Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/ReMJMrnuMiLziqr7yG_Nf0GFM40.roa
File: ReMJMrnuMiLziqr7yG_Nf0GFM40.roa (raw, json)
Hash identifier: BEs9x77NmUkk0wbqv+whcbKXWbnu9+yHJYY1T/DMBq4=
Subject key identifier: 45:E3:09:32:B9:EE:32:22:F3:8A:AA:FB:C8:6F:CD:7F:41:85:33:8D
Certificate issuer: /CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Certificate serial: 01857169C97E83BB17AE374512B2B22ACE8C
Authority key identifier: 25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/ReMJMrnuMiLziqr7yG_Nf0GFM40.roa
Signing time: Mon 02 Jan 2023 07:37:16 +0000
ROA not before: Mon 02 Jan 2023 07:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 185.245.64.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c9:7e:83:bb:17:ae:37:45:12:b2:b2:2a:ce:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Validity
Not Before: Jan 2 07:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45e30932b9ee3222f38aaafbc86fcd7f4185338d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1a:6f:55:44:11:10:b6:36:cf:ff:e0:07:38:
8f:2b:0e:72:5e:2e:89:d8:28:01:fc:6b:44:30:60:
7a:db:75:de:a6:e6:3e:3f:5a:c7:5e:5f:12:12:58:
b7:ea:4c:93:c0:69:d9:d0:a5:0c:5e:cf:fd:a0:7c:
05:a2:03:b0:90:80:6c:aa:c7:42:e9:80:e4:76:ce:
25:9c:06:70:bd:c1:0a:b8:fa:b9:80:04:16:f4:ca:
ce:66:2f:6b:d8:1e:0a:4d:8b:2c:eb:42:2d:e1:79:
3d:36:07:01:92:fd:17:96:f7:51:8f:65:19:79:18:
63:62:41:d5:3d:5b:8e:e8:b8:81:2c:74:91:a0:fd:
6a:e6:4e:6e:ae:97:63:1e:4a:e5:5e:43:54:ec:2a:
61:0f:97:32:e4:3e:21:17:27:7a:c6:e4:03:f3:f5:
5f:7b:b3:46:ba:d8:56:ec:7b:d0:ae:61:bb:40:85:
e2:87:4d:cb:da:6d:33:ba:94:76:b6:89:34:69:d2:
12:d4:5a:70:0a:a8:4c:1d:26:da:1d:fc:56:e7:06:
c8:c3:e7:88:0a:d2:14:65:51:21:05:65:03:26:17:
10:8d:05:1d:f2:ab:ab:82:8a:54:8b:ae:5b:59:45:
24:5c:73:a6:b1:99:97:c3:87:a4:40:ac:5c:41:19:
1f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E3:09:32:B9:EE:32:22:F3:8A:AA:FB:C8:6F:CD:7F:41:85:33:8D
X509v3 Authority Key Identifier:
keyid:25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/ReMJMrnuMiLziqr7yG_Nf0GFM40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/Jah51ij-XsinYcR0hnmZP5xp-LQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.64.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:cc:80:60:cb:6f:65:23:b1:74:34:b0:5f:a0:e1:d2:5c:5d:
35:e1:11:fe:52:63:30:55:5a:2c:c6:97:7c:96:51:f2:ad:15:
70:18:cb:38:cb:6b:a7:65:63:53:08:61:07:63:6d:5b:19:30:
80:69:fc:0f:5a:54:4c:e2:6c:2a:a5:98:e5:9e:35:a0:3e:d1:
b8:09:c9:0b:34:ec:11:15:62:76:65:bc:e4:b1:75:34:eb:9a:
64:43:b9:a3:7e:65:fe:57:dd:af:32:d1:e7:53:c7:08:fd:74:
5e:f3:d5:61:88:7f:ef:ae:4e:02:69:e1:2d:76:c6:b7:4e:64:
ce:2a:25:e8:87:07:cd:e7:8b:08:59:51:df:8a:62:b0:ab:d4:
d3:16:b6:e1:fa:ec:c5:88:ef:6b:fc:28:67:4c:4d:9c:34:28:
a5:12:fe:4f:3b:1d:28:e8:ee:fb:8d:97:86:7e:ba:3f:89:6f:
fc:59:f3:60:ed:ac:59:d6:3e:a6:ba:e9:14:df:72:39:33:23:
e0:cd:72:a1:56:03:3a:2e:c5:7a:85:df:d6:2b:2d:a9:f0:07:
e7:69:27:a8:e1:c4:67:82:dc:4d:94:53:02:08:e8:cc:72:51:
67:57:a9:e9:51:9f:04:b1:77:05:b8:02:a3:16:a1:89:e4:13:
f9:45:d9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:44 2024 by rpki-client on console-fra.rpki-client.org