Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/dAUpmgyjkRab8wd-sh2qvaN96y0.roa
File: dAUpmgyjkRab8wd-sh2qvaN96y0.roa (raw, json)
Hash identifier: 4S4WDY3HBCBdPzu+/nFcCRjOL+dKh+fqKfTFUPTzUzY=
Subject key identifier: 74:05:29:9A:0C:A3:91:16:9B:F3:07:7E:B2:1D:AA:BD:A3:7D:EB:2D
Certificate issuer: /CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Certificate serial: 018A175A3E737FB577AE53944CBA1D0319D2
Authority key identifier: 38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/dAUpmgyjkRab8wd-sh2qvaN96y0.roa
Signing time: Mon 21 Aug 2023 09:08:24 +0000
ROA not before: Mon 21 Aug 2023 09:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198385
IP address blocks: 45.147.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:5a:3e:73:7f:b5:77:ae:53:94:4c:ba:1d:03:19:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Validity
Not Before: Aug 21 09:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7405299a0ca391169bf3077eb21daabda37deb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:42:bf:0e:97:53:14:fc:7c:78:ff:b8:29:
09:6c:c5:aa:cf:9b:e0:f7:7c:39:40:89:3e:b2:e9:
38:23:51:ec:ce:f8:0e:19:e0:2e:2d:23:dc:26:88:
07:a3:b1:69:66:72:b6:19:9c:0f:f0:44:43:a5:60:
d7:65:eb:f4:8b:af:34:13:0b:2d:80:f4:8d:f7:7a:
84:81:58:4b:4a:2c:66:b0:2f:e4:91:6f:67:d0:df:
a4:ba:86:94:72:8c:c7:52:91:5c:ce:c0:8a:30:50:
f3:8e:0e:8b:80:a9:22:c1:45:ae:0d:1d:b9:66:35:
b6:96:1c:05:c6:72:18:0a:f6:6f:2b:b0:2c:97:77:
7e:92:c4:de:7f:fe:8d:d5:8e:72:0d:19:95:92:b7:
8d:97:96:a2:6e:ff:02:aa:4d:e5:06:3d:01:7d:e9:
a8:07:1d:5e:09:55:f4:f9:95:f4:9a:9d:cb:95:16:
c6:48:b7:88:26:08:26:44:b2:18:33:41:03:a1:33:
c2:af:fc:00:c3:bd:19:34:f8:d4:9c:8b:e3:87:f5:
5f:cd:5a:c0:cd:03:46:e5:9f:eb:5e:07:19:e1:4a:
d0:2c:9f:00:de:ba:a9:c0:03:6c:bd:4a:f6:61:d7:
60:66:75:f0:86:0b:9f:f0:b1:d4:9b:74:ef:06:86:
c0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:05:29:9A:0C:A3:91:16:9B:F3:07:7E:B2:1D:AA:BD:A3:7D:EB:2D
X509v3 Authority Key Identifier:
keyid:38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/dAUpmgyjkRab8wd-sh2qvaN96y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/OLWdrt1DzJV1rDWVPj85biG7bYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.41.0/24
Signature Algorithm: sha256WithRSAEncryption
67:c3:5b:0f:ec:e8:eb:b8:19:25:ee:36:e6:a4:45:87:d6:80:
79:31:84:64:bf:1f:75:65:46:c0:2d:2d:9c:3d:96:c9:65:90:
b3:26:56:e8:9f:ca:92:f5:33:06:dc:e3:36:fc:75:ef:76:bf:
83:92:c6:5d:06:e6:f8:e0:63:0e:e8:99:ec:28:cd:a7:06:49:
b7:44:c5:08:eb:ed:7b:03:ee:33:a5:73:a4:2b:44:78:8f:18:
a2:64:47:8a:90:79:b7:97:6e:4d:43:69:d5:f2:53:2e:59:4c:
b5:80:5d:30:20:fb:5f:9c:f3:d0:d0:57:45:d0:d4:43:63:46:
ae:17:26:d5:d9:4a:ee:ea:e3:18:36:af:42:65:44:f4:4e:0f:
cd:26:7a:df:42:52:3f:bf:81:78:d6:e4:f0:65:11:15:a3:b7:
b1:7d:98:ff:7b:7b:85:a3:57:f3:52:10:4f:e3:28:d5:41:ee:
c7:dc:61:32:e6:f2:ae:31:ad:e7:64:96:76:2c:a5:28:98:43:
54:be:b6:6e:b9:59:c3:d3:53:6f:6e:29:8d:b0:e1:c3:46:9d:
2f:77:e0:40:5e:40:c1:4d:ab:95:f7:70:cb:42:a2:0f:f3:59:
0f:fc:da:dc:81:8e:b2:72:ef:9a:8e:56:62:6e:55:8f:12:47:
a6:9c:7c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:05 2024 by rpki-client on console-fra.rpki-client.org