Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A2aGvPZpTsNRNCX9Po3en2cULjg.roa
File: A2aGvPZpTsNRNCX9Po3en2cULjg.roa (raw, json)
Hash identifier: jhlzXBAaGMGQMyGzB2GmM+Li6KTqHydUiC7V6URYb54=
Subject key identifier: 03:66:86:BC:F6:69:4E:C3:51:34:25:FD:3E:8D:DE:9F:67:14:2E:38
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018C4618F5BC670F5A31D8F4C131703C13FA
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A2aGvPZpTsNRNCX9Po3en2cULjg.roa
Signing time: Thu 07 Dec 2023 21:04:50 +0000
ROA not before: Thu 07 Dec 2023 21:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 45.157.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 09:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:46:18:f5:bc:67:0f:5a:31:d8:f4:c1:31:70:3c:13:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Dec 7 21:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=036686bcf6694ec3513425fd3e8dde9f67142e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:22:3a:08:12:8b:4f:f5:f2:d5:d4:24:79:48:
61:64:21:9e:b8:3b:0c:2a:cc:5c:0d:5d:8d:28:73:
88:1b:f8:c5:c4:fa:b2:da:b8:17:4a:08:07:a0:e1:
89:37:eb:5e:5d:80:be:0a:68:bc:43:b5:ef:82:94:
2d:29:44:d1:a2:41:07:bd:aa:44:52:bd:cc:24:6f:
f4:6f:c1:2b:5d:1c:8e:2d:74:d8:9c:1d:de:1e:a0:
3e:76:40:29:ca:a5:6f:f5:f5:da:3d:49:15:62:ed:
21:ba:e3:63:d4:c7:a2:f7:1d:63:c5:66:ef:ce:9c:
30:2b:fc:77:c8:6a:47:84:21:80:d4:8a:ca:7b:ac:
7b:5a:f6:29:f8:44:8f:3e:4b:48:f5:26:84:7d:70:
35:66:09:41:35:41:18:6c:24:81:b8:80:e0:92:44:
aa:55:c6:50:64:d3:1d:97:f3:4f:b9:a7:b9:ae:1f:
ed:10:2c:e9:82:33:f3:4d:38:89:5b:2b:36:44:fa:
76:da:69:15:25:46:f7:80:42:e1:1d:0c:74:26:d9:
ac:90:be:5c:ec:a3:ce:bc:1e:96:49:75:4c:01:27:
2e:29:8e:cc:90:6c:d6:75:c4:45:2c:74:7d:75:18:
2a:8d:22:34:49:06:e8:10:66:df:5e:fb:7c:95:9b:
66:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:66:86:BC:F6:69:4E:C3:51:34:25:FD:3E:8D:DE:9F:67:14:2E:38
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A2aGvPZpTsNRNCX9Po3en2cULjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.210.0/24
Signature Algorithm: sha256WithRSAEncryption
79:22:98:20:d2:6e:d0:64:8f:7e:27:a8:a5:b1:96:79:83:99:
82:75:df:e3:ce:3c:f9:b6:20:ab:25:d2:96:d0:ec:4e:89:87:
ea:3a:74:40:df:39:9b:27:72:c3:95:7c:a2:f7:4d:96:1f:fd:
de:a1:8b:0b:49:18:65:19:0e:34:e7:06:aa:97:38:08:0c:ba:
68:1d:98:8f:b3:89:25:e5:85:80:3c:d7:88:39:d6:d6:a3:be:
4a:5a:f3:29:6e:dc:2d:7a:25:cf:2b:02:8a:6d:fa:c1:1c:11:
f9:d1:ad:f9:95:e8:10:94:11:c4:0d:46:32:41:a6:16:bb:0c:
58:8b:07:fd:e6:4f:33:2b:f5:2f:29:db:69:f3:6b:80:f6:1e:
37:da:49:95:d2:e6:48:b4:fc:ff:33:55:78:8a:34:bc:69:92:
6e:97:3b:11:d4:d5:ea:f7:2d:ad:54:7a:7c:fc:b8:47:8e:8e:
4b:0b:df:3d:74:31:3e:37:39:39:cf:85:84:b6:af:51:2d:89:
e7:ee:90:73:67:03:1c:0b:a2:ca:ad:9f:31:1c:6c:8d:5c:49:
7f:fe:e3:60:06:39:dd:7f:61:32:0a:c4:c1:2b:8b:64:8b:af:
40:bf:56:88:1f:40:52:90:84:f6:56:c6:f8:16:78:a4:a2:08:
0b:ac:b4:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org