Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tMcHaZZslWQNuvE6spJlyCwTnic.roa
File: tMcHaZZslWQNuvE6spJlyCwTnic.roa (raw, json)
Hash identifier: kwBR/87hajIbO71j0yOXLeENPzJR6M0ty8LeeARRUHg=
Subject key identifier: B4:C7:07:69:96:6C:95:64:0D:BA:F1:3A:B2:92:65:C8:2C:13:9E:27
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C96B7D38A996399A150CA5075C7B0A73C
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tMcHaZZslWQNuvE6spJlyCwTnic.roa
Signing time: Sat 23 Dec 2023 12:47:58 +0000
ROA not before: Sat 23 Dec 2023 12:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 45.156.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:96:b7:d3:8a:99:63:99:a1:50:ca:50:75:c7:b0:a7:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 23 12:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4c70769966c95640dbaf13ab29265c82c139e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3e:63:0e:59:c3:56:b6:b8:6f:06:8b:5a:02:
61:2e:69:aa:e1:dc:e0:bc:13:1f:22:b3:fb:45:ed:
2e:d9:19:97:9f:2b:cd:fa:0e:34:89:07:45:81:06:
27:a0:e0:4a:97:6e:16:95:74:5a:14:ee:11:1b:1e:
be:cb:ad:86:2a:06:49:04:f8:47:28:37:29:8e:35:
fe:12:e5:da:60:22:66:80:91:27:2e:de:cd:cd:6f:
26:88:3d:5a:17:d7:08:29:7d:0b:f5:61:01:1f:23:
9a:f5:41:82:40:a9:ac:4f:26:a5:f2:c9:47:61:10:
11:83:c3:9c:6d:d8:02:b6:74:db:cc:45:e1:42:8d:
16:6c:91:3d:da:05:eb:2c:8d:c3:2d:0d:5c:42:46:
8e:18:60:c7:53:6b:67:6a:76:f1:90:55:ae:e1:6e:
50:0c:73:48:51:52:d8:7e:57:81:af:0e:3b:94:2a:
b8:55:63:a8:8a:b7:dc:f2:b6:6d:01:39:2c:ec:a5:
fc:d6:6b:0b:41:88:97:d0:fc:1b:dd:53:95:0a:52:
14:fc:60:4b:b9:fe:0f:8c:7c:38:a7:c1:d5:78:89:
bb:64:34:91:e9:2d:33:86:6d:bd:64:5a:65:82:f8:
0b:11:b4:d7:dc:7c:2f:7b:4b:e1:96:26:05:26:8f:
46:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C7:07:69:96:6C:95:64:0D:BA:F1:3A:B2:92:65:C8:2C:13:9E:27
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tMcHaZZslWQNuvE6spJlyCwTnic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b4:2e:cf:dd:93:be:d8:8c:9d:7a:84:87:7d:93:b2:82:9f:
d3:de:b4:28:53:ae:15:7a:89:ee:47:1d:fa:c2:4e:78:7d:ed:
c0:13:bf:e9:2e:f2:89:ea:be:cf:fb:b2:15:15:38:83:63:40:
a9:1c:15:cd:0a:69:32:e9:ef:16:76:d6:39:86:43:17:ad:96:
55:6a:c5:96:5c:c6:44:78:a9:52:51:d0:d4:0d:13:d6:09:85:
f7:69:d0:0d:1d:8a:b6:1f:c1:31:f8:ed:2e:50:c2:81:16:ea:
5a:53:21:d2:1f:ab:c1:10:67:f2:fa:c3:17:1d:d8:6a:12:64:
cc:e3:f3:e7:18:44:95:48:df:b4:52:3d:bb:dc:61:10:6c:54:
4a:69:9c:84:94:05:4f:71:4b:a7:c9:7d:ed:89:0c:f8:dd:a7:
26:09:85:78:19:77:5a:27:1f:67:23:13:9d:ac:53:41:c6:4a:
8e:19:2f:71:40:39:e1:44:b2:82:e2:b4:91:ce:21:3c:0f:da:
39:59:64:06:22:f6:f5:60:75:b0:59:bb:c5:05:90:2f:47:ee:
4f:0b:8f:b4:eb:50:85:7b:39:9c:8d:c1:d2:39:f7:f4:85:bd:
92:2b:eb:c5:b0:32:09:fd:32:6b:b9:8c:25:5f:c3:5f:4f:b4:
2a:4b:fa:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org