Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ioA0NpwZR086S0EFUyC5PeEwBeA.roa
File: ioA0NpwZR086S0EFUyC5PeEwBeA.roa (raw, json)
Hash identifier: /BF+F9N6GnJDjkxrC8ErH7LVL4Ln30JMCuC8j2nNYrQ=
Subject key identifier: 8A:80:34:36:9C:19:47:4F:3A:4B:41:05:53:20:B9:3D:E1:30:05:E0
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0187B2AEF2DD3356836FCB11FF24A384E54B
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ioA0NpwZR086S0EFUyC5PeEwBeA.roa
Signing time: Mon 24 Apr 2023 09:53:42 +0000
ROA not before: Mon 24 Apr 2023 09:53:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19844
IP address blocks: 45.133.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:ae:f2:dd:33:56:83:6f:cb:11:ff:24:a3:84:e5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 24 09:53:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a8034369c19474f3a4b41055320b93de13005e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:5f:49:da:ed:b0:60:0f:a1:44:13:c6:ca:
0f:32:35:48:6f:bb:c6:20:74:c7:a9:46:88:42:a8:
18:24:e5:bd:1e:bc:76:e7:fb:35:0e:ae:86:57:f5:
0c:a8:39:55:4f:2e:21:b3:db:cb:92:25:c8:a9:a6:
be:1f:cf:a6:ef:d1:62:2f:b2:64:30:25:d1:84:a5:
7a:78:e7:ec:91:04:4b:9f:d5:96:ee:c4:69:0d:28:
0d:05:9f:87:59:7c:8f:bd:aa:2b:ef:62:c3:25:2a:
1b:67:f3:19:43:9f:88:40:ab:63:d7:18:69:bf:e3:
d2:1c:56:ca:ea:bf:11:f1:3f:19:46:a0:86:01:d9:
9c:d9:c0:97:89:86:59:f5:2d:4f:2d:94:23:a9:e2:
9d:c0:83:72:5b:b3:dc:59:f4:47:91:c7:35:a1:15:
5d:f2:c0:44:d5:5f:52:ba:b4:8a:50:28:33:31:06:
d7:e9:83:c7:15:2d:80:60:f4:14:96:3f:5b:e1:f7:
6a:00:b6:b2:5d:19:87:5a:73:99:d9:ea:60:1a:e7:
20:ea:93:95:23:85:97:2d:2c:26:c8:36:ce:31:db:
8e:29:4e:ab:1c:c8:c7:9f:42:99:63:6b:ec:7f:f5:
95:66:65:64:dc:0f:cc:32:be:55:ac:59:5a:8e:57:
64:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:80:34:36:9C:19:47:4F:3A:4B:41:05:53:20:B9:3D:E1:30:05:E0
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ioA0NpwZR086S0EFUyC5PeEwBeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.72.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:54:7b:ac:aa:19:7c:0b:94:28:19:0a:b3:17:da:10:63:8f:
ba:ba:46:b1:b7:e8:0d:53:72:bd:cb:63:c6:8e:9e:35:81:10:
61:83:0b:bf:20:e3:94:3a:35:b6:7e:4d:92:ee:a8:3d:28:8c:
9e:15:75:23:0c:24:93:fc:13:eb:ef:6c:a3:c2:7f:83:0e:e0:
91:ba:84:ee:f3:40:32:a8:2e:fa:e7:21:4b:1f:fa:81:7b:a7:
5a:6a:97:c9:09:6d:fc:38:1b:07:da:7e:3e:8b:b5:9c:95:08:
00:e9:66:58:7f:a8:a9:90:49:fb:e9:e9:dc:eb:aa:ca:35:29:
94:41:e6:b1:a0:51:cc:81:1a:fd:d4:5b:37:41:8b:70:ad:30:
48:47:f8:7f:c7:93:e3:a0:e3:e9:e0:af:7d:ee:38:ff:49:45:
99:12:e2:e9:b2:d1:8e:fe:86:58:23:c5:5d:e3:08:c1:c7:a9:
8c:94:48:e3:a4:7e:51:64:4d:1b:4c:30:fb:17:78:26:d2:9c:
85:4d:38:de:39:34:7a:22:0d:c3:c9:66:91:8d:ff:df:f7:b0:
fe:35:55:24:df:e1:f3:91:78:c3:60:d8:fe:8c:9b:da:4c:08:
4b:d7:b5:2a:9e:cb:f0:bb:9e:21:5d:6e:d8:fc:55:56:cb:24:
06:9e:34:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org