Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/eQdwktuwHa0d8k21AkV9G0PyN0w.roa
File: eQdwktuwHa0d8k21AkV9G0PyN0w.roa (raw, json)
Hash identifier: mLLQdP+OLaiK9SA0OQ48uJSnk32JLHV3sBZgBeBnyPw=
Subject key identifier: 79:07:70:92:DB:B0:1D:AD:1D:F2:4D:B5:02:45:7D:1B:43:F2:37:4C
Certificate issuer: /CN=8e7dc7f298bb774a726edc433cf6b03994148b54
Certificate serial: 018571556C8E74EB96558224CC51BD417184
Authority key identifier: 8E:7D:C7:F2:98:BB:77:4A:72:6E:DC:43:3C:F6:B0:39:94:14:8B:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jn3H8pi7d0pybtxDPPawOZQUi1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/eQdwktuwHa0d8k21AkV9G0PyN0w.roa
Signing time: Mon 02 Jan 2023 07:15:01 +0000
ROA not before: Mon 02 Jan 2023 07:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206294
IP address blocks: 145.22.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:6c:8e:74:eb:96:55:82:24:cc:51:bd:41:71:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7dc7f298bb774a726edc433cf6b03994148b54
Validity
Not Before: Jan 2 07:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79077092dbb01dad1df24db502457d1b43f2374c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:de:6b:70:de:27:65:9a:3f:9a:f1:24:35:aa:
62:10:d6:6f:ba:ed:5c:d0:96:4a:47:12:71:ad:d5:
f0:2c:cc:77:52:90:6f:00:bc:df:bf:ae:10:eb:88:
a0:83:84:89:fb:9d:72:b7:84:c0:d0:23:d7:64:d9:
6b:03:b9:df:b2:ee:c7:b5:9f:d6:04:1b:2a:51:ab:
23:a7:b0:a1:88:16:a1:d6:94:0d:27:b2:0a:3a:0e:
33:fb:92:4a:63:3a:90:b2:d0:a2:e6:c6:9d:64:36:
fe:58:cf:eb:6a:8c:27:6a:18:1c:e9:bf:f3:d6:a9:
39:53:dc:40:a6:be:50:4a:a7:87:a1:99:db:42:2b:
25:91:8f:e8:3d:d8:cb:6d:c7:22:1b:64:4c:e6:da:
0f:64:a5:37:f4:0b:47:de:a6:a3:03:88:e1:86:d5:
66:fb:31:4d:91:8c:c7:07:0d:c9:1e:ff:b5:73:8c:
11:35:c4:d2:55:6e:7e:54:48:34:13:2a:a9:c2:4e:
c0:3d:82:4d:00:65:75:27:bc:eb:7f:6a:62:e1:05:
a5:85:14:82:13:06:11:20:77:5f:b0:d4:b8:a2:1b:
53:d8:99:2a:7c:1c:cd:49:47:6c:7e:6c:da:b3:fe:
e5:7b:77:af:e6:d2:1e:c0:8b:ba:b8:ea:ee:3c:39:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:07:70:92:DB:B0:1D:AD:1D:F2:4D:B5:02:45:7D:1B:43:F2:37:4C
X509v3 Authority Key Identifier:
keyid:8E:7D:C7:F2:98:BB:77:4A:72:6E:DC:43:3C:F6:B0:39:94:14:8B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jn3H8pi7d0pybtxDPPawOZQUi1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/eQdwktuwHa0d8k21AkV9G0PyN0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/jn3H8pi7d0pybtxDPPawOZQUi1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:60:68:1e:58:12:27:c5:cc:3f:06:77:bf:84:f2:ed:e1:cf:
20:93:55:fa:87:55:5e:50:7c:2a:b7:64:a4:ea:4d:12:4d:f7:
8d:46:01:0d:e9:5f:36:3b:76:1a:73:3a:96:dc:b7:53:e5:1e:
58:b5:98:2f:f3:1a:27:fa:d0:7b:9a:f2:7d:75:c4:36:0f:12:
78:f8:9e:4a:53:17:be:4e:1d:dc:db:f3:ce:2b:e0:91:bd:4f:
86:bf:6a:f5:bf:5e:7b:8b:24:e5:bd:0e:59:6a:a9:a5:91:02:
de:f8:25:77:aa:69:b5:d0:ea:be:c6:d0:b8:aa:2c:40:c8:27:
ee:86:7b:a1:5b:46:03:53:08:df:7d:10:4f:8a:18:30:e6:41:
e1:02:17:d4:13:8e:6c:58:0f:2d:7f:25:49:06:6d:4a:0a:9f:
15:31:d1:55:d6:b5:ae:5a:35:cf:59:3b:36:c7:c7:eb:ae:7f:
73:33:98:98:da:5d:ae:67:28:5d:af:53:6e:fa:3d:c1:0a:89:
4d:0c:4e:54:b8:04:cb:4e:bd:5c:a6:9e:9a:3f:9a:88:10:f5:
57:1b:02:b5:b7:85:ad:1d:1b:53:a8:8d:48:bc:5f:e0:b9:b1:
a2:58:a9:65:4d:07:25:fd:a2:49:27:ca:91:8a:62:26:fa:f2:
91:ec:09:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org