Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0ehGGWNBuayo7RcIOK7-sfNGWkI.roa
File: 0ehGGWNBuayo7RcIOK7-sfNGWkI.roa (raw, json)
Hash identifier: CUFPQ5KegipmWgR4D4EspokugaH/7x0K1GnwFQSLIPY=
Subject key identifier: D1:E8:46:19:63:41:B9:AC:A8:ED:17:08:38:AE:FE:B1:F3:46:5A:42
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 01856E1454B824582D447A0823BF1A85A031
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0ehGGWNBuayo7RcIOK7-sfNGWkI.roa
Signing time: Sun 01 Jan 2023 16:05:04 +0000
ROA not before: Sun 01 Jan 2023 16:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.81.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 06:03:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:54:b8:24:58:2d:44:7a:08:23:bf:1a:85:a0:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Jan 1 16:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1e846196341b9aca8ed170838aefeb1f3465a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:6d:c4:3e:8e:15:60:50:0a:b4:d5:8b:db:
e2:4b:2f:e5:1e:07:b4:30:1e:2d:cc:7e:a2:ec:53:
ca:eb:6e:51:55:89:15:71:c4:91:d0:16:04:29:92:
f2:97:13:57:9d:61:6e:64:49:d9:5f:37:76:52:a4:
e1:24:19:2a:6e:b5:c1:ea:a7:e7:7c:85:3f:33:84:
0d:e7:84:6d:d8:9b:fe:1c:94:2b:fe:cb:4f:19:7f:
d9:44:a4:fe:41:ed:00:8d:52:05:19:71:a4:9a:53:
d1:39:95:c0:68:60:b4:3d:1f:04:89:0b:f5:35:a6:
7c:a5:80:c3:43:6b:5a:70:fb:8e:fe:df:3a:d4:c5:
f2:c1:ed:eb:9c:aa:0a:13:82:47:6f:5f:9f:7f:ea:
0e:f0:f8:f9:d2:ff:f6:e4:f4:23:c5:e5:08:5c:a0:
56:76:61:8e:8d:b3:19:dd:11:d0:36:1e:4d:b8:8c:
2a:2f:af:35:1d:62:c5:f6:80:2d:5a:08:73:47:d1:
0c:77:29:74:d8:1c:cc:17:76:fc:11:c7:32:9b:ee:
a4:45:ff:fa:a6:ae:57:de:7f:59:33:a0:99:36:d7:
59:40:d0:32:04:6a:34:29:ff:f6:48:21:15:70:a5:
b8:15:86:22:94:1f:f0:f2:64:e4:26:95:b9:22:af:
7b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E8:46:19:63:41:B9:AC:A8:ED:17:08:38:AE:FE:B1:F3:46:5A:42
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0ehGGWNBuayo7RcIOK7-sfNGWkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.255.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:dd:2b:ff:42:8e:bd:b9:33:50:f8:cc:99:ed:51:1b:e7:db:
99:d6:fa:99:05:66:7d:ed:2b:67:09:f6:0a:7d:14:c0:b8:85:
1b:76:96:5c:c7:9b:1b:af:e8:bc:e3:10:b2:ca:09:b7:c1:90:
d5:af:fc:4b:00:8d:61:14:e2:54:f3:49:17:66:e6:69:8b:86:
08:47:f2:c1:98:02:10:03:74:7b:5a:6d:0d:da:ff:3f:52:d5:
8f:5c:97:85:11:b1:bb:f5:e9:54:92:41:f9:e8:9c:40:1b:75:
26:77:4b:d6:cf:8c:01:c0:bf:a7:fc:38:ea:16:3a:eb:46:07:
4a:30:0c:5a:19:15:71:13:1a:3d:c0:b5:51:c5:4c:d4:0f:0c:
aa:31:d6:31:a6:02:88:a6:56:00:6c:d8:fe:1f:61:bc:16:35:
a4:9f:d3:88:08:ef:e1:b9:bb:de:96:a9:d7:db:ed:38:84:17:
df:fc:83:3c:80:6b:3a:7b:38:3b:19:90:83:93:00:c4:09:d6:
dc:d1:99:e1:86:0a:2c:da:39:63:c3:2d:f3:36:1e:08:50:b3:
15:c8:6e:05:3e:23:ee:14:06:55:e0:99:3b:c6:9a:7c:0c:2c:
3b:ff:07:20:76:a2:cd:a0:80:9c:50:7a:6d:76:53:09:10:47:
a9:b2:01:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:15 2024 by rpki-client on console-fra.rpki-client.org