Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AH4oC6eqTVTOMNtlLRRiVMhjM3s.roa
File: AH4oC6eqTVTOMNtlLRRiVMhjM3s.roa (raw, json)
Hash identifier: kjaogDA6AokhkVwjIazUHmYhbeH528bX5zLWOX7dfps=
Subject key identifier: 00:7E:28:0B:A7:AA:4D:54:CE:30:DB:65:2D:14:62:54:C8:63:33:7B
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0185B9CA69814A0A5137B123D201919D3C9C
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AH4oC6eqTVTOMNtlLRRiVMhjM3s.roa
Signing time: Mon 16 Jan 2023 08:55:28 +0000
ROA not before: Mon 16 Jan 2023 08:55:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59651
IP address blocks: 45.155.164.0/24 maxlen: 24
45.155.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 08:34:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:ca:69:81:4a:0a:51:37:b1:23:d2:01:91:9d:3c:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 16 08:55:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=007e280ba7aa4d54ce30db652d146254c863337b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:12:3e:60:14:01:f7:d5:2e:c3:d8:15:b8:63:
ba:4c:7e:3f:50:8b:34:61:27:b9:f5:22:80:a2:29:
19:8d:69:0d:e8:ee:7b:ce:31:6a:22:c6:41:32:6b:
af:36:9a:6d:a7:ac:13:18:22:11:45:15:f6:15:6f:
c2:0e:01:db:30:64:24:e1:5d:64:15:c5:a5:12:17:
01:fd:56:19:fc:67:0f:82:fe:68:a0:d9:31:5f:d8:
32:7c:03:6e:20:2c:f7:65:f5:fd:30:10:62:36:02:
76:20:3b:f0:85:84:01:97:1f:2a:6e:9e:97:00:fc:
b9:d7:71:0e:5e:fd:72:d0:2d:d2:e9:bb:41:88:6f:
e0:79:57:e8:ed:26:97:fd:a3:80:cc:f4:8b:a8:6b:
db:02:96:5e:05:69:83:fc:8c:83:a6:c2:3a:14:b7:
29:c5:e2:ff:ea:60:8c:42:4e:1c:cc:04:e5:7d:69:
6d:89:09:05:fd:6d:8d:2a:84:6b:41:dd:e2:58:ac:
cd:06:88:d9:fa:64:4f:3d:31:a1:ac:c5:c2:0a:66:
31:44:8a:3e:26:00:b0:30:82:f3:0f:3e:03:61:dc:
d4:b4:43:8c:be:66:d3:8a:65:ff:b4:d4:25:83:d9:
a2:9c:0d:f3:a6:33:04:45:ad:88:1d:fb:1a:ca:c3:
4e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7E:28:0B:A7:AA:4D:54:CE:30:DB:65:2D:14:62:54:C8:63:33:7B
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AH4oC6eqTVTOMNtlLRRiVMhjM3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.164.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:87:43:a1:0a:7c:dd:1d:35:2a:67:55:e8:7e:40:5a:8e:98:
31:69:2e:51:af:c5:4f:b0:73:75:11:98:3b:bd:c7:bf:a5:ec:
02:12:a2:47:27:37:4b:f6:36:f6:fb:cf:02:24:cc:0f:dd:36:
c9:7e:66:13:40:e0:52:6b:b3:e3:4a:3b:f3:b6:d1:39:3b:da:
5d:b5:8c:ab:62:38:4e:fc:d5:54:e4:d0:b7:20:f6:c5:cd:88:
8b:53:c0:7d:ce:f8:e1:5d:15:da:37:0c:3c:b5:ab:2c:06:f1:
22:b1:41:10:f6:75:d9:a5:16:db:00:e1:c0:4f:71:a4:7d:1b:
4d:9b:58:c5:2d:c1:5d:f5:52:1a:a7:82:b6:84:11:29:50:f7:
63:c9:75:bb:40:17:06:8f:9d:bf:6d:b4:d7:5b:12:85:79:85:
d1:4c:b8:4c:d7:9d:f4:df:55:22:2c:96:6f:40:b2:7f:03:9d:
de:f0:aa:83:d9:16:6e:1d:6d:48:5d:7c:cd:de:b4:62:f2:d8:
47:13:fe:1a:e8:b9:fa:7d:ed:c8:99:4c:ca:42:64:b4:a0:63:
f1:f9:c1:a8:bb:91:f5:37:3e:58:84:20:27:35:80:03:80:41:
82:ab:2c:11:d5:06:03:a0:e2:fd:cd:d1:74:f3:cf:ea:9d:a9:
17:22:60:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org