Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/PSxgIJCsxjlAWxEjq-w_7ElItxQ.roa
File: PSxgIJCsxjlAWxEjq-w_7ElItxQ.roa (raw, json)
Hash identifier: CSi2hmeS95CcE7DuPLt94c87J5M2kZtoeOoE6F+BkIs=
Subject key identifier: 3D:2C:60:20:90:AC:C6:39:40:5B:11:23:AB:EC:3F:EC:49:48:B7:14
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 01856C9399C7D4DF4E93B7CA68E75553C0B6
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/PSxgIJCsxjlAWxEjq-w_7ElItxQ.roa
Signing time: Sun 01 Jan 2023 09:04:50 +0000
ROA not before: Sun 01 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210162
IP address blocks: 45.143.31.0/24 maxlen: 24
45.143.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:99:c7:d4:df:4e:93:b7:ca:68:e7:55:53:c0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d2c602090acc639405b1123abec3fec4948b714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:1c:66:6d:29:44:9c:6e:8e:8e:df:76:49:
57:dc:43:d6:57:4e:21:a2:77:21:a3:82:2e:de:64:
04:5b:36:21:93:3e:5c:c5:ef:e8:f4:fb:e3:ab:b0:
a7:e0:b6:2b:37:bb:b8:9e:51:be:42:b0:f0:e3:9a:
9a:e8:38:43:7b:3a:27:49:c8:eb:0c:8b:c0:4d:a9:
70:09:35:7d:66:93:1a:11:0f:4a:89:63:ea:21:4c:
e2:e6:68:58:3f:69:5e:b3:e7:b9:17:5d:e4:63:17:
d8:3e:23:b0:b4:cc:8d:d2:73:ce:c8:54:67:c6:5e:
06:2c:ae:14:b5:1e:93:64:18:a3:d1:70:6b:cc:18:
97:20:9c:32:c1:5c:ed:05:bd:7c:01:5d:dd:46:4b:
c5:06:a0:0e:71:71:03:21:04:df:02:54:55:5b:55:
f1:ec:3b:a7:4e:68:9c:14:68:b3:52:6a:ab:2a:d0:
5d:1a:4e:d0:d7:b9:bc:27:2e:ae:58:8a:8c:23:dc:
1e:8f:fa:e3:47:70:d8:1d:5e:0e:d5:8c:d4:41:cb:
ef:5b:10:65:16:69:87:18:55:25:89:68:d1:d1:3f:
81:ba:66:cf:da:b2:93:8e:70:dd:ba:3b:d6:59:5a:
02:21:b5:5a:c6:2f:a3:ce:f4:3b:b0:05:5d:2f:c0:
a2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2C:60:20:90:AC:C6:39:40:5B:11:23:AB:EC:3F:EC:49:48:B7:14
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/PSxgIJCsxjlAWxEjq-w_7ElItxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.28.0/24
45.143.31.0/24
Signature Algorithm: sha256WithRSAEncryption
66:5b:f7:89:ea:1a:03:93:07:15:b6:8c:ef:9a:95:1f:72:89:
cc:f0:00:de:6d:11:a0:04:80:5f:10:bc:ff:b1:f8:b9:dd:f5:
5c:f9:6a:af:eb:f4:af:86:30:5b:08:0c:9f:4d:58:b6:a0:32:
23:36:70:d6:03:97:7d:d9:32:e4:8f:3d:d5:ce:aa:11:ac:bc:
47:e8:fd:5c:fe:44:a9:7d:22:a6:23:c2:fd:ee:ca:99:15:38:
e0:cb:18:09:26:25:e6:77:53:4c:45:21:0a:3d:5c:56:e2:dc:
9f:dc:b1:64:69:21:4b:fe:9a:cd:28:17:41:cb:17:2b:7d:43:
a2:e5:ab:e2:28:7e:5d:a5:19:6a:b9:0f:96:23:a8:25:02:f3:
52:39:22:e4:7f:cc:fe:1a:4e:3b:b1:09:1b:4a:ce:51:df:8a:
a6:82:1f:09:df:ed:8a:e0:87:47:02:2f:09:81:f2:91:aa:7a:
51:47:fe:cb:4e:3d:24:b0:fb:34:42:44:3c:f3:30:56:53:54:
11:92:e7:2c:ff:21:0d:e2:dd:b5:63:28:55:ff:fa:9b:90:cb:
60:30:27:d4:47:0f:35:bb:98:a3:7c:2a:26:af:5a:32:a4:9e:
de:b4:72:09:c2:dd:d4:89:e4:53:42:dd:e5:26:c0:45:81:84:
fc:fb:1a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:55 2024 by rpki-client on console-ams.rpki-client.org