Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/CA4y7BxRYCAYdK2tU03l-cYnm34.roa
File: CA4y7BxRYCAYdK2tU03l-cYnm34.roa (raw, json)
Hash identifier: FMyx8zuepJ+p7FXzTWgK3bdMHlIP3/xObGMCDDuJl1A=
Subject key identifier: 08:0E:32:EC:1C:51:60:20:18:74:AD:AD:53:4D:E5:F9:C6:27:9B:7E
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018823B5B03702533B2B357539201081C6DC
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/CA4y7BxRYCAYdK2tU03l-cYnm34.roa
Signing time: Tue 16 May 2023 08:38:09 +0000
ROA not before: Tue 16 May 2023 08:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 45.157.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 15:35:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:b5:b0:37:02:53:3b:2b:35:75:39:20:10:81:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 16 08:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=080e32ec1c5160201874adad534de5f9c6279b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a9:f4:2d:0f:92:f7:4f:ff:f7:28:89:d5:ba:
23:b1:07:55:17:a1:da:6b:06:53:16:d4:20:a6:00:
f4:43:72:6e:1d:9b:de:cb:e2:5b:76:c1:a8:24:9c:
02:6f:4d:69:5c:39:37:b5:19:45:30:35:c9:08:d1:
1c:b8:9e:2e:ae:fb:ab:20:08:ab:cc:18:a2:68:15:
03:06:81:cc:e8:96:29:ee:12:a1:c5:13:7c:cf:48:
44:39:04:14:84:46:de:0f:17:17:39:30:a7:0e:dd:
ef:cd:94:6b:0d:72:c3:e0:d0:45:de:36:d4:67:f5:
38:33:64:cd:c3:d9:97:e5:92:70:c8:92:24:2a:f5:
ed:df:b1:55:68:cf:b2:0f:06:f0:2e:10:9e:69:eb:
83:f3:55:e4:75:a7:77:23:8a:62:f3:96:30:f2:67:
67:9a:b0:6a:d3:18:da:0c:24:50:be:e4:7e:50:10:
29:ce:ef:c4:df:57:61:ee:fc:43:c2:fd:ac:5f:49:
75:25:e0:fd:c7:2b:f6:4b:2b:20:95:67:c6:39:99:
83:45:97:f5:49:e9:91:ef:95:46:38:7f:3b:81:a4:
d4:8c:78:ec:9f:50:66:48:12:be:21:22:0c:1c:9a:
83:98:c8:3c:19:60:a4:9c:3e:09:08:21:2a:61:84:
b3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0E:32:EC:1C:51:60:20:18:74:AD:AD:53:4D:E5:F9:C6:27:9B:7E
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/CA4y7BxRYCAYdK2tU03l-cYnm34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.210.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2d:4e:05:2f:f9:84:a2:6f:b8:f5:05:cb:06:f2:d8:ed:13:
c2:f6:6e:9f:07:8d:69:1c:ef:58:ef:6d:03:0b:fd:ee:4d:45:
79:2e:2c:58:ef:03:33:d6:35:c4:5d:89:f2:77:b0:0b:f7:66:
e3:93:82:ed:67:26:ed:fa:18:d1:08:82:16:d0:6e:63:99:d1:
cd:6b:cf:7a:b9:79:7f:4a:13:89:12:bf:f4:1c:d0:bc:9b:70:
d4:67:45:8c:27:32:75:c8:74:49:dd:f7:44:55:f9:8b:29:0e:
6d:7d:9c:fa:ee:1c:97:55:4f:57:bc:8c:e7:c2:29:41:1f:0a:
59:eb:17:60:84:23:f9:09:8f:f0:b0:e0:38:78:23:b8:d8:14:
67:c6:ad:f9:91:6a:dc:99:3b:7f:f0:3c:07:04:0a:b6:13:48:
c2:9d:d5:dc:22:ce:de:14:2f:da:d2:df:14:8c:2c:7e:d4:3d:
ce:24:19:9a:8a:fe:98:e6:89:dd:23:e5:49:be:5b:b1:72:3c:
ed:b6:57:68:f9:11:77:07:c7:a7:78:ce:96:96:e8:f2:03:b5:
06:c5:4d:44:e7:cf:e3:df:87:80:a3:e2:37:f4:40:70:ca:48:
e6:cb:67:07:a6:38:0d:c5:6a:97:3d:75:a6:d4:00:7f:5a:98:
07:5a:3b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org