Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/JN8IJAU14nCg-vr920OrqefU8T8.roa
File: JN8IJAU14nCg-vr920OrqefU8T8.roa (raw, json)
Hash identifier: YZ6LogwqTO+011Wtho2lMWt3y66+2BvsEZCgNy1ajdc=
Subject key identifier: 24:DF:08:24:05:35:E2:70:A0:FA:FA:FD:DB:43:AB:A9:E7:D4:F1:3F
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018AA3FA14ECE3D1DEEEB5D676DF46CDD531
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/JN8IJAU14nCg-vr920OrqefU8T8.roa
Signing time: Sun 17 Sep 2023 16:29:50 +0000
ROA not before: Sun 17 Sep 2023 16:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203000
IP address blocks: 45.93.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a3:fa:14:ec:e3:d1:de:ee:b5:d6:76:df:46:cd:d5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Sep 17 16:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24df08240535e270a0fafafddb43aba9e7d4f13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:26:94:d9:80:d9:8d:a1:3b:aa:77:0d:53:af:
54:db:ac:ac:d8:93:d1:e1:3c:8e:32:cd:b6:46:be:
49:03:fa:e6:e3:ca:dc:d5:74:28:11:1a:40:1b:9b:
18:da:24:c0:92:2a:cd:57:43:6b:cd:99:1b:f3:2f:
9b:58:73:c3:6d:4e:ef:a2:08:a1:e0:1a:87:e0:01:
12:89:43:c5:17:32:78:64:ef:69:88:af:dc:05:1b:
1f:73:51:74:83:15:a7:c2:c8:99:43:36:db:f4:7f:
ca:47:ee:25:42:95:fc:be:02:b5:99:55:55:28:9f:
af:0f:4b:39:4a:01:36:e7:47:0e:a8:19:8c:63:b4:
15:2c:c6:0b:81:fb:62:36:c5:1c:25:ba:8d:6e:fe:
32:4a:2b:47:b8:bb:aa:85:76:18:ae:8c:45:4b:cd:
15:e8:a2:9b:1b:56:f3:62:9f:f8:dc:1e:3a:d5:1b:
63:81:27:db:b4:96:0e:5f:55:c7:a3:a0:21:ba:cd:
97:47:d6:52:a2:47:1f:eb:ea:ec:37:fe:86:10:86:
5c:94:f1:61:af:5d:8a:f6:b9:7a:3f:94:ec:35:6a:
c8:67:8e:e9:f1:00:85:7f:ea:a9:bd:92:8d:14:5b:
cf:ae:71:c0:a8:9f:07:37:46:6d:1f:0f:29:7d:c1:
85:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DF:08:24:05:35:E2:70:A0:FA:FA:FD:DB:43:AB:A9:E7:D4:F1:3F
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/JN8IJAU14nCg-vr920OrqefU8T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.168.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d9:5e:70:64:fd:ae:c0:35:e7:e2:f0:f4:02:f5:a7:e9:38:
e6:d7:98:a7:0f:4a:d6:79:6c:43:2f:97:c8:e9:72:c4:a6:2f:
e4:63:cc:90:e4:5a:90:dc:a7:bf:10:63:c1:9d:da:9a:d0:72:
52:af:83:22:38:00:61:99:41:65:2f:d7:33:c0:28:88:de:7a:
fa:04:df:df:f6:85:93:ac:fb:f9:7b:51:f3:84:61:e5:c3:48:
47:1e:9e:a1:fd:86:c4:e7:f8:47:74:68:44:ea:75:80:5b:60:
e9:dd:95:5d:00:6f:7c:3b:68:87:50:31:f2:21:09:3f:10:b8:
04:cd:fe:e4:c0:5a:20:d5:12:63:1e:39:43:e6:ab:a2:03:33:
5b:fb:74:74:81:25:d0:35:01:f4:1a:47:93:1b:b9:0b:b1:35:
14:c1:29:e9:cf:50:32:e3:4f:ca:8e:cd:25:97:78:67:ac:11:
ee:a8:ea:90:92:23:d6:93:8a:70:56:cf:f5:3f:df:db:6d:42:
49:36:b5:5a:92:f6:ab:d4:c3:d9:c1:33:9e:f8:b7:7c:05:94:
50:ba:40:fd:6b:47:b0:7b:df:b1:58:f6:a1:f0:c4:91:52:ae:
3a:f1:26:45:08:b4:73:de:f0:68:54:da:9c:50:bd:31:93:1b:
83:c9:c6:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org