Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/o0lOip4KZeDR6xj2dyXtjepfpyM.roa
File: o0lOip4KZeDR6xj2dyXtjepfpyM.roa (raw, json)
Hash identifier: YG4/JAYwrF9aH+dvtow+chdw3gwfk/XvnCKrJJyFz2Y=
Subject key identifier: A3:49:4E:8A:9E:0A:65:E0:D1:EB:18:F6:77:25:ED:8D:EA:5F:A7:23
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 018D6998958B01280BA836E39D2B9A978F94
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/o0lOip4KZeDR6xj2dyXtjepfpyM.roa
Signing time: Fri 02 Feb 2024 11:33:43 +0000
ROA not before: Fri 02 Feb 2024 11:33:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.89.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 16:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:98:95:8b:01:28:0b:a8:36:e3:9d:2b:9a:97:8f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Feb 2 11:33:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3494e8a9e0a65e0d1eb18f67725ed8dea5fa723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:47:56:b9:0f:85:57:71:bd:1a:66:f4:fe:f5:
72:17:e0:d4:30:5a:d2:6d:fd:47:95:dc:36:74:0f:
0c:aa:81:ef:82:6a:e1:6c:4a:1c:e2:ce:9a:6b:d6:
8c:b0:32:ee:56:bf:77:4e:ad:1a:de:ff:41:67:8f:
b5:86:0c:cd:30:31:b7:c3:bb:10:40:19:a8:64:14:
1c:b9:e7:f8:25:cd:70:da:ab:9b:4b:32:ec:39:d1:
7f:60:16:65:d5:96:dc:11:a7:cf:5c:c8:3b:8b:ff:
16:22:08:26:7d:b8:fc:bd:b8:21:bd:55:fe:a1:4e:
a6:8c:d7:38:71:22:fc:12:41:49:26:ab:3c:b7:a1:
bd:fb:a6:4e:7b:7e:c4:52:5f:bb:8f:e4:8a:11:4c:
3d:01:20:64:76:a1:e5:dd:04:c9:40:28:b3:0d:75:
e0:73:e6:ce:6d:8a:eb:40:be:be:5b:ba:88:4b:39:
8a:2e:24:69:07:47:87:f7:b8:86:a3:c5:62:1f:3b:
ec:93:91:f0:d9:51:1b:23:1d:1a:3e:84:6f:d1:f4:
43:f1:e7:6a:c3:f5:dd:4d:c3:c3:63:e5:77:86:73:
2f:40:21:6e:91:41:47:5f:66:48:61:0c:60:11:0f:
41:c0:3c:6f:6a:29:0b:d2:b1:2e:19:cf:02:9a:35:
71:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:49:4E:8A:9E:0A:65:E0:D1:EB:18:F6:77:25:ED:8D:EA:5F:A7:23
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/o0lOip4KZeDR6xj2dyXtjepfpyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.29.0/24
Signature Algorithm: sha256WithRSAEncryption
81:e3:37:90:28:10:fb:3f:ea:4c:13:ea:a9:67:c8:57:d3:6d:
9e:6b:6a:0d:70:7b:28:14:f4:35:89:22:1f:3e:ed:25:dc:6e:
8c:b5:d2:56:c7:b5:c8:f3:da:63:83:d1:16:27:4d:47:b5:68:
c6:74:7c:00:a1:6d:b5:3b:6e:19:1c:ec:1b:05:40:93:c0:03:
ea:7d:80:f5:9c:46:4a:9d:c8:b4:d3:1f:22:89:16:c0:bd:b2:
8b:3e:bd:73:05:3e:2a:4e:43:e5:86:bc:b4:ce:6e:31:fa:ef:
6d:e6:59:5f:00:8c:7b:46:f0:d0:e8:ae:a0:25:cd:77:46:76:
7f:9c:dc:53:14:08:48:87:e0:a3:cd:de:80:fe:18:e7:c3:3b:
1b:21:c5:52:87:f3:38:ec:e8:21:6a:17:64:fe:fd:ff:d5:7e:
b0:e2:91:1d:af:af:c3:95:cf:7b:af:55:97:3e:ba:bc:7a:86:
7c:82:ab:46:7c:d4:de:6b:97:7c:ac:e4:cc:a0:68:11:ff:07:
b3:01:44:39:b4:b9:bc:95:f9:d0:c9:b4:8a:3c:1e:9b:bf:d0:
46:91:43:39:1b:ca:a5:e3:ac:ad:e5:d8:99:3e:c1:bf:15:16:
0a:e2:d6:27:26:60:99:55:05:eb:f5:69:81:05:8e:35:ef:25:
6e:97:fe:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:11 2024 by rpki-client on console-ams.rpki-client.org