Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/0UKn1iLTK1GlbIigEdl2rgW-8tc.roa
File: 0UKn1iLTK1GlbIigEdl2rgW-8tc.roa (raw, json)
Hash identifier: CjwZHN0I7kJUz0HxKkevZFUEirgGaxLRdwU/1swsxJ8=
Subject key identifier: D1:42:A7:D6:22:D3:2B:51:A5:6C:88:A0:11:D9:76:AE:05:BE:F2:D7
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0187CD824D2F393154EEA97B11965659BAA2
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/0UKn1iLTK1GlbIigEdl2rgW-8tc.roa
Signing time: Sat 29 Apr 2023 14:54:41 +0000
ROA not before: Sat 29 Apr 2023 14:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 45.139.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:cd:82:4d:2f:39:31:54:ee:a9:7b:11:96:56:59:ba:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Apr 29 14:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d142a7d622d32b51a56c88a011d976ae05bef2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4f:6b:76:ce:50:21:6e:92:61:d0:3b:7f:22:
8c:8a:04:f1:03:89:9b:27:a7:03:c5:55:8a:b5:af:
a4:e0:d4:ae:69:58:53:3d:77:4b:bd:8d:79:08:75:
28:e9:24:74:50:22:c1:d3:c6:16:aa:44:27:8f:b5:
a4:eb:07:ec:e1:6b:30:dd:5e:17:83:68:43:6a:e2:
01:5a:43:f1:fa:49:d7:89:db:75:a5:ca:c6:93:cd:
52:04:dd:9a:b3:7f:6a:07:af:9e:63:f4:ef:04:e9:
dd:88:4c:9a:d5:e8:07:f9:df:0a:c7:cd:cc:48:08:
9d:15:b1:aa:06:38:6c:3d:7a:f1:11:56:fc:3d:63:
58:1d:79:35:60:84:6a:32:70:cc:f8:08:1c:6f:6a:
2e:05:5f:16:df:4b:19:be:e6:20:6f:2e:19:28:3c:
9e:bf:15:f4:8a:c6:ae:02:33:35:10:4c:97:6f:55:
f5:68:e9:9d:59:a9:7c:91:c7:ba:0f:55:c9:a6:73:
a2:02:65:f2:ee:d8:b2:fb:fa:fc:ab:59:9c:8c:39:
56:cd:fe:02:8e:4b:a6:cf:5c:83:86:c6:cd:b1:3e:
7b:27:d2:14:81:7c:b6:2e:b0:8d:d3:29:a2:5b:62:
66:8f:86:ae:1b:bf:ba:09:f0:b5:cf:2a:86:4a:bb:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:42:A7:D6:22:D3:2B:51:A5:6C:88:A0:11:D9:76:AE:05:BE:F2:D7
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/0UKn1iLTK1GlbIigEdl2rgW-8tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.199.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ea:b0:e9:0c:d1:06:c7:0f:2d:36:4b:9d:15:ca:78:c4:dd:
e6:55:be:89:61:85:6f:41:76:70:ba:a5:54:07:75:c3:ac:27:
a1:65:f8:8b:df:b4:8b:f1:5b:67:a6:be:10:8f:b9:58:75:88:
80:a3:1a:19:fd:36:9a:14:4b:51:54:52:54:0d:5e:36:c2:09:
ac:b3:e0:cf:f6:72:de:72:1b:75:6f:5e:69:76:5b:20:2a:34:
c3:6d:33:79:23:dc:f4:e4:cc:49:f8:42:ab:c3:61:01:31:c4:
d8:6f:ea:40:4a:28:48:65:f0:b6:30:f1:7d:11:09:41:b8:76:
0d:96:11:f7:d2:df:6a:fb:ce:d8:94:5f:fd:e2:a6:94:6a:0a:
6f:18:41:4e:3b:fa:67:4b:ba:91:8c:40:e5:df:8c:ae:0d:79:
1a:28:46:82:30:4d:21:05:1f:d6:41:92:07:7b:80:a8:af:29:
9e:f5:11:17:71:5c:e4:fe:cd:5c:0a:f3:3c:73:09:fb:82:56:
89:1e:0b:52:84:2e:aa:d2:1c:cd:c1:e1:fd:de:c8:1f:2b:ff:
38:8c:c9:81:e8:ac:fc:a0:8f:8f:d3:28:a4:ac:71:8d:69:c4:
6c:89:7d:18:09:7a:6b:bf:63:67:a0:74:9d:7f:2c:f3:af:54:
4f:b9:54:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org