Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/irXH79kxC2QBkUYvFVAPmmA2D8g.roa
File: irXH79kxC2QBkUYvFVAPmmA2D8g.roa (raw, json)
Hash identifier: TpFu0XG3si+KKESdGE6DzwIpK58LdY/BFasWoh4D+zY=
Subject key identifier: 8A:B5:C7:EF:D9:31:0B:64:01:91:46:2F:15:50:0F:9A:60:36:0F:C8
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE62D7E7533E1F476B9A5762B34BB8F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/irXH79kxC2QBkUYvFVAPmmA2D8g.roa
Signing time: Sun 01 Jan 2023 10:35:02 +0000
ROA not before: Sun 01 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398127
IP address blocks: 45.133.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2d:7e:75:33:e1:f4:76:b9:a5:76:2b:34:bb:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ab5c7efd9310b640191462f15500f9a60360fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7b:96:91:86:bc:c4:a1:5e:c6:34:60:b9:de:
ff:fc:ef:32:42:97:bc:4e:17:ec:72:95:48:35:2e:
7a:4b:bf:c1:27:e7:f0:7d:90:c4:fc:03:c7:7c:57:
d1:35:be:2d:45:28:eb:64:de:a7:c2:7f:01:8c:4b:
ad:63:89:10:a3:74:69:04:48:6b:ed:06:de:32:d1:
79:95:41:2e:2e:a6:78:1b:f9:2a:5e:18:46:d5:17:
14:ae:e6:b4:40:1e:7f:c6:ed:6d:77:de:17:a2:0a:
09:5e:b9:f6:2e:a0:38:6d:32:e7:4b:a7:9a:97:24:
e5:88:c4:5f:22:10:1d:b9:b9:45:a0:ed:54:da:51:
6c:c2:01:0c:63:50:58:b7:ae:79:4b:88:05:c4:43:
49:e1:1f:d0:69:ee:32:7b:22:97:92:f6:2c:22:79:
d6:80:32:70:96:dd:9b:eb:99:af:ab:89:c2:5d:6d:
9c:b2:a3:53:70:66:02:5c:ac:85:fa:d1:70:5b:b9:
ad:6a:b0:b1:bb:50:09:00:c0:ec:65:25:8c:69:69:
a1:a8:d3:18:86:c9:96:d9:f2:f7:10:fe:c5:36:f5:
f5:03:d7:e8:00:58:da:23:71:83:53:50:92:51:eb:
e7:a1:c4:3c:fd:4a:80:f8:7a:8a:b1:17:1b:ad:77:
b6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B5:C7:EF:D9:31:0B:64:01:91:46:2F:15:50:0F:9A:60:36:0F:C8
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/irXH79kxC2QBkUYvFVAPmmA2D8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.74.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d0:43:e8:a0:0b:22:1a:b7:37:dd:cb:8d:1d:55:43:fb:b1:
f1:ef:78:74:c7:f4:d5:e2:37:6c:8c:1f:e9:60:b4:e6:85:ab:
7e:67:6c:ac:a8:de:f2:a7:fd:a4:3e:9a:0f:1c:25:b5:74:b8:
8c:2d:58:8d:51:b8:f9:c2:9a:6b:73:03:a8:1c:3f:01:ec:c0:
eb:e0:e9:a6:f6:dc:73:61:04:b6:2e:52:26:9a:90:ec:4e:82:
22:cb:51:c6:b3:dc:de:f4:6a:42:1f:f0:87:2c:46:03:07:32:
e8:a6:17:39:f9:dc:aa:9d:1b:81:d9:7f:9f:e2:bf:35:28:16:
31:22:ec:e1:1a:29:ea:e6:d0:a6:76:c1:36:61:e6:c2:05:66:
b5:be:c1:6d:89:b8:aa:33:37:1f:e4:03:fb:f9:e2:25:e2:25:
74:41:f4:21:2e:15:6e:1e:94:a2:7d:ee:bc:37:50:5a:15:ce:
e7:f7:ba:75:3c:97:fc:c8:1b:da:e7:ab:c9:b9:40:d8:44:a6:
e3:5f:2e:87:ba:a8:cc:09:cc:f8:1b:d6:16:4c:84:85:a9:e3:
c5:f4:58:0e:14:75:65:db:95:39:06:bc:b3:0f:1b:ee:1a:63:
7d:57:00:a5:26:f5:07:89:69:90:d5:4c:db:d4:a7:b6:75:58:
05:51:7c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org