Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/r-4wtaFFjsCYFFJuCxVQ2r4foBE.roa
File: r-4wtaFFjsCYFFJuCxVQ2r4foBE.roa (raw, json)
Hash identifier: vuI15v4eM4DT9TnzVenx5vBY6fOUzO/tOL4aDCZ37+k=
Subject key identifier: AF:EE:30:B5:A1:45:8E:C0:98:14:52:6E:0B:15:50:DA:BE:1F:A0:11
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0185ED5252775B31A15D3D38460B4165A8C5
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/r-4wtaFFjsCYFFJuCxVQ2r4foBE.roa
Signing time: Thu 26 Jan 2023 09:04:33 +0000
ROA not before: Thu 26 Jan 2023 09:04:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 45.155.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 08:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:52:52:77:5b:31:a1:5d:3d:38:46:0b:41:65:a8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 26 09:04:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afee30b5a1458ec09814526e0b1550dabe1fa011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ad:a8:0d:3a:fd:a6:54:cb:ea:01:43:58:85:
b8:8c:b6:a9:f3:68:a2:0d:8a:f7:94:f2:c1:23:a8:
cd:68:87:ce:2e:a7:0f:50:5e:b6:a5:34:72:67:a1:
ae:65:57:9c:23:97:57:64:b7:1d:8b:3e:ed:fa:0f:
5a:95:1b:1b:9e:4d:0e:a6:6c:4e:84:fe:33:fe:9c:
66:9f:58:35:08:0d:d8:3d:ef:1a:9b:6c:1e:09:7e:
17:a3:17:07:62:5a:d5:a4:ca:c0:33:f8:06:1e:1b:
e1:e6:9e:2b:f5:4b:9e:22:90:f9:a9:ee:00:19:db:
b8:f8:5b:ff:56:28:34:2e:50:03:fd:d2:52:c8:ac:
ab:d2:74:0c:9a:c1:8e:7c:d3:58:8c:e1:0a:e7:31:
53:55:74:a0:23:1d:b6:a0:b5:b2:30:58:17:de:35:
a1:a9:c7:df:95:50:22:e5:b3:0f:52:eb:0f:96:2d:
71:4e:a3:ce:6d:28:21:92:19:64:e7:dd:45:75:cd:
60:7f:b2:7a:2a:65:e9:b9:b6:75:74:00:fa:74:f1:
5c:fa:97:a4:e2:f4:8d:bb:ca:35:d6:5c:1b:51:a4:
a5:a0:77:8d:e8:8c:80:27:78:69:58:f9:f2:ac:70:
b1:c6:0f:a2:d4:21:60:b2:67:91:95:32:46:83:ee:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EE:30:B5:A1:45:8E:C0:98:14:52:6E:0B:15:50:DA:BE:1F:A0:11
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/r-4wtaFFjsCYFFJuCxVQ2r4foBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.165.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:a9:72:20:20:72:4f:c7:7b:30:ea:2c:6c:98:b8:80:60:b9:
0e:7d:38:f7:57:6b:f5:58:08:2e:86:90:7c:84:b3:ef:ff:fb:
9d:04:9d:e7:1c:08:b1:ff:26:b9:a1:fb:d4:48:ac:32:39:b4:
81:c6:df:19:f9:f6:e3:1a:3a:99:6e:0f:f7:16:7b:fc:8d:c0:
b0:08:0f:19:63:28:68:17:b8:fd:55:9d:c8:d7:22:20:ff:91:
9b:ad:4f:51:fa:5d:7b:43:a7:43:74:28:51:ef:9f:85:af:5e:
9e:fb:86:05:de:85:87:14:65:98:43:d7:23:a4:ed:3b:14:8f:
dd:9b:11:e6:3b:f3:d0:8a:45:be:d2:e0:fe:ab:b7:1b:7d:05:
20:4f:42:01:92:1d:69:46:15:0c:23:22:22:f8:c9:fc:f2:82:
61:5b:91:1e:50:4b:b4:05:bd:4f:21:38:d4:b6:ce:5c:87:56:
7a:b3:b7:14:a2:4a:70:b8:91:b0:30:e2:f1:ad:08:12:31:1c:
80:a0:98:0d:40:2a:a8:df:4a:dd:a8:81:b1:bb:67:66:05:93:
c2:81:1b:29:61:ea:28:a0:ea:4b:5f:fa:74:33:a3:c1:0c:9f:
a4:d4:a4:55:61:02:f2:6e:5a:79:9f:e0:ba:5a:61:14:43:5f:
5c:1c:29:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org