94:5b:4c:11:
f0:63:48:34:1d:0e:cd:80:9c:db:88:89:c2:c5:a5:
ce:ad:71:fb:78:b2:38:c6:10:ea:c3:02:09:54:93:
6f:99:58:13:51:33:4d:c1:37:4c:33:19:85:f7:ef:
dd:05:44:41:48:8a:17:c8:9f:2b:0c:33:19:14:5b:
cb:07:37:4a:98:63:61:c3:73:b7:8e:8a:5c:e9:1d:
80:a1:83:db:91:2a:5e:95:31:cc:db:1c:9c:a0:33:
a0:a3:cd:85:10:63:43:9a:a0:6e:80:90:3e:3a:94:
ba:50:eb:9b:5a:79:45:a4:99:73:73:42:9e:3b:27:
f0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C8:46:1D:34:21:D5:9B:F1:66:92:33:DD:84:1F:6C:08:34:D7:51
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G8hGHTQh1ZvxZpIz3YQfbAg011E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.111.0/24
Signature Algorithm: sha256WithRSAEncryption
83:5e:b7:24:1e:a9:1b:b4:7f:99:71:0d:2d:f9:e1:da:ad:c9:
93:43:2d:a8:6d:18:ed:da:91:0d:08:6d:c9:23:8f:19:0f:09:
b9:a3:eb:4c:52:a5:cc:db:8d:62:ab:3c:90:3c:a4:74:93:62:
49:8e:2e:e1:4c:d2:5c:f9:44:af:bd:09:76:e6:91:72:e0:1f:
39:17:e1:42:39:3d:94:d5:b0:85:ca:a6:5d:f9:f5:99:61:12:
be:e1:a8:22:c1:33:24:67:da:b5:eb:5e:e4:86:b9:9b:5a:0c:
ba:f3:82:f3:0b:bf:b8:2d:76:0c:8e:b8:ef:47:e5:a5:22:4e:
f7:8b:c7:67:cd:28:14:a9:26:ca:10:19:93:de:f3:b8:95:5c:
71:03:a0:02:91:95:c8:35:4c:b9:08:b8:73:d9:a2:a9:f7:4e:
ef:79:44:bc:87:b8:24:2a:34:9a:b9:8e:4e:08:fd:4c:e2:d9:
e7:2c:62:23:1f:f3:82:69:bf:b7:18:d6:62:f6:e8:a0:34:3a:
e6:e5:90:05:87:2b:16:28:76:55:26:00:9d:8f:f8:fc:85:c1:
1e:ce:78:f5:59:87:aa:09:a7:59:85:26:d8:3c:26:01:63:e8:
bd:41:c5:5c:8c:1a:f3:4a:7d:e2:05:0f:89:44:46:41:37:70:
00:55:dd:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org