Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/e9m59xwItc5rQVrIrr8ZPsNEwgI.roa
File: e9m59xwItc5rQVrIrr8ZPsNEwgI.roa (raw, json)
Hash identifier: C9c5R9AZVxm+hHPbnfxyhmbgmUT2xkNR1IFeSbY9DN4=
Subject key identifier: 7B:D9:B9:F7:1C:08:B5:CE:6B:41:5A:C8:AE:BF:19:3E:C3:44:C2:02
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018D54E65D186DAF501F6D61E1F378FF4488
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/e9m59xwItc5rQVrIrr8ZPsNEwgI.roa
Signing time: Mon 29 Jan 2024 11:06:39 +0000
ROA not before: Mon 29 Jan 2024 11:06:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:54:e6:5d:18:6d:af:50:1f:6d:61:e1:f3:78:ff:44:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 29 11:06:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bd9b9f71c08b5ce6b415ac8aebf193ec344c202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:86:0f:44:24:f3:bd:cc:2c:4e:85:cd:42:d1:
68:a0:4e:71:60:c5:63:67:4e:d3:b5:c4:6f:35:3f:
37:ac:f1:bf:9a:c9:2c:1e:0b:12:45:09:74:cc:52:
f2:6e:fc:19:d3:a0:4e:b6:a8:ac:25:4d:77:49:a3:
8c:8a:af:86:b1:ad:83:31:a5:41:73:d5:b6:61:64:
d2:28:0c:20:06:10:74:bc:9f:86:01:94:86:fb:0f:
54:a3:a2:d5:43:0f:57:c3:ba:3a:28:1e:48:76:55:
2a:de:ec:59:18:e7:98:be:2e:b5:d2:75:20:79:30:
55:2c:f1:d1:5a:fd:01:ea:03:57:54:e3:f8:99:d5:
41:62:45:8e:9b:0a:df:3c:97:d6:43:d6:0f:ac:8d:
2b:02:0f:61:72:cd:5c:7f:d1:af:c3:d0:61:07:ba:
43:1f:33:d3:40:1c:96:43:50:50:8e:16:8e:98:4e:
21:06:47:50:13:e2:ae:d2:22:84:57:b9:2e:04:f3:
9b:e4:5c:88:42:8a:a9:2f:e7:d1:36:84:da:03:3d:
ee:a0:e5:f1:cb:20:57:a1:49:c3:af:92:16:23:bb:
ad:79:63:e2:4a:b1:b8:df:8b:a5:62:83:16:08:3c:
1f:22:cb:72:02:88:fd:58:a0:26:85:a7:0c:35:ee:
7b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D9:B9:F7:1C:08:B5:CE:6B:41:5A:C8:AE:BF:19:3E:C3:44:C2:02
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/e9m59xwItc5rQVrIrr8ZPsNEwgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.247.0/24
185.199.151.0/24
185.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
30:31:69:6b:97:89:0f:cf:44:3c:5a:26:af:1a:c2:e1:9e:13:
e0:a9:01:8a:bc:87:69:d8:4e:4c:b5:f8:22:c6:e1:38:9d:0d:
f0:2d:ee:8f:3c:13:b7:12:bc:8c:a1:d2:ce:95:66:ae:fd:82:
3b:e7:86:de:05:6d:7b:5b:9d:f2:fa:9e:71:7e:5f:1c:72:76:
37:83:14:dd:f9:da:24:fb:6d:76:f1:be:f0:84:f6:c9:d7:e6:
75:f4:b8:0f:e4:b4:95:f5:5f:80:9c:ed:31:94:c9:42:30:c7:
3d:1d:ce:e6:d5:26:73:b3:f5:d7:29:57:21:c6:a3:99:55:ad:
4d:2a:26:13:7f:31:64:9f:0f:13:c8:88:dc:27:df:be:a1:92:
dd:8d:b1:c2:dd:11:f1:08:9e:e6:91:f0:36:5b:8d:30:f7:b4:
59:2d:1a:62:ad:15:73:b9:60:f9:71:a4:39:ed:f5:11:7e:80:
81:b7:55:44:5d:0c:c1:c6:c9:ad:b8:01:19:c8:9c:ca:81:5e:
e6:9c:ec:93:36:2b:d8:3a:7b:15:7d:2b:54:c6:f4:a1:e0:12:
bf:29:8a:f2:1b:d5:e7:a9:cc:61:a3:be:4f:f5:29:e3:a5:a9:
ff:94:69:16:63:98:6c:34:ef:d1:78:2c:67:75:8e:27:4e:00:
56:21:d8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org