Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7DVSsvRwyi1-ot1xNZFDmA2EoTM.roa
File: 7DVSsvRwyi1-ot1xNZFDmA2EoTM.roa (raw, json)
Hash identifier: YudQ/vyrUTIfnf7VwRCHalG58RuB6AtyeayCZj4mPGY=
Subject key identifier: EC:35:52:B2:F4:70:CA:2D:7E:A2:DD:71:35:91:43:98:0D:84:A1:33
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018571A7A314706A3A596360FD426BE87BF1
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7DVSsvRwyi1-ot1xNZFDmA2EoTM.roa
Signing time: Mon 02 Jan 2023 08:44:49 +0000
ROA not before: Mon 02 Jan 2023 08:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43818
IP address blocks: 45.67.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:a3:14:70:6a:3a:59:63:60:fd:42:6b:e8:7b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 2 08:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec3552b2f470ca2d7ea2dd71359143980d84a133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:74:a3:6e:e5:30:7e:24:01:22:e4:c4:e9:07:
6b:4a:47:bd:ad:f8:43:f7:52:d8:f8:9c:99:d3:d0:
2d:31:3f:f1:4d:8c:41:62:ba:5a:c9:3d:f1:2d:b2:
f0:a9:a0:db:90:69:cb:d0:41:e5:cb:76:a6:cf:2e:
1d:0e:22:47:1f:b7:0f:4c:c4:e6:44:a3:08:d0:b5:
c8:ed:73:6c:37:27:3d:b4:31:e3:2f:f7:83:77:0c:
22:1c:39:ea:45:49:8f:9b:1a:60:98:45:a0:9c:ca:
6c:11:5a:79:b4:ff:fd:33:0c:29:e0:74:07:9e:f1:
d9:6e:f2:34:4e:14:cf:bb:39:36:66:ec:8f:82:4b:
03:79:19:be:70:f9:73:73:86:a0:c6:ec:1a:7d:3b:
5f:41:12:d4:d9:3b:98:55:3e:a8:0a:79:11:78:ce:
a0:09:3e:a6:24:a5:a7:0e:10:0b:f4:94:28:de:96:
9c:15:c7:fa:d7:b1:b6:23:2b:bf:d5:fd:32:73:e6:
e0:24:5e:fc:da:82:5c:13:7f:2b:47:0b:1d:26:fa:
37:64:6f:68:ed:92:dd:97:0b:bf:77:cf:2c:75:83:
64:93:45:54:c1:33:d8:2c:bb:54:e4:bb:20:c5:36:
cb:52:7d:6f:c0:87:35:7d:81:03:be:90:36:3c:c4:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:35:52:B2:F4:70:CA:2D:7E:A2:DD:71:35:91:43:98:0D:84:A1:33
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7DVSsvRwyi1-ot1xNZFDmA2EoTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:80:f6:4d:5a:9b:f6:f3:01:f8:18:c0:33:5b:c2:bd:38:d7:
48:f6:05:bc:0c:bf:aa:b3:4e:26:60:2b:9e:f6:33:5b:61:c8:
38:0e:d7:dc:2c:5d:cc:fc:a5:2c:ad:33:36:3d:7c:0a:e5:d6:
e2:9d:7d:0d:8f:29:6d:1a:5a:b0:40:b7:de:99:e2:03:48:d5:
19:0b:3a:5e:3e:42:e2:82:fe:86:2f:40:fa:03:7d:95:22:59:
27:00:95:82:74:eb:76:22:11:b1:18:a7:e4:a5:d0:80:df:20:
42:df:44:31:57:11:9b:34:45:54:d4:46:ad:33:ad:61:ee:13:
71:e3:5d:a2:2c:9d:48:b6:10:1f:db:3d:59:1f:f3:e8:0c:08:
a1:1a:69:22:1b:ff:06:f7:12:5c:10:b2:8a:80:1f:a8:6b:2d:
5c:96:6a:e7:0d:fb:72:52:79:2c:e3:15:20:d1:e1:fd:61:75:
32:d2:f0:ab:05:0b:fb:eb:02:64:a8:3b:e4:55:4a:0b:ee:ba:
e3:f3:a5:6a:80:46:53:e1:cf:f0:4d:e4:d5:ff:11:ff:b9:1f:
cf:39:f1:12:be:92:55:28:f8:52:c2:d5:8b:91:d0:10:c7:4d:
9f:e2:46:3b:c0:bb:c0:82:67:ea:19:e6:7f:01:df:9e:c8:6c:
cc:8f:2a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org