Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/44qe5xF7U3Cu0F9V6bS6hEa3DA0.roa
File: 44qe5xF7U3Cu0F9V6bS6hEa3DA0.roa (raw, json)
Hash identifier: 4+CfXFcmOhobKPQN2Um+LTkABcG3ToSnLoOoXK31yxs=
Subject key identifier: E3:8A:9E:E7:11:7B:53:70:AE:D0:5F:55:E9:B4:BA:84:46:B7:0C:0D
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0185A9172560B0BCADCB8846D09189A8D6E0
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/44qe5xF7U3Cu0F9V6bS6hEa3DA0.roa
Signing time: Fri 13 Jan 2023 03:05:44 +0000
ROA not before: Fri 13 Jan 2023 03:05:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211557
IP address blocks: 45.154.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 17:37:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a9:17:25:60:b0:bc:ad:cb:88:46:d0:91:89:a8:d6:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 13 03:05:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e38a9ee7117b5370aed05f55e9b4ba8446b70c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4d:6d:80:19:62:48:4a:6f:d9:c6:f5:47:47:
80:42:17:ab:a7:48:b7:35:81:b0:5b:e3:ab:41:08:
5c:5e:66:55:96:af:09:ed:a5:6f:a5:a5:a6:d1:62:
9a:19:87:0e:92:cf:1e:fa:02:bc:a9:cf:cd:38:fe:
f5:f7:8e:e3:f9:bd:ef:fd:80:f9:cb:e9:30:02:d9:
0b:b5:61:b0:39:f5:3e:00:ac:34:ea:7c:79:4b:02:
72:25:72:3b:c6:41:ab:5b:85:1b:e1:92:74:fc:e4:
b6:e7:8b:c3:59:1a:80:fe:79:81:43:46:c6:c1:d3:
93:3b:ce:a2:36:2f:5c:10:38:0a:a5:84:29:21:33:
ca:02:43:e9:d1:0b:a1:5f:71:5d:53:be:4a:12:bb:
ad:87:35:d3:57:94:e8:1d:c9:73:fe:de:a2:64:f3:
0e:ab:c6:cd:6c:29:2a:f9:e9:c2:ac:04:e3:e0:5d:
12:02:4c:35:d9:8d:39:4f:a6:6f:80:d3:79:c7:9e:
dc:6e:5d:0b:6b:33:c8:22:bb:94:48:4e:c1:00:f9:
15:98:3a:30:42:db:c7:d6:f5:0d:e5:e3:dd:55:07:
8c:19:8f:6f:6e:fe:24:98:6c:5e:9e:ad:fb:4a:11:
5d:6f:11:5e:28:6b:6c:c0:8a:d2:d1:1e:95:df:cf:
3e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8A:9E:E7:11:7B:53:70:AE:D0:5F:55:E9:B4:BA:84:46:B7:0C:0D
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/44qe5xF7U3Cu0F9V6bS6hEa3DA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.156.0/24
Signature Algorithm: sha256WithRSAEncryption
af:6a:08:ea:88:f8:ee:37:3b:75:8a:8f:16:5a:1f:9b:f9:89:
9c:c0:6e:53:df:f6:2d:71:10:fc:fb:37:62:47:2a:7c:88:13:
62:5c:1e:b9:20:f4:ec:1b:99:52:2d:40:61:53:b9:0f:f4:f8:
f2:04:3a:2f:7a:0e:b8:6a:2d:ae:d8:d4:61:14:8e:e1:3c:8d:
25:5a:c8:46:77:c2:48:1b:ff:1b:d5:82:d4:6a:42:d6:6b:35:
dc:5e:38:51:4d:36:b2:98:a3:b0:f7:1e:93:60:5f:52:93:bc:
82:8e:b9:ad:1d:75:53:79:ee:ba:b5:1c:2d:34:09:ae:de:46:
a5:7f:61:f3:c6:b1:1f:70:35:e8:2b:75:aa:e8:c2:cd:aa:61:
d5:36:1c:ef:94:80:b8:03:ed:28:ff:98:7b:fb:2c:c3:a0:85:
98:33:7c:59:79:11:21:7e:36:51:9d:0b:46:53:65:97:89:f3:
df:41:ef:89:fe:57:aa:1c:67:68:06:b7:20:a8:51:f8:05:b5:
50:74:59:a8:61:d7:f5:8e:34:2c:f6:01:28:cb:d9:83:a0:8f:
df:c8:87:16:8c:33:03:0f:68:b9:70:10:77:9a:6d:77:96:98:
b9:5e:b5:85:8a:fd:9d:dd:bb:c1:10:b7:5f:c3:34:9b:98:62:
a9:5a:83:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org