Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Es2h2xuJ7ZW13UMysf5j2EB9jkg.roa
File: Es2h2xuJ7ZW13UMysf5j2EB9jkg.roa (raw, json)
Hash identifier: BVYEiMg7H/XJjwlVxKk06IhFmMMLPe4oka6aNDoXWP8=
Subject key identifier: 12:CD:A1:DB:1B:89:ED:95:B5:DD:43:32:B1:FE:63:D8:40:7D:8E:48
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01856BCA21B6FA14165A7592BBFF503BC60D
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Es2h2xuJ7ZW13UMysf5j2EB9jkg.roa
Signing time: Sun 01 Jan 2023 05:24:47 +0000
ROA not before: Sun 01 Jan 2023 05:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 262287
IP address blocks: 45.131.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:21:b6:fa:14:16:5a:75:92:bb:ff:50:3b:c6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jan 1 05:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12cda1db1b89ed95b5dd4332b1fe63d8407d8e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:af:49:d2:4a:8b:ee:27:8d:dc:fe:b2:6a:f4:
f0:04:42:cf:7c:a9:9f:82:19:07:88:d4:dc:18:d3:
16:35:e6:9d:48:23:cf:69:02:4a:10:65:ee:cf:62:
8c:e4:55:b1:17:4a:55:89:ed:14:69:7d:e2:45:ba:
81:da:25:67:56:05:f1:87:4f:2e:c1:5d:16:69:ac:
26:e3:3a:4d:e5:d2:fb:95:48:b3:a4:f5:09:59:91:
80:7d:a0:76:85:05:e0:04:72:84:78:57:99:4e:a4:
a9:6e:d7:da:3c:b4:c3:05:9a:96:ba:d7:31:fe:d4:
ad:c0:55:ad:93:cd:f4:f2:2b:59:ab:df:3a:73:ea:
40:aa:be:bd:6c:57:38:ba:b8:ea:7d:2d:36:ec:5d:
69:b6:a9:af:e1:61:ee:3b:16:a5:39:07:00:63:a7:
ff:d5:89:be:5d:ef:5d:60:7a:7a:fa:94:45:5b:f2:
bb:39:ce:2a:65:1c:00:d8:0d:32:09:82:0d:bf:c0:
37:94:18:1c:3e:a6:c1:09:cb:c7:4a:92:a4:50:18:
3e:d6:39:b3:79:91:7f:5e:07:28:a0:e8:2b:08:18:
e8:dc:e2:ea:2f:49:fd:34:a0:c1:cc:93:61:95:7d:
73:fb:e6:52:e5:1e:0c:c9:9b:26:55:d9:ce:a7:4c:
28:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CD:A1:DB:1B:89:ED:95:B5:DD:43:32:B1:FE:63:D8:40:7D:8E:48
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Es2h2xuJ7ZW13UMysf5j2EB9jkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.193.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c9:05:f7:37:51:46:7d:eb:97:20:c6:b5:55:57:f3:f0:3a:
5a:5a:53:f7:ef:71:af:3c:c8:ff:51:c8:21:ec:9b:8d:96:68:
d3:2a:69:cd:20:c0:85:10:0a:a0:d3:e0:82:e7:91:6f:7d:a4:
0f:39:65:1d:17:01:15:f1:c1:ab:18:af:fa:a9:d5:56:f1:13:
6e:37:60:1b:ea:8b:d4:22:ee:49:87:34:9d:96:2e:2c:b6:0b:
87:76:21:64:fa:6c:95:0f:0b:35:9b:cc:43:e4:de:c8:c7:d8:
52:a6:6a:ba:14:97:f8:44:7d:19:61:2a:bb:28:b6:50:e4:c9:
39:21:f7:02:62:73:3f:50:1d:5d:9d:1b:32:9c:7e:e0:6f:42:
eb:ac:2b:c2:5c:27:0e:2b:3f:a9:f8:a5:9c:86:99:0f:67:b5:
60:6c:98:6d:35:f7:2d:43:85:a6:c7:e2:90:e5:77:9e:bb:1f:
15:a8:17:41:fd:8d:5b:b8:dc:35:ce:1c:ac:5b:f9:93:27:68:
c7:96:b1:9f:b4:7e:63:b4:3d:18:87:4b:12:c6:6f:79:fb:76:
96:fb:f3:ef:2a:4a:be:c0:72:e5:72:98:f5:30:11:ad:d3:39:
81:64:38:f0:57:81:78:1d:d1:b3:d6:82:dd:8f:0e:bb:9d:a9:
c4:b4:69:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:24 2024 by rpki-client on console-fra.rpki-client.org