Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/X2pDserIzVE8jeYQ1C3zItHInHo.roa
File: X2pDserIzVE8jeYQ1C3zItHInHo.roa (raw, json)
Hash identifier: lJPQXtquQE5DqDy6ofDKFAQ+pAGXDMlD0xfqj98fFKY=
Subject key identifier: 5F:6A:43:B1:EA:C8:CD:51:3C:8D:E6:10:D4:2D:F3:22:D1:C8:9C:7A
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 018C152A485AEC8B75910C2886A94DB8119D
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/X2pDserIzVE8jeYQ1C3zItHInHo.roa
Signing time: Tue 28 Nov 2023 09:02:21 +0000
ROA not before: Tue 28 Nov 2023 09:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.145.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 06:16:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:2a:48:5a:ec:8b:75:91:0c:28:86:a9:4d:b8:11:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Nov 28 09:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f6a43b1eac8cd513c8de610d42df322d1c89c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:61:2c:23:df:0b:7a:67:d7:c3:b8:37:24:78:
8f:26:34:0a:f1:19:4d:85:7b:45:f0:e3:e1:27:bd:
83:bc:2c:ed:7f:1b:1b:7c:6f:a9:5e:59:fd:d0:91:
b3:ad:6f:56:e4:c3:04:db:ca:4d:0f:0b:0f:91:7a:
a4:1a:af:43:df:58:8a:0a:7a:4a:85:a8:5e:7a:2b:
43:48:af:16:2f:7e:a2:57:66:46:1c:8a:17:2e:72:
21:6f:dc:74:58:21:32:2c:87:1f:df:85:bf:b4:35:
c7:03:82:23:0e:30:15:fe:ee:c1:d3:91:c3:d5:26:
09:05:35:6e:40:49:f3:7c:4b:1d:80:fd:5d:d3:5d:
49:51:5b:b6:af:90:9e:f1:ed:e2:4e:c5:82:8e:5a:
e6:dc:e4:d4:de:6a:20:04:c4:d7:fb:b4:fb:e4:d0:
9a:78:de:e4:f8:dd:0c:03:f6:f7:5d:28:7e:fd:4f:
9f:86:3a:df:db:90:f5:12:4a:21:cc:30:53:42:81:
ff:b9:d2:00:3d:b7:a5:26:68:48:1d:a2:91:8a:66:
dc:79:dd:76:26:f6:e3:ac:1c:d5:31:d5:56:20:0c:
1a:ae:77:6c:d8:60:d0:35:e0:de:39:8e:2b:59:8b:
6d:70:86:28:86:7e:e6:bf:e4:52:66:f5:82:cc:2d:
8f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6A:43:B1:EA:C8:CD:51:3C:8D:E6:10:D4:2D:F3:22:D1:C8:9C:7A
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/X2pDserIzVE8jeYQ1C3zItHInHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.148.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:f7:67:fc:ba:29:06:64:96:e9:0b:19:92:54:98:f2:b5:28:
4a:02:52:c1:56:df:d1:ce:a7:bf:38:aa:ca:6d:2f:58:a5:24:
c9:c7:30:68:9d:5f:91:17:7f:37:f1:4d:82:a9:be:bc:99:2c:
39:c4:db:ae:e3:ed:ae:d8:ff:d2:a5:54:74:d6:5b:ba:f5:e3:
fb:1d:3a:de:ee:44:b6:ec:4d:0e:85:70:d7:9b:c3:38:52:26:
68:43:84:9b:4d:a0:f8:34:07:5d:47:29:41:56:d4:07:5b:d1:
81:9b:8c:85:ce:12:00:b6:d8:d5:e2:a5:03:16:bf:27:8b:d7:
73:18:51:d2:87:c2:76:50:9d:a2:69:b6:93:3a:3c:30:73:a6:
41:d5:35:ce:ce:7a:54:98:6d:02:8c:dc:6e:1f:ad:fc:7d:84:
59:96:17:f2:52:bb:3f:88:64:47:90:16:db:db:a8:ab:72:31:
a6:fd:d5:fc:90:a6:40:cd:14:18:18:80:69:17:c7:8c:b5:59:
52:37:00:e2:90:8c:e8:46:a7:f9:66:5e:65:b9:fd:ed:21:22:
06:fa:b8:d0:bc:c1:a9:f2:7e:7c:4b:86:c3:36:2d:e3:11:e8:
7b:95:7e:8f:60:23:00:e7:1c:fb:2a:cc:2c:ae:ab:e1:66:e2:
34:2f:eb:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:54 2024 by rpki-client on console-fra.rpki-client.org