Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhrEjjVVG-TtlRqxP4L0QrigIAM.roa
File: EhrEjjVVG-TtlRqxP4L0QrigIAM.roa (raw, json)
Hash identifier: Mxir4DBNBy0Yyv64ApyAOcKJgLm6jfVHL1UH9fNsC/c=
Subject key identifier: 12:1A:C4:8E:35:55:1B:E4:ED:95:1A:B1:3F:82:F4:42:B8:A0:20:03
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0189BF89B3226EA18F6888BC24051BA62DAD
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhrEjjVVG-TtlRqxP4L0QrigIAM.roa
Signing time: Fri 04 Aug 2023 07:53:39 +0000
ROA not before: Fri 04 Aug 2023 07:53:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 45.65.112.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bf:89:b3:22:6e:a1:8f:68:88:bc:24:05:1b:a6:2d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 4 07:53:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=121ac48e35551be4ed951ab13f82f442b8a02003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:08:62:e0:ec:18:cd:52:a1:96:af:a8:78:39:
28:9e:4e:3d:ef:07:3c:48:c3:c0:0e:43:90:01:74:
19:54:d4:bc:21:58:a1:cf:35:75:19:70:ad:3e:1c:
ef:ff:dc:85:0a:28:6b:76:52:1b:c6:d5:60:09:8f:
93:94:97:85:1c:68:75:ca:69:90:c1:a1:7d:a6:ee:
2a:94:d6:57:10:32:96:b7:91:de:65:33:1a:64:0e:
bd:1d:10:af:66:ad:75:d2:60:fe:2b:df:14:fb:3a:
54:59:62:ce:5e:43:f5:23:6e:ca:aa:b5:99:b3:7f:
50:22:55:31:85:42:91:76:d5:4f:d1:96:46:5f:6e:
67:1b:d6:f1:d3:55:ad:18:16:69:49:d7:a0:1c:d6:
3f:43:2f:dc:69:55:5e:cb:0a:85:47:20:c6:d8:73:
cd:fa:af:8f:0a:8c:ff:88:19:67:2e:cd:33:6d:ee:
6f:8b:82:55:28:65:17:b6:76:2a:b3:99:aa:db:4b:
23:84:6f:fb:4e:2f:94:b6:0a:93:64:cc:6c:7c:5d:
73:e9:e6:5c:46:67:55:35:99:24:6a:32:f3:24:80:
c5:66:7f:72:ce:9a:04:9e:1b:79:f8:44:f8:e2:1c:
6b:80:26:86:22:35:c5:e1:4d:cc:68:4b:32:28:4b:
33:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1A:C4:8E:35:55:1B:E4:ED:95:1A:B1:3F:82:F4:42:B8:A0:20:03
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhrEjjVVG-TtlRqxP4L0QrigIAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.112.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b6:9b:06:e3:02:27:7a:89:5a:43:b1:be:f3:4f:cf:bf:f8:
cb:09:5a:2a:c8:b8:74:76:61:e5:94:da:2f:38:88:ae:3c:aa:
7a:b7:ae:ca:6e:39:99:d1:ac:1a:d2:e5:de:09:17:87:c1:ee:
d4:43:a5:d8:2b:c2:63:3b:d3:13:54:99:9a:84:96:21:4a:7e:
94:3d:8d:06:54:3d:bf:aa:f5:7e:6f:c7:54:24:64:cb:a8:18:
45:cc:b7:85:7e:e6:0a:b1:dc:48:07:d6:d0:0b:34:dc:28:9e:
b0:a1:bc:1d:94:99:23:f2:88:19:37:d2:ee:1e:ab:bf:94:16:
1f:1f:31:fb:b9:bd:09:4e:b7:71:64:b9:7c:ab:c3:09:db:8f:
4d:92:20:8a:d4:84:e3:7d:8f:94:b2:fa:23:53:62:dc:4f:b7:
f9:d3:2c:54:65:14:52:2a:19:93:40:29:74:f3:b4:fe:83:11:
b4:01:5b:c4:4d:69:ca:d7:36:0e:34:c1:c3:8b:72:ab:12:1e:
d2:c8:49:94:7b:ea:0d:91:2c:63:cc:0a:99:e8:81:05:f4:09:
cd:c5:54:17:7b:04:e4:ce:c7:80:88:67:4e:b3:d9:b2:29:45:
7b:55:5e:0c:33:bb:a1:88:11:e0:e0:52:45:62:a3:ed:d1:63:
e1:f0:5e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:23 2024 by rpki-client on console-fra.rpki-client.org