Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/3PG1b7HtZhvVYSKQhvXDS5sg-II.roa
File: 3PG1b7HtZhvVYSKQhvXDS5sg-II.roa (raw, json)
Hash identifier: 8q9IrSpIsOw4Iwe5N8ENz2dDoSALzO2IHFcqBTMC+8o=
Subject key identifier: DC:F1:B5:6F:B1:ED:66:1B:D5:61:22:90:86:F5:C3:4B:9B:20:F8:82
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018974E6741D1B1FAEFFD8E82E27A6E8A8AA
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/3PG1b7HtZhvVYSKQhvXDS5sg-II.roa
Signing time: Thu 20 Jul 2023 20:03:27 +0000
ROA not before: Thu 20 Jul 2023 20:03:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203039
IP address blocks: 45.155.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:74:e6:74:1d:1b:1f:ae:ff:d8:e8:2e:27:a6:e8:a8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jul 20 20:03:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcf1b56fb1ed661bd561229086f5c34b9b20f882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:19:3f:0a:76:46:eb:d8:b3:e3:ab:ad:ca:b7:
39:10:0d:3b:65:56:4f:80:88:91:3b:c9:9c:59:41:
76:c7:2f:d1:20:ad:4b:1e:a1:c4:b9:81:e2:5f:ff:
fd:45:fb:d4:66:41:ec:20:73:ee:07:ee:15:50:54:
a7:d0:ba:2b:90:ea:60:a2:39:9f:d6:29:86:c3:98:
2b:27:35:c2:17:15:50:2a:bb:66:3a:f1:3b:63:7d:
4a:63:18:c5:85:de:32:f3:da:a7:94:4e:67:7b:b8:
99:f1:aa:e1:91:6e:08:a9:98:f7:0b:cb:48:46:70:
94:59:39:2b:48:6e:d0:7d:8c:a2:1d:71:05:cf:f4:
f8:dd:0f:69:4e:8e:ec:8d:18:b2:1e:22:a6:9b:d9:
c1:5c:bb:ea:99:ca:1a:f8:18:82:f3:97:b7:32:e3:
b6:f8:11:61:f1:ab:ac:12:58:0b:09:03:08:95:a4:
ff:e9:e4:e9:12:82:13:7e:3c:b6:fd:dd:7f:47:4f:
90:40:e2:af:46:f6:1e:3e:c6:82:cf:4c:1c:15:ce:
46:d0:e5:4c:8d:89:bb:a7:1d:b0:14:94:9d:fd:ea:
a6:9c:84:86:6f:d1:3c:4c:9b:81:45:52:8a:51:c9:
d2:29:fa:77:ae:5c:aa:00:9b:46:2e:64:e4:da:fb:
26:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F1:B5:6F:B1:ED:66:1B:D5:61:22:90:86:F5:C3:4B:9B:20:F8:82
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/3PG1b7HtZhvVYSKQhvXDS5sg-II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.165.0/24
Signature Algorithm: sha256WithRSAEncryption
62:91:62:1f:68:b8:f6:1d:b0:0a:b0:3f:80:63:c0:62:60:42:
c5:24:4a:06:ce:ac:82:07:df:9b:52:9f:7e:2c:3a:2b:e7:bf:
fa:1b:e4:7b:88:c8:cd:f1:a2:10:81:20:3f:fd:b4:32:b0:13:
6c:76:d5:45:d6:67:ff:43:d9:f9:e7:1b:a8:57:c4:0e:7d:a6:
90:d1:c5:68:e3:b4:7b:b4:98:67:09:1e:a9:ab:29:c8:ad:f7:
fe:4e:d4:d5:95:3c:b0:65:13:71:36:51:a5:10:49:ce:73:d9:
b7:a3:cb:6b:6e:af:58:76:e7:81:30:77:b8:5e:91:91:3c:af:
74:b2:df:16:03:45:27:92:d5:fb:66:f7:38:c3:e5:9f:0f:39:
f0:12:2a:5d:dd:80:76:05:30:31:c4:2b:d0:22:c1:60:a3:fc:
63:26:f4:b4:5a:2e:ac:66:14:84:bb:34:47:74:21:68:0c:41:
49:16:47:5e:01:30:07:8c:97:61:23:f5:cd:33:9a:4f:70:04:
2e:1a:83:bc:f6:73:13:88:4d:bc:0d:b0:3d:82:17:8a:90:c6:
af:9d:a8:3e:be:ab:31:07:5b:56:d7:ed:02:1c:07:6e:0b:cb:
f4:0f:6e:a4:ce:1b:ed:f4:1d:1c:c1:22:73:0c:fc:44:e0:82:
2e:f5:b2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org