Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/iUHy69pr3ej8siTkJ28bKZC4CMw.roa
File: iUHy69pr3ej8siTkJ28bKZC4CMw.roa (raw, json)
Hash identifier: 9tg6vAmvbVAxBBvEmZFG9ExiJbu+CzRZLCpK7ZUJces=
Subject key identifier: 89:41:F2:EB:DA:6B:DD:E8:FC:B2:24:E4:27:6F:1B:29:90:B8:08:CC
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 018905BFB643D8F0D1BAB68021F540D95088
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/iUHy69pr3ej8siTkJ28bKZC4CMw.roa
Signing time: Thu 29 Jun 2023 06:03:17 +0000
ROA not before: Thu 29 Jun 2023 06:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.81.253.0/24 maxlen: 24
45.81.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:05:bf:b6:43:d8:f0:d1:ba:b6:80:21:f5:40:d9:50:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Jun 29 06:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8941f2ebda6bdde8fcb224e4276f1b2990b808cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:16:f7:bc:8b:76:2d:70:d3:89:d1:9a:96:3a:
62:f2:39:c2:ad:f2:f1:4c:a8:f3:7c:3e:60:2f:72:
0a:8c:e4:02:2f:0b:f3:9c:21:a4:b8:ce:51:21:d8:
c7:72:b2:f8:d6:3d:27:5d:b2:52:a9:1c:15:ee:4c:
07:26:b5:f4:0e:da:ef:96:50:a5:2a:f7:88:19:8f:
84:04:29:f0:e3:d1:aa:db:39:fc:7d:22:04:1d:1c:
57:82:04:e2:a8:5e:6d:e6:2d:41:4a:09:b4:ed:50:
37:e3:96:21:21:ed:d3:d3:30:50:ee:38:2f:30:aa:
e4:b7:f8:c6:31:ac:94:c6:af:56:a0:14:75:0a:bd:
17:09:90:3e:86:db:27:85:da:a2:e1:41:a0:20:17:
30:41:b7:fb:91:3a:c2:15:a0:a9:0a:c7:f0:21:6f:
44:cc:c8:de:20:0e:32:d0:c9:49:c9:c5:e1:a4:4a:
d7:2f:11:64:ed:af:48:3a:c1:df:ab:7d:26:bd:50:
28:8a:dd:f9:3f:de:6b:bd:6e:2a:a9:fa:9f:32:c2:
22:5c:9d:14:77:20:a1:60:fe:5d:fd:f0:fb:60:5a:
13:d2:a6:eb:c8:1a:4e:ae:d8:0f:d4:3a:a1:c1:f4:
1e:dc:3a:e9:e0:3a:db:1b:a3:3b:14:14:d9:f0:c9:
78:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:41:F2:EB:DA:6B:DD:E8:FC:B2:24:E4:27:6F:1B:29:90:B8:08:CC
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/iUHy69pr3ej8siTkJ28bKZC4CMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.253.0/24
45.81.255.0/24
Signature Algorithm: sha256WithRSAEncryption
11:91:72:30:38:aa:89:2f:3d:f8:bb:ad:dc:1d:e0:29:75:41:
15:2d:28:fd:1d:b5:fb:eb:ae:f2:6b:c1:c8:a8:57:94:2b:75:
fd:d7:4f:75:3b:6a:3f:8b:66:7f:b4:0f:89:d5:93:69:72:7d:
8b:d1:d8:4c:f4:c7:97:39:c6:48:ae:3f:5e:ec:74:f4:b1:97:
1b:66:41:86:75:02:7f:80:9d:af:7f:dd:79:a8:10:be:73:11:
91:4d:27:f9:12:0c:e2:a9:49:da:84:7a:71:1d:a0:87:e4:81:
e8:24:12:45:a7:66:b2:fc:3d:b0:d0:ce:8c:40:bf:24:d3:a9:
8c:52:8a:de:87:c0:79:98:4a:b9:59:ef:b6:44:6c:4f:b4:ed:
78:c2:61:53:9c:c7:bf:1e:d5:83:64:56:df:23:09:b6:6c:d4:
53:7f:14:8d:a7:44:15:cd:48:ef:37:80:6c:7e:5b:e3:e2:87:
40:36:b1:80:87:45:3d:61:c7:97:65:bc:1a:90:04:31:ef:ce:
c9:16:f9:c9:04:2a:5d:a1:a5:f4:4c:3c:51:39:4a:cd:c5:99:
42:13:83:ba:1e:1c:f8:c4:8d:d6:2e:f8:c4:8b:5f:2b:f2:55:
1e:05:21:8f:8c:e2:6e:68:be:6d:ce:ce:67:eb:f6:58:2c:4f:
f5:24:0b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:15 2024 by rpki-client on console-fra.rpki-client.org