Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AHH3XVxuMkDDdSBeyHMbbjyXAoU.roa
File: AHH3XVxuMkDDdSBeyHMbbjyXAoU.roa (raw, json)
Hash identifier: xV9bA+9ElKmqT8febs5k7D8v6uC0AMtX3Fslex03pFU=
Subject key identifier: 00:71:F7:5D:5C:6E:32:40:C3:75:20:5E:C8:73:1B:6E:3C:97:02:85
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018EFC6D0CB5F0149EF0865DAE85FDFBD4F0
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AHH3XVxuMkDDdSBeyHMbbjyXAoU.roa
Signing time: Sat 20 Apr 2024 16:53:08 +0000
ROA not before: Sat 20 Apr 2024 16:53:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 16:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fc:6d:0c:b5:f0:14:9e:f0:86:5d:ae:85:fd:fb:d4:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Apr 20 16:53:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0071f75d5c6e3240c375205ec8731b6e3c970285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:84:e3:a6:a5:99:d8:7d:22:74:a5:8f:9b:56:
0c:46:54:ed:46:6e:34:a4:67:22:2a:62:92:de:33:
3c:6b:60:ca:83:22:29:73:83:b3:b8:21:55:4c:31:
77:19:58:12:2f:01:6b:cb:81:43:59:c4:f2:76:12:
6f:d6:3f:51:3f:ef:b9:67:87:a8:6f:ab:3c:67:fa:
9c:fe:c0:03:8e:81:40:6b:9b:6f:9c:35:b4:fb:db:
c9:e4:a2:5e:fd:e6:2c:f2:9c:f5:37:18:c9:79:04:
d5:78:00:32:09:b0:48:7c:a5:be:43:94:0e:81:85:
63:22:78:84:e0:e1:c9:97:91:85:c2:34:6d:f5:54:
c2:f5:e2:78:4d:99:ab:b5:67:e9:14:fd:07:d5:df:
e1:89:48:0c:54:b2:3a:60:b3:be:ab:4e:e7:71:16:
04:0f:ce:2d:40:af:ae:cd:ca:5a:dd:78:38:79:59:
35:25:36:dd:47:e3:5a:f2:4f:e1:a0:4f:07:3f:e2:
db:5c:7c:12:db:0d:8f:9a:2c:e1:02:7c:f7:fa:fe:
04:83:98:bc:c2:42:bd:60:3f:2c:34:01:50:3e:2a:
d8:23:00:cb:51:a0:dd:86:01:fb:c0:aa:17:0a:8a:
79:bd:04:bf:02:4a:55:58:33:cb:79:20:5e:e0:f0:
7c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:71:F7:5D:5C:6E:32:40:C3:75:20:5E:C8:73:1B:6E:3C:97:02:85
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/AHH3XVxuMkDDdSBeyHMbbjyXAoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
28:6a:43:0d:5b:4a:c4:00:9c:79:e2:14:ea:f2:98:8b:af:78:
51:34:40:e8:77:48:62:e2:fb:89:76:95:23:2f:83:43:9d:f8:
c1:1d:68:40:dc:4b:94:c9:8f:21:b1:1e:78:2d:58:45:da:93:
32:1a:4b:e4:06:a1:54:ab:67:0a:19:03:a6:a8:7c:dd:6e:b4:
5e:29:45:18:96:0d:1d:cf:44:6d:03:9f:d6:a5:fb:50:c6:d0:
02:e2:ca:24:0a:32:00:d6:fe:1f:3c:94:d6:8c:f2:e2:b4:b9:
e7:c3:76:1d:8c:65:ef:92:17:21:d8:79:4c:54:a5:ac:35:0a:
14:26:7b:63:4c:c1:f3:91:cb:01:d4:44:19:84:ad:f3:8e:c5:
7d:79:ad:59:d0:0e:d2:92:aa:db:26:00:3b:f3:7e:e6:11:38:
6f:d9:94:0f:39:89:ff:b8:f0:dd:cc:85:e8:fa:6f:2c:d3:e5:
34:2c:e4:93:be:c2:6b:b2:cd:b3:42:ac:f8:d1:fe:e4:8e:1a:
69:da:6d:44:24:c9:e4:28:6c:87:1e:c0:6f:c3:b2:54:6e:a9:
7d:cc:e1:5e:8f:b5:93:0d:61:c0:c5:80:b5:7d:62:96:8e:d9:
f7:06:64:e5:66:0a:85:e1:cd:42:40:2e:ec:49:81:c1:30:b3:
3c:0f:16:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 17:26:33 2024 by rpki-client on console-ams.rpki-client.org