Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/w2sMoukMbB-nwjdOisNty3eH0zg.roa
File: w2sMoukMbB-nwjdOisNty3eH0zg.roa (raw, json)
Hash identifier: yfCtZ7t0f/ehZRY9uIXbEGezw89PQfxefPfKIDvDjnE=
Subject key identifier: C3:6B:0C:A2:E9:0C:6C:1F:A7:C2:37:4E:8A:C3:6D:CB:77:87:D3:38
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018AD02FA3675E658CC77EE944B4CCB54CE3
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/w2sMoukMbB-nwjdOisNty3eH0zg.roa
Signing time: Tue 26 Sep 2023 06:31:37 +0000
ROA not before: Tue 26 Sep 2023 06:31:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55154
IP address blocks: 45.157.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:2f:a3:67:5e:65:8c:c7:7e:e9:44:b4:cc:b5:4c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Sep 26 06:31:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c36b0ca2e90c6c1fa7c2374e8ac36dcb7787d338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:af:f3:10:da:39:e0:f3:b3:38:59:67:43:b6:
52:1e:de:d1:75:18:22:e8:a9:cc:82:4d:d2:6b:84:
26:0b:e0:91:db:14:d8:46:6f:a0:74:70:71:b8:10:
ab:98:e8:24:c2:ee:e4:c3:40:92:fb:c7:5a:82:36:
09:56:d5:2a:1d:25:43:d6:27:62:e2:3d:cc:77:63:
27:0e:cf:e4:4d:85:cb:8f:ff:89:f2:7d:8d:d3:7f:
36:27:86:f6:be:66:29:fe:c9:78:d3:e0:eb:8b:69:
2d:2a:d7:dd:cc:3c:bb:ab:3a:21:99:be:40:2e:01:
7c:35:1a:04:e5:c3:0e:94:af:41:0b:07:4f:c1:80:
84:88:20:3c:d2:0e:90:b5:78:75:25:d7:70:97:81:
97:e5:38:37:d1:d8:f7:22:f1:70:83:1b:d9:a2:65:
f2:eb:68:1e:99:f9:39:16:75:aa:c7:0d:f7:f1:43:
34:e9:eb:d9:37:58:aa:13:48:5c:81:29:e3:6a:87:
5d:4f:2d:b1:cd:02:5a:bf:59:c5:fc:2e:cc:2f:4e:
db:bc:b1:09:7c:9c:d4:0c:d4:10:99:9a:59:ff:91:
8e:f7:9e:69:91:76:74:da:da:5d:87:45:23:df:1a:
94:93:e0:fa:e3:55:5e:2c:ef:85:80:9c:6a:f6:ed:
14:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6B:0C:A2:E9:0C:6C:1F:A7:C2:37:4E:8A:C3:6D:CB:77:87:D3:38
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/w2sMoukMbB-nwjdOisNty3eH0zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.208.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:31:76:d0:f8:88:2d:7b:33:dd:ec:a8:86:3e:4a:6c:a6:e8:
ac:2f:77:6f:2a:0f:63:4d:37:71:55:2e:fe:02:65:af:bf:19:
14:96:ac:f2:66:5a:30:17:0b:90:25:5a:fb:49:8c:c0:14:32:
31:b7:a0:f7:7c:55:29:72:01:21:2a:20:8d:d9:f2:db:07:e4:
f3:93:7c:aa:a1:29:24:05:3d:24:6f:3d:47:99:16:ee:59:2a:
ab:ec:e5:6b:93:2d:51:e7:c9:e8:c1:d0:f2:84:67:7d:0c:af:
05:f8:95:32:a7:93:10:19:a4:a7:83:3a:6e:0b:7b:ee:7e:0b:
ef:db:ae:9f:04:c5:ae:05:ba:f2:d2:9d:20:71:4c:e0:2b:79:
df:74:65:ee:54:5d:a8:8c:9d:46:25:b5:5f:50:f8:d9:44:e6:
91:03:3b:ad:a7:d2:60:03:17:f8:70:c7:37:d9:26:0a:d6:f6:
5f:59:cd:7d:09:d0:0a:bd:b6:08:a1:2f:d3:d3:8a:79:20:76:
9b:29:a5:5a:a8:2b:5e:ab:53:36:74:cb:a7:56:d3:95:6c:6e:
ef:ea:67:41:55:13:e6:1d:b4:d3:93:1e:ff:6f:49:eb:a9:63:
14:39:c3:e3:39:39:81:47:c5:96:5f:bf:1f:38:12:f8:8a:3d:
03:47:53:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org