Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4nslxoW4vZODJDU9U3Or25lVQOs.roa
File: 4nslxoW4vZODJDU9U3Or25lVQOs.roa (raw, json)
Hash identifier: t3YHQm2xdYuEq4ow4NQr3msYs5kEnY6Kt0jZ2EizbyI=
Subject key identifier: E2:7B:25:C6:85:B8:BD:93:83:24:35:3D:53:73:AB:DB:99:55:40:EB
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018D18F5B372C5C49E6FA7105ECFC2B13E5E
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4nslxoW4vZODJDU9U3Or25lVQOs.roa
Signing time: Wed 17 Jan 2024 19:46:11 +0000
ROA not before: Wed 17 Jan 2024 19:46:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203446
IP address blocks: 45.143.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 12:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:f5:b3:72:c5:c4:9e:6f:a7:10:5e:cf:c2:b1:3e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 17 19:46:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e27b25c685b8bd938324353d5373abdb995540eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:89:6e:88:c3:a9:e1:04:3d:75:0c:c8:89:93:
65:57:81:c4:44:53:4b:b7:18:bc:d6:3e:39:f8:3a:
e1:bd:cf:06:bf:fc:a1:bf:d2:84:3d:f4:5b:99:71:
e5:66:94:c5:a1:f8:31:e5:29:62:49:63:2c:80:9a:
0b:08:8d:dc:b3:a9:a9:7e:f5:cb:a8:10:49:72:a8:
22:46:af:b1:7e:1a:43:20:df:92:a4:65:b9:c3:fd:
5c:c8:9e:75:e8:34:91:30:db:99:77:28:4f:38:75:
35:c0:1c:13:cb:45:dc:e8:3e:91:fc:48:ab:63:01:
2d:38:7b:a5:85:e4:bb:a6:ac:38:8d:71:02:ba:96:
ae:e8:3b:53:ed:52:b0:64:cf:de:07:d3:07:93:b9:
c0:a1:fd:42:2b:ed:4b:bc:8f:44:b8:7f:ff:aa:98:
a1:5a:61:4e:c6:8d:8d:2f:17:95:33:20:ff:d5:e4:
b0:f0:72:05:29:e2:98:af:e3:ec:ab:e0:7e:e4:9d:
67:20:89:94:f6:68:58:06:5b:17:e8:83:98:22:94:
61:bf:65:97:5b:f7:a4:9b:21:1f:e1:9e:cc:7d:1a:
1c:23:59:ed:40:56:24:46:44:9c:3e:29:7a:9d:03:
00:f3:02:6d:bf:0a:66:e2:1d:6e:d5:ad:e7:cb:1f:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:7B:25:C6:85:B8:BD:93:83:24:35:3D:53:73:AB:DB:99:55:40:EB
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/4nslxoW4vZODJDU9U3Or25lVQOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.6.0/24
Signature Algorithm: sha256WithRSAEncryption
41:fd:03:19:41:4a:27:8c:b4:c1:70:e9:13:75:c9:b0:fb:32:
25:ce:01:be:83:77:d7:c8:2e:04:4c:2d:5a:08:46:8c:de:2c:
7e:db:55:52:22:74:a8:b3:f1:a0:9c:f7:fd:cd:9a:f8:3f:23:
c6:90:e9:03:d2:69:7f:fd:94:a0:28:e7:fd:e1:89:75:18:c1:
ae:fc:23:e7:74:ee:05:ab:40:cb:8f:b3:c7:0b:19:40:8c:0d:
2b:c8:1d:3e:1c:45:16:a5:25:a6:af:a0:25:9c:43:53:fd:ba:
9c:5b:0e:53:00:b3:c5:f0:57:cb:75:ca:d4:ca:5f:9b:e5:a8:
c8:61:67:8b:f1:23:ee:e7:e1:13:e5:77:5e:82:6c:39:0e:08:
9a:95:4e:40:35:98:fc:7c:16:64:4f:02:cd:69:a2:d0:30:e1:
2d:96:2f:44:0e:9f:7c:84:68:d4:3c:61:da:5e:05:85:46:33:
a9:cf:a3:21:23:43:c4:ba:f0:23:f3:c5:af:44:aa:82:23:58:
fc:3b:51:8a:fd:54:ad:6e:e7:08:ff:ac:cc:1e:92:db:2a:c7:
94:52:32:7d:43:b5:3f:61:79:8b:93:e5:4e:31:61:9c:cd:9d:
37:b0:f8:eb:63:3d:de:7b:9f:a1:9e:8d:d1:5b:53:02:3b:fd:
81:0e:53:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org