Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rFBjghlit6opVOi7PUugikOaxk8.roa
File: rFBjghlit6opVOi7PUugikOaxk8.roa (raw, json)
Hash identifier: lkTsnl7/D3kX6X96bqHToRTY178rF57c5UtP+9N05DQ=
Subject key identifier: AC:50:63:82:19:62:B7:AA:29:54:E8:BB:3D:4B:A0:8A:43:9A:C6:4F
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01859919BD630C6B7685C3013893E7497D44
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rFBjghlit6opVOi7PUugikOaxk8.roa
Signing time: Tue 10 Jan 2023 00:34:39 +0000
ROA not before: Tue 10 Jan 2023 00:34:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 45.65.113.0/24 maxlen: 24
45.65.114.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 May 2023 03:50:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:99:19:bd:63:0c:6b:76:85:c3:01:38:93:e7:49:7d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 10 00:34:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac5063821962b7aa2954e8bb3d4ba08a439ac64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:78:3b:d6:4a:e0:65:ec:08:3f:c5:68:14:f9:
0c:03:ae:03:69:69:26:c2:eb:fa:75:e6:b7:83:9e:
18:7b:60:f1:4a:66:fc:11:aa:67:82:dc:3f:81:f3:
c2:8d:48:96:ec:ac:91:ee:8b:d8:05:ee:76:23:d4:
eb:ab:25:3d:1e:6f:23:ae:92:e3:cc:cd:16:09:80:
b1:a1:b9:a0:d6:85:1e:95:0e:04:04:87:47:99:ea:
1d:c3:2c:53:d9:48:6b:47:f0:01:27:8e:a5:c0:3c:
bd:3b:85:23:c4:ef:e8:26:71:70:9e:90:fc:d2:9a:
8a:79:0c:f9:6f:d2:b0:d2:c3:b6:ba:44:5d:4d:43:
4f:56:7f:cb:a2:53:75:65:3f:f0:5a:50:de:86:57:
17:e0:1c:b9:2b:1d:0d:b1:ad:a4:08:c4:27:74:9c:
16:8a:23:ac:63:a2:2c:8f:54:84:14:7a:a5:c9:78:
e0:11:f4:cd:f1:22:51:56:fe:5e:6e:86:a4:04:5c:
cd:b9:06:0e:d9:8b:c0:58:a4:ce:d9:65:0d:fb:ae:
c8:84:5b:eb:e9:b7:cb:4e:a5:44:dd:91:4a:d0:a7:
35:5a:a6:d3:9e:92:33:ee:06:86:f2:0a:a9:c1:c6:
66:31:a0:f8:8d:29:f9:42:17:d7:e9:e4:80:65:ec:
20:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:50:63:82:19:62:B7:AA:29:54:E8:BB:3D:4B:A0:8A:43:9A:C6:4F
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rFBjghlit6opVOi7PUugikOaxk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.113.0-45.65.115.255
Signature Algorithm: sha256WithRSAEncryption
7f:2f:b9:80:f6:77:2f:e2:9b:ad:7f:86:97:03:20:51:52:3d:
60:85:a1:ea:f8:c7:a7:bf:ce:9b:31:75:3e:55:bc:a2:3c:d4:
c2:30:46:71:29:9b:b2:32:6a:c8:86:f6:d7:6e:d9:28:d8:46:
fb:55:be:ea:80:ed:83:e1:6b:0d:05:7b:9c:73:21:4a:6d:df:
a0:d5:48:70:4c:21:41:c1:38:e0:8a:cb:27:bb:6c:aa:13:b9:
52:a3:d8:2c:30:92:74:ec:0f:47:5c:d2:76:c5:71:67:3d:a1:
af:e0:76:20:f9:04:11:69:e8:0b:49:4d:a7:42:db:23:eb:8c:
42:30:7a:0c:eb:ac:e6:2c:aa:13:53:be:ec:6c:26:f8:39:ff:
9f:20:9f:f2:b4:f5:33:66:e7:53:5e:9d:10:ab:10:72:73:3b:
31:6f:2a:c1:df:ac:8b:d5:93:41:2b:ed:8e:d2:78:25:e9:44:
63:8d:58:44:ba:b0:52:1c:f3:ac:31:d3:5d:c0:99:d5:9f:82:
58:a6:39:b8:02:4e:00:40:2f:1b:2e:c3:5a:c4:ad:70:f9:ca:
c9:92:7d:47:d5:ec:e9:34:70:22:43:35:41:15:d0:f6:70:42:
fb:39:f5:bb:7c:ae:cb:e4:38:c1:f5:19:3d:0c:39:dc:d2:95:
5a:25:72:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org