Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/dhreJOvzUa_P1UDiyHPWSQBYa4w.roa
File: dhreJOvzUa_P1UDiyHPWSQBYa4w.roa (raw, json)
Hash identifier: 4x4/rXW+kfn133eTv/etf58n7ct2pSXSQT0BKtdc8zI=
Subject key identifier: 76:1A:DE:24:EB:F3:51:AF:CF:D5:40:E2:C8:73:D6:49:00:58:6B:8C
Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d
Certificate serial: 01856C78269D9C0F8523CF9A4DC063057FC5
Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/dhreJOvzUa_P1UDiyHPWSQBYa4w.roa
Signing time: Sun 01 Jan 2023 08:34:51 +0000
ROA not before: Sun 01 Jan 2023 08:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 45.154.8.0/24 maxlen: 24
185.241.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:26:9d:9c:0f:85:23:cf:9a:4d:c0:63:05:7f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d
Validity
Not Before: Jan 1 08:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=761ade24ebf351afcfd540e2c873d64900586b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2a:9c:46:71:ef:88:9c:14:1c:4c:17:eb:37:
dc:84:db:80:5d:ba:be:25:12:77:97:cf:b9:b1:af:
00:25:0e:cf:4f:20:b2:74:10:3a:e2:2c:3c:5d:f2:
29:4b:80:02:08:7d:71:da:94:e5:09:c1:48:d2:fe:
77:66:72:58:6d:61:fa:e5:13:0d:e4:9e:b8:a8:04:
54:d4:5a:f2:f2:72:7e:f8:06:ce:2b:13:18:82:33:
9b:74:86:d1:3b:da:03:84:b9:b8:56:53:46:e4:5e:
3a:a3:d7:a8:b5:98:09:4f:d4:de:52:d6:cb:61:56:
40:9a:1e:21:60:f2:8d:5c:ac:03:19:da:13:fa:48:
52:fd:35:61:c7:f3:fb:a9:29:42:b1:ed:dd:b4:ae:
2c:42:6d:2a:ac:9b:71:e6:63:79:2b:71:c2:a9:ec:
c5:89:36:3c:5a:ae:52:81:58:08:af:55:27:30:f8:
e9:e3:a5:c5:e5:68:e3:ba:34:dd:2f:f2:f9:3c:7f:
23:d5:0c:26:a1:2e:2b:f8:ae:28:f6:b4:d9:e9:9b:
f8:47:33:70:ea:2b:c3:08:86:62:b3:d5:33:86:54:
9a:81:42:f9:76:2e:52:53:e2:41:50:7b:84:c8:8e:
54:51:48:c0:c0:87:99:54:e1:69:ea:a2:15:09:e4:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1A:DE:24:EB:F3:51:AF:CF:D5:40:E2:C8:73:D6:49:00:58:6B:8C
X509v3 Authority Key Identifier:
keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/dhreJOvzUa_P1UDiyHPWSQBYa4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.8.0/24
185.241.188.0/22
Signature Algorithm: sha256WithRSAEncryption
00:b3:ea:a2:9f:35:6f:88:ab:60:10:c1:bd:7c:1f:12:df:70:
e5:5c:b4:87:85:0d:2b:c4:ff:9b:88:4a:0f:23:b1:ab:29:11:
b3:b9:b9:14:d2:51:1f:b9:a7:a7:57:8a:99:53:6a:39:d3:43:
ed:09:7f:bd:b2:73:6a:fb:52:2a:54:62:60:82:f4:48:7f:2e:
53:3a:24:2f:5e:7b:26:78:f7:39:8f:7d:67:4b:7c:84:61:ce:
b6:9d:93:fd:9e:27:cd:12:a7:f5:4d:4e:ca:3f:77:cf:f3:9a:
c9:ae:f1:83:bf:cc:14:f4:94:6c:88:d5:48:2f:b0:10:f4:7b:
97:50:51:14:8c:fb:bf:35:0f:dd:2a:c1:c1:c9:69:6f:26:da:
27:33:2a:3a:f2:6c:90:31:75:71:c6:41:39:62:80:5b:af:57:
d4:c4:d3:15:09:58:83:c4:3d:46:63:7e:db:73:d8:36:35:22:
4b:07:14:02:c9:3c:23:d4:f8:73:6b:8e:df:16:ce:77:16:6c:
d7:6b:1e:6c:24:ee:9b:0d:cc:19:b5:2e:fb:22:5a:97:a4:79:
d1:a0:59:91:fa:91:2d:57:e6:7b:02:cf:95:fa:b9:ce:62:c3:
4c:ec:dc:08:71:82:84:92:39:0b:50:99:63:45:99:ab:54:f9:
ed:41:7b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:46 2024 by rpki-client on console-ams.rpki-client.org