Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/j29yYbM12cukSFFjpyn3VScjwp8.roa
File: j29yYbM12cukSFFjpyn3VScjwp8.roa (raw, json)
Hash identifier: fGwmiEDTeuWosoOigI8m0hzBpyR6SGdEcRKmblWeeOg=
Subject key identifier: 8F:6F:72:61:B3:35:D9:CB:A4:48:51:63:A7:29:F7:55:27:23:C2:9F
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018572035E5D133BA7899535D6B311B4431C
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/j29yYbM12cukSFFjpyn3VScjwp8.roa
Signing time: Mon 02 Jan 2023 10:25:01 +0000
ROA not before: Mon 02 Jan 2023 10:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 45.159.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:5e:5d:13:3b:a7:89:95:35:d6:b3:11:b4:43:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 2 10:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f6f7261b335d9cba4485163a729f7552723c29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:be:c2:9e:da:f8:93:98:d0:dc:5d:f8:b1:a0:
dc:f4:d9:8e:36:0f:ca:4f:92:df:6e:b9:b7:c9:59:
db:9c:f8:17:54:e3:8e:24:0a:9b:26:ef:e5:9f:9f:
36:5a:de:32:a3:18:e3:34:0a:de:5c:e5:68:d4:5d:
2b:ce:12:50:46:5c:d3:5a:04:3f:02:2d:60:b4:d6:
c4:54:94:90:db:d5:5a:3f:c2:47:b1:a5:35:41:46:
2f:24:7d:bb:f5:77:af:f1:3f:4e:fd:f0:08:fb:8e:
e7:57:62:76:66:19:dc:2b:69:d9:48:cd:cd:e0:e4:
40:a6:54:72:91:c1:29:90:a3:a6:06:67:3a:6e:bf:
ca:43:87:e9:cf:b6:d7:41:33:49:f4:d7:7d:01:d7:
d5:6e:9a:31:0e:96:81:31:40:3b:8f:9c:a3:fc:b6:
0e:1c:e1:f3:60:1f:d3:a1:12:92:66:f8:2b:54:15:
c6:eb:d2:e9:23:51:cd:70:e5:23:2c:4c:d3:1c:1f:
cc:7b:74:f6:48:3d:c4:0c:84:b2:12:2e:61:c1:ac:
8a:11:7c:d8:54:af:d5:c5:e7:77:47:44:aa:fb:24:
78:46:a4:89:4b:16:b0:79:f1:4a:39:0e:4c:9b:f6:
ee:f6:ef:d7:7b:2b:2e:1f:78:7c:98:e2:cd:6b:bf:
09:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6F:72:61:B3:35:D9:CB:A4:48:51:63:A7:29:F7:55:27:23:C2:9F
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/j29yYbM12cukSFFjpyn3VScjwp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:6b:d5:d1:7d:83:86:cc:11:ae:81:32:d4:15:ee:22:c5:4a:
99:07:25:da:4e:f4:9a:1f:e8:90:f8:c0:ca:0e:b2:af:65:0f:
5e:52:11:8e:d9:de:f4:fa:67:c5:4a:87:09:a1:51:52:48:de:
c7:d8:a8:1d:93:24:93:17:be:ad:31:11:34:84:a1:5c:2a:66:
3c:72:27:d5:71:ac:48:c5:29:63:50:26:79:de:08:4d:52:62:
b0:8d:53:7e:f4:e9:d5:23:a1:58:73:64:1d:b7:76:c3:d7:5d:
0c:09:70:50:a3:c6:37:3d:e2:40:b8:c4:22:f5:e1:ea:32:0a:
d8:b8:68:58:7d:bf:4d:0d:13:74:21:f2:84:80:73:9d:f8:fe:
4d:0c:e2:b3:40:ad:ff:4d:01:38:45:28:46:65:3d:f7:71:84:
27:c4:a7:5a:44:7d:b4:a7:47:21:0c:49:06:55:b0:2b:11:34:
6b:69:aa:ab:71:81:5f:ee:ae:da:a6:15:12:df:e1:51:e4:0a:
1c:8d:bc:e5:e8:64:7b:33:fc:17:24:dd:2b:dc:a0:24:30:d2:
db:96:62:77:93:14:d7:99:13:95:bd:7d:8d:6b:a2:fb:e0:39:
d2:68:5b:6d:59:8f:b3:f4:73:ca:25:f5:1d:9a:e4:3d:28:c6:
6e:a9:40:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org