Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/i5bT6qMb5iuH681DLnLKVUV4w_s.roa
File: i5bT6qMb5iuH681DLnLKVUV4w_s.roa (raw, json)
Hash identifier: yEZMjDUnw0QS63WE8oiBkJK0vNPRi44/rUg9mAPDp/8=
Subject key identifier: 8B:96:D3:EA:A3:1B:E6:2B:87:EB:CD:43:2E:72:CA:55:45:78:C3:FB
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D692B0ABC9E2E995A273928329D2C7B95
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/i5bT6qMb5iuH681DLnLKVUV4w_s.roa
Signing time: Fri 02 Feb 2024 09:34:04 +0000
ROA not before: Fri 02 Feb 2024 09:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57013
IP address blocks: 45.159.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 08:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:2b:0a:bc:9e:2e:99:5a:27:39:28:32:9d:2c:7b:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 2 09:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b96d3eaa31be62b87ebcd432e72ca554578c3fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f9:0d:3c:e0:dd:54:7f:84:ad:96:eb:0c:5a:
c9:68:d0:8b:fb:ac:c5:fc:37:e3:08:0b:df:0a:3c:
9f:f2:a4:db:ef:81:77:ab:e0:bb:78:d6:67:97:26:
a7:e0:6d:ed:76:d0:23:60:79:64:26:2f:a1:23:7b:
9d:c5:b5:c8:4c:2c:bf:ee:fc:5a:94:ad:7c:ce:39:
18:db:d8:96:d3:ce:95:89:9d:bf:b6:12:56:fc:bd:
67:de:5b:70:b9:e5:80:4f:d1:05:c4:06:d0:32:71:
84:55:b2:2a:ad:a3:64:ff:88:3b:95:4a:7a:d2:06:
3e:f2:06:a1:99:10:91:4b:5b:0a:e1:aa:99:a6:96:
8a:e1:39:4d:1a:7b:4f:ff:17:95:e1:60:21:76:eb:
9b:12:4e:d2:1c:bd:2f:67:6a:4a:4b:cd:2c:1e:0c:
60:1b:c3:4b:03:7d:8b:3b:ad:e9:08:af:6a:75:42:
fd:2a:a8:68:92:86:92:03:31:85:ee:bf:35:55:87:
50:9e:bf:4f:fc:1e:e8:4e:e1:80:4b:7a:a6:2f:f4:
99:d7:b6:a2:11:16:f5:1f:79:ad:ff:77:ce:53:db:
20:25:c0:3c:c6:0a:25:9f:73:16:cf:d0:7c:75:44:
76:b6:05:7e:b0:b9:42:7e:d8:3e:22:4a:67:25:31:
e7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:96:D3:EA:A3:1B:E6:2B:87:EB:CD:43:2E:72:CA:55:45:78:C3:FB
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/i5bT6qMb5iuH681DLnLKVUV4w_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.86.0/24
Signature Algorithm: sha256WithRSAEncryption
95:a1:c4:e8:94:f1:94:40:2c:5e:85:b3:ef:41:be:12:0d:7b:
e9:21:ee:e6:cd:7e:e6:b0:2c:4e:92:8d:86:fa:be:b7:f7:8f:
40:c0:a6:ad:c6:51:12:24:67:7b:c2:ef:19:f0:74:96:91:99:
58:c6:78:40:9b:bf:3e:68:0f:50:1c:e4:c5:70:3f:01:76:6f:
7e:f8:62:3f:a6:d6:0a:25:47:a5:63:20:74:d2:22:4a:33:1f:
5c:bf:77:64:f6:e2:d6:23:ed:0b:26:9a:8f:5c:b8:04:b9:72:
ac:4b:52:7a:39:fe:31:f0:3e:fe:ba:86:84:94:8c:42:06:53:
f2:09:4b:0d:d2:5d:f3:0e:d4:51:ab:fe:a9:d2:32:5e:50:fb:
c0:26:ec:9b:84:f2:ab:c0:3e:e7:3e:3e:95:70:79:cc:ae:7b:
f1:b4:db:ed:1e:1d:f4:e3:e3:66:2c:ac:c1:bc:f6:d6:7a:2f:
a0:bf:d9:5c:f8:e2:96:f5:20:0d:c6:d4:f4:b4:71:8f:03:ae:
e5:09:b6:ba:1e:c0:f5:c0:e3:18:96:8e:8d:85:d5:e1:6e:66:
68:d0:32:d3:d9:8e:5e:c1:86:0e:3a:77:b1:1e:89:eb:7b:9c:
9e:0d:58:39:2f:e1:86:47:52:e9:0d:49:00:06:b4:38:31:7c:
e0:80:1a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:49 2024 by rpki-client on console-ams.rpki-client.org