Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/lLm96qpaM2GQGaFZZQ9f_IxP48c.roa
File: lLm96qpaM2GQGaFZZQ9f_IxP48c.roa (raw, json)
Hash identifier: Cun86aDjpzMwMBVXwmCozyw/IqXvdp05UXi2App9988=
Subject key identifier: 94:B9:BD:EA:AA:5A:33:61:90:19:A1:59:65:0F:5F:FC:8C:4F:E3:C7
Certificate issuer: /CN=e7c07db9880133c5cdce005bca111b552cd14c53
Certificate serial: 018CCA2A71A4476916BCEA1D02C2DE064F83
Authority key identifier: E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/lLm96qpaM2GQGaFZZQ9f_IxP48c.roa
Signing time: Tue 02 Jan 2024 12:33:48 +0000
ROA not before: Tue 02 Jan 2024 12:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202539
IP address blocks: 45.12.200.0/24 maxlen: 24
2a0e:bf00::/32 maxlen: 48
2001:67c:1160::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Apr 2024 13:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:71:a4:47:69:16:bc:ea:1d:02:c2:de:06:4f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c07db9880133c5cdce005bca111b552cd14c53
Validity
Not Before: Jan 2 12:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94b9bdeaaa5a33619019a159650f5ffc8c4fe3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8e:b6:3e:e8:12:3b:d8:25:db:8b:21:e6:7e:
ad:00:6d:96:59:50:6d:20:a7:01:4f:10:34:52:aa:
7f:f9:7c:24:de:08:41:e3:12:cd:ed:ee:d8:cd:d6:
c2:a9:2b:21:67:ce:42:b3:a4:3f:ed:90:e5:e2:94:
d4:08:a6:ac:02:a6:7e:fa:d2:3c:b8:16:ce:48:7c:
1b:a1:29:68:0d:c4:31:65:e3:ce:fd:8e:53:c5:3e:
34:bf:93:be:5f:51:58:8b:6d:1c:85:13:32:83:11:
56:45:8e:48:37:7a:45:f5:8d:f3:25:a3:b4:11:22:
e4:10:23:7e:46:f6:ef:4b:26:48:66:a9:c7:97:a4:
f2:b1:df:27:30:9a:54:dd:a8:39:58:cd:0f:0a:67:
90:42:66:66:db:46:39:7a:f3:9d:70:dc:11:a8:80:
16:b2:f8:6c:08:e9:63:47:cc:81:7d:42:50:f1:a0:
28:00:9c:bc:db:f7:7d:a7:8d:24:5f:47:f8:72:a2:
c9:c3:30:b8:20:dd:44:cd:01:ca:86:4c:4e:a4:14:
7e:83:58:0d:bb:28:da:0d:52:b6:13:df:39:49:d4:
05:3b:b8:07:f4:25:12:9d:cb:1c:0f:4f:7e:84:06:
49:cb:f6:f1:2f:16:03:8b:0a:c0:d5:c0:83:ac:e2:
85:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B9:BD:EA:AA:5A:33:61:90:19:A1:59:65:0F:5F:FC:8C:4F:E3:C7
X509v3 Authority Key Identifier:
keyid:E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/lLm96qpaM2GQGaFZZQ9f_IxP48c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/58B9uYgBM8XNzgBbyhEbVSzRTFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.200.0/24
IPv6:
2001:67c:1160::/48
2a0e:bf00::/32
Signature Algorithm: sha256WithRSAEncryption
d4:90:da:35:04:96:b5:cf:3d:0d:13:41:1d:40:e6:64:d7:e6:
f2:ae:c4:f3:31:d9:f0:cf:0a:cc:04:8e:c3:19:52:f9:d5:fe:
df:3c:af:3e:90:87:14:88:e5:24:93:61:c3:77:e7:41:b5:90:
fe:08:96:1d:6c:2c:6e:78:3c:4f:a1:fc:7c:50:76:de:b4:4f:
cd:c6:32:0e:60:80:91:0a:5b:1f:5c:9f:c4:f6:e5:13:b5:13:
2f:a2:de:d8:8b:b8:df:4e:37:d1:e6:fc:a8:11:6f:5d:2b:9a:
25:59:67:c5:8d:ad:bd:a0:42:0e:1a:af:a8:13:1a:80:16:1a:
55:58:af:5d:a6:3f:04:bf:28:9c:7b:06:e3:52:83:a4:1a:a2:
63:fc:6d:71:ee:94:09:43:66:31:e1:08:57:89:76:19:d3:52:
39:6d:f0:82:fa:84:53:1f:bf:5c:3f:5e:f7:f8:3a:60:d0:5c:
36:37:67:f7:91:9a:ec:2d:0b:24:8c:90:d3:c6:50:ee:9f:0e:
20:f2:6d:56:5e:b0:50:cb:de:4f:7a:72:13:0d:56:98:a3:4f:
5c:0a:78:c8:b7:1d:4f:2c:21:89:4c:36:dd:84:31:fb:f1:c2:
2f:fd:22:fb:b4:31:f7:20:f4:1c:6e:4b:30:a8:0c:07:42:b0:
3b:f8:ed:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 18:28:15 2024 by rpki-client on console-ams.rpki-client.org