Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/RCSBVwtoG_hPDdt8mbjMOd94od4.roa
File: RCSBVwtoG_hPDdt8mbjMOd94od4.roa (raw, json)
Hash identifier: Mzk6mvYyRul2mI9Y/t/KYlilomyqGWKwuLUQ/T5/Kp4=
Subject key identifier: 44:24:81:57:0B:68:1B:F8:4F:0D:DB:7C:99:B8:CC:39:DF:78:A1:DE
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0189AF8FDA227C9C66D7ABDD0DC4C7C5C025
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/RCSBVwtoG_hPDdt8mbjMOd94od4.roa
Signing time: Tue 01 Aug 2023 05:26:27 +0000
ROA not before: Tue 01 Aug 2023 05:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151326
IP address blocks: 45.135.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 04:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:af:8f:da:22:7c:9c:66:d7:ab:dd:0d:c4:c7:c5:c0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 1 05:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=442481570b681bf84f0ddb7c99b8cc39df78a1de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:94:e0:89:8f:e0:02:cb:c0:b8:5a:a7:bb:5e:
67:11:14:4c:b1:9a:ad:c8:7a:44:60:fe:03:76:c6:
2a:94:ce:87:71:59:f1:53:48:53:4c:68:90:73:6e:
36:31:78:fe:51:58:fe:87:8d:34:62:78:f2:4e:ab:
6b:72:89:81:fb:cd:5a:d9:3d:7c:74:6b:47:a7:2f:
c5:f2:44:59:69:e1:da:0e:8d:b6:7e:1a:67:f9:fb:
e4:0f:ca:be:bc:af:57:f4:62:04:40:c9:b0:c8:50:
36:55:18:07:fc:81:8f:bb:2c:04:36:3d:b3:ed:5b:
63:f5:6a:18:0a:52:31:cd:4a:14:40:90:f7:52:ab:
07:69:bd:e4:45:ed:c6:7d:bc:ac:d6:2b:ee:7f:f8:
41:01:fc:eb:de:89:46:0b:55:39:3b:31:c7:08:5a:
04:b9:30:c6:7b:be:0a:02:5e:c7:2d:ad:db:0e:70:
53:a4:76:d4:32:e8:c5:65:3e:0a:51:93:38:e6:1f:
a2:70:9d:08:8e:07:6f:c5:41:19:99:64:00:c4:a1:
47:ea:14:22:15:f8:87:a2:d6:78:5f:96:79:3b:9e:
d8:94:48:7f:38:a1:a0:98:4b:7a:f2:e9:d8:f8:2e:
47:80:3b:7c:49:db:9c:97:e8:37:4e:1c:e5:b9:1a:
c3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:24:81:57:0B:68:1B:F8:4F:0D:DB:7C:99:B8:CC:39:DF:78:A1:DE
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/RCSBVwtoG_hPDdt8mbjMOd94od4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:34:c3:dc:20:5b:11:7d:48:72:fb:22:3e:a6:b1:9c:b2:d3:
be:18:e9:38:47:5b:f8:32:14:64:a3:95:77:40:7f:59:ed:aa:
ad:af:4a:79:dc:81:7e:81:f4:cb:49:db:db:8d:13:f9:92:03:
29:3b:c0:1d:32:e9:44:23:b8:eb:87:d0:82:13:c1:75:96:71:
4f:67:8b:7d:03:05:18:f5:9f:ac:00:4b:06:87:2f:38:e4:e9:
4d:8a:8e:81:a1:1c:d6:6e:33:86:72:a3:3c:63:96:a2:93:af:
6e:a5:55:40:11:83:a4:49:ce:41:b6:8d:25:ce:8c:2b:23:e9:
ff:e1:21:02:ba:71:7a:ef:20:b1:68:4f:75:fa:31:44:85:25:
a2:28:1d:cc:9a:93:3e:b0:df:6c:1c:24:21:dd:a7:44:80:78:
d2:4c:a7:38:37:5d:61:01:a3:96:9e:25:64:6a:c0:16:ed:43:
71:6c:3c:88:9c:eb:32:b3:b5:70:af:13:9a:98:5d:be:e3:68:
35:1b:30:9b:9f:ee:ff:83:ed:e5:9a:bd:4b:0e:e9:5f:e0:d7:
0d:2b:03:cc:1d:bd:cf:f9:b5:eb:21:92:94:a5:71:0b:b1:eb:
3c:e5:50:6b:f6:d0:d6:ed:01:2d:d3:18:78:1c:74:eb:d5:e2:
85:f4:1c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org