Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tTdaOfiICVYKiKtPUGJmYOMy10c.roa
File: tTdaOfiICVYKiKtPUGJmYOMy10c.roa (raw, json)
Hash identifier: +gQCbeHFfHj5JyHa/ejIRqgGgFBeQmY01oAwPb0iWOw=
Subject key identifier: B5:37:5A:39:F8:88:09:56:0A:88:AB:4F:50:62:66:60:E3:32:D7:47
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018CA3178C8D71856C64493C4372BE861093
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tTdaOfiICVYKiKtPUGJmYOMy10c.roa
Signing time: Mon 25 Dec 2023 22:27:58 +0000
ROA not before: Mon 25 Dec 2023 22:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198078
IP address blocks: 45.139.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a3:17:8c:8d:71:85:6c:64:49:3c:43:72:be:86:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Dec 25 22:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5375a39f88809560a88ab4f50626660e332d747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:90:73:17:d4:d6:7b:1c:f0:aa:82:7b:12:
83:8c:19:0c:23:81:16:ad:80:7f:6d:4e:7e:cf:33:
02:a1:dd:2f:0a:d6:d4:81:9c:a5:f1:7f:f5:af:b4:
bc:8c:e3:c2:15:b9:dd:e4:f3:fe:49:2e:8a:7d:87:
9a:e6:60:6f:92:53:39:f3:05:06:2c:bb:8d:14:5d:
d4:86:1f:69:de:c5:38:f8:d7:fe:ef:1b:03:e0:30:
32:04:c2:c1:34:5b:15:6a:5d:75:d0:c5:74:16:a1:
a0:78:7a:2e:d6:5a:c9:42:a5:39:52:78:f7:1e:06:
46:19:6d:77:6f:60:a4:22:05:ae:6c:3f:d2:0d:36:
3e:ce:fd:9f:a1:2d:bd:45:22:a4:d2:70:ef:80:b5:
25:24:29:11:03:45:c7:23:7e:0c:67:33:48:21:4a:
00:62:d9:56:d1:30:89:b8:7e:13:86:f2:ba:e8:39:
62:a6:6e:05:c5:ff:6e:37:40:17:1c:aa:f6:94:3b:
0e:48:ac:1e:de:88:8b:9d:7f:36:be:02:c9:0c:0e:
20:dd:3e:02:fb:d2:c3:66:d2:8e:70:26:3c:4f:34:
ec:18:39:54:35:76:e8:3b:b3:81:c4:c4:f9:cf:9c:
63:48:92:51:3a:05:8b:ab:45:a5:3e:be:58:40:bf:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:37:5A:39:F8:88:09:56:0A:88:AB:4F:50:62:66:60:E3:32:D7:47
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tTdaOfiICVYKiKtPUGJmYOMy10c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.199.0/24
Signature Algorithm: sha256WithRSAEncryption
05:b3:54:2e:9c:89:aa:a0:33:eb:b8:c7:bc:13:53:2f:6e:6e:
cf:0f:88:78:eb:30:e7:4e:c2:04:48:8b:9f:b4:32:74:04:6e:
32:05:4f:f9:04:5e:18:da:40:fd:55:20:1b:68:4d:f7:d7:87:
a4:72:ba:d2:aa:7a:10:cc:45:8b:4b:76:c4:12:bf:03:b3:3a:
48:7a:dc:00:33:73:cd:b5:e5:9d:75:61:b4:21:a0:2e:9f:1b:
23:b0:05:a7:e9:80:e2:9e:a3:4b:d5:9a:19:1d:be:06:84:7d:
26:29:44:37:75:b9:a7:8d:7c:1e:d0:b8:42:e8:7b:8a:19:e7:
71:24:01:d3:8f:e0:cd:98:ea:19:fd:9c:77:7a:e1:6e:3f:ea:
d1:dc:3e:fb:98:d1:4e:d3:bc:a3:5c:7c:c3:bb:95:c7:d7:8c:
f1:02:6c:cb:ed:8f:53:99:1e:43:8e:71:c4:ca:74:c9:3a:97:
0f:e2:83:5f:e8:0a:5e:39:2b:77:fc:24:d6:d0:24:c9:24:80:
98:b8:67:45:22:fd:3c:ab:3d:6b:7a:02:f5:00:f4:92:14:eb:
0e:5d:1f:e2:67:45:e7:2c:a5:a5:82:9f:16:66:93:5b:5b:70:
da:24:52:8e:8c:92:cc:a1:67:52:99:b9:a2:2e:3c:e1:e2:50:
08:7a:15:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:47 2024 by rpki-client on console-fra.rpki-client.org