Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/o6KBFeIWlZtwHBiPLw6mYko8ghc.roa
File: o6KBFeIWlZtwHBiPLw6mYko8ghc.roa (raw, json)
Hash identifier: RAbf3AA5BED7aCnknIkBVs3yDPOd6mSyHp9CveGMK8k=
Subject key identifier: A3:A2:81:15:E2:16:95:9B:70:1C:18:8F:2F:0E:A6:62:4A:3C:82:17
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE61F5D71610AF992CC96D043629D91
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/o6KBFeIWlZtwHBiPLw6mYko8ghc.roa
Signing time: Sun 01 Jan 2023 10:34:58 +0000
ROA not before: Sun 01 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64249
IP address blocks: 45.10.23.0/24 maxlen: 24
45.91.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:1f:5d:71:61:0a:f9:92:cc:96:d0:43:62:9d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3a28115e216959b701c188f2f0ea6624a3c8217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6d:45:2a:41:36:5e:3f:59:b1:c2:8d:59:94:
fa:54:64:b3:e9:61:7e:b4:60:da:3f:67:ea:5b:bc:
72:2e:64:e4:7a:96:86:f5:d3:5b:63:60:f0:37:dc:
f4:09:03:31:30:5b:54:23:f2:a4:d9:79:af:4c:f1:
b5:54:2e:96:f6:89:00:f9:75:45:e1:85:93:3e:dd:
92:43:68:04:42:70:25:4b:d6:82:c5:37:47:2e:65:
b3:58:55:28:06:3e:42:7f:03:a1:ae:79:5a:45:ff:
ff:16:83:87:3b:cb:08:92:0b:53:ab:3f:e6:43:0c:
c3:3a:85:1e:7f:4b:52:5f:e2:48:61:33:34:06:60:
0b:d4:58:50:1d:8a:20:f2:c8:ba:2d:7f:d4:24:b7:
54:93:f3:38:53:af:9d:f6:4b:10:ac:e8:4b:f0:56:
31:c4:d3:7c:bb:92:c6:2b:f9:e4:a7:f7:4a:43:f2:
85:65:ac:d3:f2:95:61:4f:cd:1b:cf:88:98:11:3d:
83:7f:0d:c0:58:aa:d5:47:f7:fb:0e:fd:60:07:c0:
d0:06:c4:b5:f7:bb:5d:16:24:9f:1e:88:18:cd:f2:
a0:b0:5e:2a:97:8c:04:81:4e:4e:47:15:3b:57:26:
4d:f1:19:bb:2c:8f:ad:b2:b8:d7:27:58:e8:3e:f8:
6a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A2:81:15:E2:16:95:9B:70:1C:18:8F:2F:0E:A6:62:4A:3C:82:17
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/o6KBFeIWlZtwHBiPLw6mYko8ghc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.23.0/24
45.91.248.0/24
Signature Algorithm: sha256WithRSAEncryption
92:61:77:74:03:fb:ec:dc:f3:0b:d5:d4:4e:45:e6:6f:9a:16:
55:ae:2c:6e:f2:07:71:f0:8b:14:b4:d4:e3:6b:47:ac:99:4d:
15:06:4c:36:eb:ac:ca:8a:76:e5:46:43:86:8b:7f:48:0e:60:
f2:62:9a:04:09:2b:50:89:04:8e:5d:7f:10:8c:ed:84:ba:07:
97:5c:63:02:53:d0:3c:0f:b2:9c:f8:0a:a5:e6:9d:38:12:3e:
dd:f1:38:66:b7:87:a4:ee:91:39:8d:6f:c5:a3:82:b4:be:40:
4a:6d:9d:cf:1e:d7:ee:b9:86:42:4b:2b:eb:e2:36:0f:36:f6:
1c:a5:03:bc:f9:97:e9:29:a1:11:e9:da:65:9c:8c:47:e3:8d:
dc:67:6d:84:6a:e2:9a:c4:ed:e2:40:7b:54:c3:78:94:14:55:
d6:ac:7e:56:88:ec:01:07:11:d9:34:6e:cc:15:6e:39:37:e9:
4d:99:f0:15:ee:f4:e0:dc:ed:84:ae:59:15:ec:06:4c:d3:c0:
ac:89:ca:e9:d2:3c:a6:98:1b:90:5d:6d:91:8c:81:e0:06:9b:
2d:51:48:26:46:04:8d:5c:b0:17:8e:d3:05:69:eb:aa:b7:11:
1e:d0:2f:90:e9:0d:58:6e:aa:1c:83:43:ba:04:ae:cb:66:b4:
79:b0:ac:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org