Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mAjCcTlNiCEpCUyIR3VWIzaZAHk.roa
File: mAjCcTlNiCEpCUyIR3VWIzaZAHk.roa (raw, json)
Hash identifier: s9ecCKFerkDvMInTvu5SdCpomfnD0khLeeL6zsLAOHU=
Subject key identifier: 98:08:C2:71:39:4D:88:21:29:09:4C:88:47:75:56:23:36:99:00:79
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE60CDC9E7E466A84BB6B50B1081A25
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mAjCcTlNiCEpCUyIR3VWIzaZAHk.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.140.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0c:dc:9e:7e:46:6a:84:bb:6b:50:b1:08:1a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9808c271394d882129094c884775562336990079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:81:64:8c:ce:ec:56:83:6b:4f:2c:5f:c1:
62:c8:f9:a6:6f:28:10:3e:b4:51:ca:a2:77:2e:6a:
80:4c:3a:91:ce:3c:bf:00:2e:2d:a4:62:fc:66:f3:
60:6c:3a:af:53:99:39:4f:69:41:da:a8:be:a6:c7:
7b:91:71:7e:ad:43:06:c8:c2:7c:97:7a:a8:ee:4a:
73:0f:91:4d:8f:f4:73:c3:ee:aa:60:57:96:b1:c0:
bc:4c:5d:ed:65:82:c2:72:3d:ce:4b:a6:42:77:3b:
97:49:01:84:d4:61:4f:d0:1a:c2:ee:02:e9:74:1a:
da:a2:6c:71:c3:5f:f1:31:19:68:31:c3:3b:cd:0d:
20:11:51:3d:7a:b9:bb:4f:59:ab:51:15:6d:e5:b8:
1a:fe:40:89:80:8a:aa:e2:30:a9:9d:0a:69:ee:ae:
89:4c:f0:1c:b7:7b:39:8e:28:31:50:1e:65:9d:20:
5d:88:83:90:c5:75:ec:bd:5d:11:26:6f:28:d2:4f:
d6:46:a2:56:e6:92:8d:bd:39:a1:37:80:fb:e5:8b:
3f:a1:4c:28:9d:03:13:35:6f:88:45:70:cb:1c:36:
5c:53:b3:97:0f:69:6d:6c:cd:e7:d3:3f:ec:a8:bc:
38:ee:54:7f:a4:c1:f4:e3:c9:a7:1e:26:a6:26:bd:
f3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:08:C2:71:39:4D:88:21:29:09:4C:88:47:75:56:23:36:99:00:79
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mAjCcTlNiCEpCUyIR3VWIzaZAHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.152.0/22
Signature Algorithm: sha256WithRSAEncryption
90:70:3d:6e:75:de:c8:2e:88:c4:ae:76:77:a5:16:f4:9d:e3:
b7:07:63:7d:62:77:54:ac:3a:a6:4f:5e:7f:b1:f3:2c:9e:67:
33:31:cb:5d:7f:8f:43:b5:6f:0b:0b:c8:e1:12:c4:ae:59:e8:
e3:04:62:af:d7:8f:15:f5:71:41:b0:cd:b6:e0:6c:13:b5:22:
f4:89:d4:78:48:33:e5:58:fc:36:3d:d2:b8:f0:af:44:c5:36:
b3:0f:4d:82:37:b4:74:25:e6:6d:c2:e3:32:87:b5:7f:f4:f1:
6b:42:77:91:b3:ca:df:b4:79:9e:77:be:c7:8f:03:7c:27:8a:
a0:48:24:92:55:1a:4c:ca:c4:0f:98:e3:77:95:d1:5f:69:f8:
37:23:ba:ff:e2:77:79:8b:66:15:ce:3c:5f:57:63:4f:81:c9:
7f:93:70:02:c8:2b:ca:c0:c7:97:60:3e:e7:5d:7d:60:d1:19:
0d:0c:9b:4b:14:d6:81:ef:23:dc:60:48:e2:d1:18:a0:19:8b:
95:93:60:69:ae:d7:a7:4f:da:b4:be:98:2a:30:29:16:bd:e4:
71:3f:52:0a:46:31:2b:e2:cb:09:20:d6:3a:25:8c:85:2a:19:
ad:29:98:e9:cc:5c:f6:69:9a:89:56:e4:d7:92:6f:a3:63:06:
8b:8a:6f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org