Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o7LzWDdz6j77MpxNmK8nMSeXg4c.roa
File: o7LzWDdz6j77MpxNmK8nMSeXg4c.roa (raw, json)
Hash identifier: xSQAzI6FOztNXrLeaPjZQ0VRV0MUB4HvGGSFfm/REiQ=
Subject key identifier: A3:B2:F3:58:37:73:EA:3E:FB:32:9C:4D:98:AF:27:31:27:97:83:87
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D65BF0FDA6D43D24099BB2D83492F8F47
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o7LzWDdz6j77MpxNmK8nMSeXg4c.roa
Signing time: Thu 01 Feb 2024 17:37:16 +0000
ROA not before: Thu 01 Feb 2024 17:37:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43350
IP address blocks: 45.67.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 05 Feb 2024 18:41:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:bf:0f:da:6d:43:d2:40:99:bb:2d:83:49:2f:8f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 1 17:37:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3b2f3583773ea3efb329c4d98af273127978387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a7:41:2a:2c:d5:dc:c7:8c:aa:d5:da:b1:78:
d7:09:6c:2e:a4:c1:63:e4:a3:41:c1:54:3c:e9:3f:
1d:1a:90:ba:7b:88:c1:81:c5:d7:8a:60:50:84:08:
ad:ab:2b:89:32:94:93:eb:2a:1c:45:76:df:96:55:
97:1c:b5:12:fe:3c:7e:73:f4:d1:8a:1e:a3:d2:e1:
84:56:96:f5:d3:0c:b9:cf:c0:5c:06:23:f7:18:50:
c2:a8:2b:5c:0e:29:fe:d2:96:d6:92:79:c0:f6:06:
4b:83:1e:ec:b5:4a:6d:7b:60:16:21:6f:ea:5f:ae:
5e:39:f1:fe:68:a4:8b:c0:84:82:d3:63:c9:c0:54:
b9:c9:48:1e:28:d9:66:d2:1b:7a:88:59:95:92:b2:
7e:41:d0:e9:fc:72:2f:b6:67:fb:67:c0:ab:87:3f:
e7:57:0c:32:1c:7c:eb:ed:2f:b2:40:30:2e:6e:c5:
a7:1c:c7:90:7a:42:b1:c6:ac:52:76:e1:e6:09:6d:
cb:3a:a2:f4:86:8b:55:03:5f:2f:4f:a0:77:55:19:
68:d9:2a:c6:c5:a3:da:f6:bb:03:bd:b5:69:9b:06:
ee:f9:85:7c:e1:38:6f:5d:8f:4b:05:87:ec:bd:bf:
85:5b:d0:71:3f:e4:7e:d7:24:c1:01:08:b4:58:77:
7a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B2:F3:58:37:73:EA:3E:FB:32:9C:4D:98:AF:27:31:27:97:83:87
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o7LzWDdz6j77MpxNmK8nMSeXg4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.120.0/22
Signature Algorithm: sha256WithRSAEncryption
49:41:3f:55:0c:3b:dd:69:4a:03:0a:99:fd:91:92:60:a1:c3:
a1:b8:51:8b:47:19:50:33:19:5a:65:02:9f:ef:51:4f:34:2a:
37:67:97:ba:98:f9:f8:85:1b:61:79:e4:79:fa:e4:13:2e:53:
bf:18:41:e7:58:87:7a:a1:50:f0:b2:82:48:4f:7c:f4:50:bd:
ea:83:d6:05:9b:58:0b:3d:a0:c2:c0:71:b3:e6:8c:8b:c3:ca:
2a:1f:bc:64:41:89:b2:85:b1:83:e7:0c:65:de:36:d4:9f:b9:
f7:49:c3:49:51:90:a1:c0:95:74:0e:5d:12:a7:50:e0:b6:f4:
d7:cb:b0:d5:7e:15:a8:1c:60:2d:19:9a:1f:7a:85:61:94:bd:
84:ad:a9:f6:d6:9f:14:c1:25:ef:d5:66:54:7f:51:60:8a:a4:
72:89:ba:0e:57:53:3f:e0:0e:62:55:93:5b:f8:dc:14:41:f9:
82:e7:dd:8b:03:b3:37:37:22:99:aa:d3:05:a8:6d:34:e8:5d:
84:3e:08:f7:c8:ac:65:36:65:17:d7:c1:15:21:b2:4c:e0:b0:
a8:21:ee:fd:58:7f:cf:2e:e0:2f:dc:56:33:e3:a2:ac:2d:2f:
b6:34:fa:be:19:e3:a7:25:ea:77:22:07:1c:ff:6a:b9:e8:66:
60:f2:9e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org