Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/dRFX0Gvn92y8fw62C_y-uKWjeO0.roa
File: dRFX0Gvn92y8fw62C_y-uKWjeO0.roa (raw, json)
Hash identifier: wF7WN13rk9jMfsWmvKBEPA+0NyIEGF7EmruwoyAozIE=
Subject key identifier: 75:11:57:D0:6B:E7:F7:6C:BC:7F:0E:B6:0B:FC:BE:B8:A5:A3:78:ED
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 018CC94C11FA8D98DADD7B14FA322C93E3AE
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/dRFX0Gvn92y8fw62C_y-uKWjeO0.roa
Signing time: Tue 02 Jan 2024 08:30:54 +0000
ROA not before: Tue 02 Jan 2024 08:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212853
IP address blocks: 45.81.252.0/24 maxlen: 24
45.81.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 08:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:11:fa:8d:98:da:dd:7b:14:fa:32:2c:93:e3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Jan 2 08:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=751157d06be7f76cbc7f0eb60bfcbeb8a5a378ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:18:d1:03:73:0a:a2:a8:88:62:c5:d7:33:d4:
f3:ad:ae:c4:d9:87:31:8e:80:e1:53:fe:2f:10:fa:
27:d8:c7:e5:1c:bd:eb:71:bd:0d:5b:38:44:69:d6:
e8:cf:2b:34:b6:21:44:1b:bc:93:d0:90:b2:93:3c:
bb:3e:b9:38:c7:11:59:b0:8b:98:ee:af:47:55:41:
b0:e9:54:d4:86:e1:a0:f1:9b:98:4c:e5:57:bf:57:
98:81:11:d8:da:af:05:27:9f:8b:94:fa:d1:36:27:
c0:6d:1d:86:8b:48:d6:56:ea:b1:de:76:1b:bc:0d:
7d:8c:16:6d:d2:02:60:d8:66:91:a7:86:a0:d2:c0:
47:43:c8:b6:24:d5:1c:82:e8:94:c0:46:69:57:1f:
ca:0e:5b:cd:8e:8f:40:55:d2:44:c3:c2:48:4b:0c:
4f:16:08:d3:b4:26:64:a8:80:f6:95:c8:72:2b:5e:
be:73:98:74:4d:18:d0:6c:3e:f2:5f:48:f0:49:93:
d6:35:0a:e9:4e:a9:79:65:5f:78:82:0b:ad:cc:51:
3f:24:a4:c3:0c:d7:67:9c:38:ec:10:64:ae:0a:9f:
38:a7:9f:65:5b:01:82:ed:04:6f:69:09:dd:26:01:
3d:cd:40:10:c4:8d:ea:94:a5:17:41:9b:b4:c7:3a:
bc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:11:57:D0:6B:E7:F7:6C:BC:7F:0E:B6:0B:FC:BE:B8:A5:A3:78:ED
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/dRFX0Gvn92y8fw62C_y-uKWjeO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.252.0/24
45.81.254.0/24
Signature Algorithm: sha256WithRSAEncryption
55:2f:59:48:9d:b1:40:fa:8c:c3:6c:0f:d7:1c:e8:53:86:fa:
36:fc:37:b8:e4:ba:1f:bd:2e:27:b2:ed:e6:81:dd:c8:5f:be:
18:69:12:50:e5:13:7c:7c:07:50:2d:c4:3c:67:da:f1:cb:6e:
7f:14:a8:d8:6b:13:4d:ae:38:bf:34:5b:dd:53:18:a6:a4:4f:
4f:fb:ef:a0:c8:f5:d5:8a:02:00:06:6c:f7:64:d9:a5:ff:c0:
dd:6e:fa:2c:9b:b5:23:c8:4d:f3:f7:b5:5b:ce:4b:88:2c:f5:
f9:cc:8d:8a:bf:30:23:55:92:2c:b5:6a:fc:86:73:20:24:c5:
07:8b:7b:02:b3:1d:4a:8a:91:97:bd:07:1d:2d:d4:a4:b2:39:
bf:8d:4f:56:0c:72:d2:fa:98:d8:7b:f5:d4:1d:8a:d1:2d:5c:
b2:4a:ce:af:83:bc:f0:e3:03:43:ac:f1:0b:fc:0c:00:f3:57:
8a:2f:36:a3:e4:3b:96:09:4c:fa:6f:3c:bf:9d:3e:b4:de:7b:
d4:b4:f1:17:a1:30:1a:9a:d7:46:7e:83:c1:1e:a3:53:4f:0c:
23:52:24:ec:d7:8c:a4:fb:da:27:47:4c:34:24:48:0a:63:e1:
c3:64:8a:15:6b:31:cb:5a:f8:eb:fa:d7:38:f4:f4:13:2d:19:
5e:07:01:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:15 2024 by rpki-client on console-fra.rpki-client.org