Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/aEZdN-yZ1uWTKbOcVwOmARfepkI.roa
File: aEZdN-yZ1uWTKbOcVwOmARfepkI.roa (raw, json)
Hash identifier: uxyC61hbOy9m6vZeBaujgVwKKJK3HShfnAE/G9Q8Nwg=
Subject key identifier: 68:46:5D:37:EC:99:D6:E5:93:29:B3:9C:57:03:A6:01:17:DE:A6:42
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018571E896974B3E06220EB45754D42D6A37
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/aEZdN-yZ1uWTKbOcVwOmARfepkI.roa
Signing time: Mon 02 Jan 2023 09:55:46 +0000
ROA not before: Mon 02 Jan 2023 09:55:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 45.13.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 10:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e8:96:97:4b:3e:06:22:0e:b4:57:54:d4:2d:6a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 09:55:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68465d37ec99d6e59329b39c5703a60117dea642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:45:46:0f:86:85:c9:30:7b:a3:40:a9:46:
fe:75:c2:81:19:b4:d9:e9:98:1c:3d:c2:e0:fd:d3:
ad:c8:96:de:b4:0b:75:8b:65:04:29:ec:cd:a2:4f:
f9:4a:db:ed:f2:e1:57:b2:73:d2:05:f3:ab:f3:fe:
f5:6f:82:b0:4b:c7:9e:27:c2:b1:9d:66:9e:68:1f:
ab:91:8e:ab:53:44:9b:4d:5b:2a:d5:1f:f1:be:ee:
d9:9b:bc:eb:1e:e9:83:31:3a:3d:c0:1c:54:52:f7:
1c:69:ac:73:6e:84:b0:c5:6a:dd:83:7c:2e:a3:e6:
e0:a6:02:c1:4b:a3:3c:cd:70:ec:bd:cf:c7:12:14:
a6:4f:bf:ea:fa:ad:94:8a:94:cd:c4:f2:35:ac:c3:
d9:dc:a0:53:22:03:2f:6e:c4:fd:d1:5c:91:bc:32:
73:ac:bc:f9:47:69:77:0e:17:f8:b3:7d:fb:cc:cf:
0f:33:ff:7c:0b:69:48:30:ae:66:63:d9:a6:8e:e7:
5b:2a:e1:0d:18:26:4e:f0:fc:11:f2:6e:10:fb:25:
f2:1b:a9:d9:1c:cd:17:c1:bc:05:e5:2f:03:43:17:
f7:84:5e:b7:46:c9:8d:82:fc:d6:55:1c:6d:14:cb:
b9:41:54:27:06:86:f7:45:c1:e8:9f:3b:d2:6f:09:
71:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:46:5D:37:EC:99:D6:E5:93:29:B3:9C:57:03:A6:01:17:DE:A6:42
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/aEZdN-yZ1uWTKbOcVwOmARfepkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.188.0/24
Signature Algorithm: sha256WithRSAEncryption
be:de:55:9a:3b:29:a3:eb:1f:ec:46:4e:9b:82:9f:34:67:57:
05:f2:52:2e:42:b3:5c:8a:81:81:65:b3:5a:c6:66:3c:99:60:
14:99:19:8d:ee:19:4d:65:b8:57:98:10:5f:91:ff:62:b1:5c:
e5:79:8c:ac:5d:aa:9d:ae:66:0b:01:f4:9e:79:6b:70:e9:ea:
40:01:e3:4d:53:3e:f3:45:cd:e6:93:be:e2:87:1f:c1:0b:46:
ce:6f:4b:7f:4d:ae:52:2c:4d:1b:9a:2a:c0:36:f6:2d:92:b5:
c4:26:d9:b8:b4:ff:8c:bf:27:0d:fa:96:2e:25:cb:2f:bb:f7:
c3:27:21:ca:4c:43:2b:02:e8:d5:8d:e0:7c:1d:ca:59:ac:c2:
c1:5b:4b:3f:6b:48:02:d6:45:8e:6e:99:e8:6a:69:54:20:5a:
ec:34:66:6c:b6:3a:29:d4:90:e0:6b:19:d5:ed:de:e5:85:35:
b5:33:64:d8:a7:b8:a9:d2:82:10:03:5c:0d:99:b9:5b:cf:b9:
93:d2:2e:a6:33:b9:d2:fc:9e:7b:fa:0a:5f:a6:59:25:51:39:
29:ef:01:9c:93:3a:c6:bd:5e:8a:d5:48:37:34:90:db:6e:a0:
3d:51:56:60:03:ec:17:a8:94:60:8c:2d:2f:09:68:41:2d:33:
fd:0c:95:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org