Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/LrlY8jQRQyObDIrj__qAgvwBBMQ.roa
File: LrlY8jQRQyObDIrj__qAgvwBBMQ.roa (raw, json)
Hash identifier: a0IrnxGcfDY/u4eVJyGkETinEkr4561UVnP5Fm6Yx38=
Subject key identifier: 2E:B9:58:F2:34:11:43:23:9B:0C:8A:E3:FF:FA:80:82:FC:01:04:C4
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01894F62F405E5D6726BF86039ED38725956
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/LrlY8jQRQyObDIrj__qAgvwBBMQ.roa
Signing time: Thu 13 Jul 2023 13:13:52 +0000
ROA not before: Thu 13 Jul 2023 13:13:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.128.0/22 maxlen: 22
45.65.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 10:10:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:62:f4:05:e5:d6:72:6b:f8:60:39:ed:38:72:59:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 13 13:13:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eb958f2341143239b0c8ae3fffa8082fc0104c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:0f:80:84:ee:07:03:00:cb:93:a2:2c:1e:
5f:26:c2:a4:9b:89:9d:7a:7b:01:96:3d:78:2e:01:
cd:87:0a:aa:fc:3e:ca:22:ca:51:a9:a2:65:3a:d2:
d6:65:1f:da:78:e2:8a:5e:98:b2:f7:42:9c:87:64:
6c:85:15:ba:a3:07:15:44:e5:7c:12:7f:b2:9b:5f:
f0:68:8c:5f:7f:f2:ac:b5:5f:b2:c5:cb:ea:25:b2:
4c:30:16:5a:59:c6:1e:cc:49:38:aa:9a:44:85:a6:
8a:c8:93:81:7b:3e:ce:f1:7d:27:48:38:d3:60:93:
ab:87:12:46:73:6b:2f:3f:1d:3f:28:4a:d5:b6:d6:
7c:f2:e3:dd:56:e4:f6:74:9a:c3:dc:46:13:90:5b:
56:df:59:e7:6a:c3:ee:36:82:d6:2f:8a:76:b4:73:
79:90:ef:8a:ca:ef:7e:59:1a:70:6b:b5:ca:e8:63:
77:83:74:e0:73:a0:1a:38:f3:c0:13:aa:55:d5:5d:
79:63:25:f8:1d:f8:0e:30:1a:7d:f7:11:eb:20:bd:
9a:bb:bb:d6:43:03:b2:55:88:ff:cb:b0:af:1d:ea:
17:94:de:e9:05:b9:e3:c4:31:1b:a2:21:8c:bb:88:
bf:7a:03:3a:67:38:73:7c:9b:34:ec:fe:d4:bc:9d:
1b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B9:58:F2:34:11:43:23:9B:0C:8A:E3:FF:FA:80:82:FC:01:04:C4
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/LrlY8jQRQyObDIrj__qAgvwBBMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.113.0/24
188.209.128.0/22
Signature Algorithm: sha256WithRSAEncryption
16:2d:e6:9b:cb:36:a4:74:62:af:dd:90:59:72:d0:bb:ba:69:
ac:44:9f:ab:5e:44:22:de:7c:56:fb:60:c7:79:b0:c0:e7:e4:
10:1a:b0:c6:e9:1b:8f:1e:07:f0:67:93:66:05:d3:fc:b7:5e:
89:ab:98:fe:b2:5d:85:d1:a3:1b:11:8d:a1:59:8f:d6:92:ff:
0d:de:ed:3e:54:45:5b:d7:79:40:7e:0d:3b:8d:93:a8:41:48:
36:e6:8d:e2:6e:b0:0b:34:16:f2:a5:cd:8f:60:2d:07:bc:c9:
89:39:d1:71:a0:61:aa:39:a7:1f:d6:66:e4:67:e4:d2:6a:11:
61:bb:14:9e:02:18:b9:49:39:b2:2b:1a:50:53:59:6d:0a:6d:
54:34:e1:2b:fe:36:b3:98:19:4a:18:4f:4a:a6:26:8f:26:2b:
18:82:2c:ab:e5:dc:08:28:22:b4:70:9c:2a:67:90:68:80:a6:
ea:1b:9e:cf:5e:8c:20:6a:61:8f:6e:93:dc:a2:0f:da:5a:a2:
26:69:2e:22:71:bf:54:f4:5e:b3:76:03:bc:95:88:07:e3:55:
ca:d9:f4:21:3c:38:fe:fb:a0:16:7e:85:51:85:08:b4:20:d8:
57:6a:a2:77:fe:70:d1:66:d6:8c:27:3f:e6:1e:5b:eb:aa:ac:
79:50:86:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org