Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tlQA0kEaKfUIDISGci0jvx0H6FY.roa
File: tlQA0kEaKfUIDISGci0jvx0H6FY.roa (raw, json)
Hash identifier: o7PXH3z9oGw3IKxVydzJZ487e77cWe8gLF5AsDOK/U0=
Subject key identifier: B6:54:00:D2:41:1A:29:F5:08:0C:84:86:72:2D:23:BF:1D:07:E8:56
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018A45E00792421802790C8820D68CDB9B83
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tlQA0kEaKfUIDISGci0jvx0H6FY.roa
Signing time: Wed 30 Aug 2023 09:57:04 +0000
ROA not before: Wed 30 Aug 2023 09:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43444
IP address blocks: 45.155.166.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:e0:07:92:42:18:02:79:0c:88:20:d6:8c:db:9b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Aug 30 09:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b65400d2411a29f5080c8486722d23bf1d07e856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7c:0b:e1:95:fd:77:7d:bf:21:15:b7:00:1a:
5c:fc:bf:36:29:6f:62:f5:f8:47:23:06:54:7e:68:
f1:e6:7b:7b:7f:bd:80:5e:9a:85:74:9f:62:6d:c5:
b9:98:3d:51:51:ba:a0:3d:18:c1:f7:48:c3:63:e4:
28:d8:36:6f:24:a6:3b:8d:95:29:4f:3e:3b:39:d3:
2b:d1:a9:24:9a:9d:55:a5:b1:46:ea:b1:e8:d8:44:
91:2d:22:67:06:87:e1:1c:4e:46:c5:51:da:a6:3d:
88:75:6e:c2:c6:61:78:82:46:b9:d6:70:4f:ad:62:
d3:e0:32:94:e0:da:c4:47:c4:f0:9b:14:59:3a:96:
02:ae:98:e4:05:9d:15:4d:80:37:9f:a9:3a:79:33:
47:b3:7b:3b:38:bc:04:97:f0:51:9c:61:fb:05:ab:
d1:5b:4c:1e:ac:c7:7f:7d:27:21:54:77:59:1d:db:
0b:be:f2:c7:10:8c:de:1e:46:96:a6:fb:ca:31:f5:
f5:74:79:ba:9a:33:79:5a:d2:6f:b9:df:a5:ca:70:
f7:5d:2e:f9:2f:39:63:e3:64:2e:de:2a:bd:ca:01:
2d:0c:a0:9e:4e:90:89:a9:1d:19:b5:21:4b:4d:26:
01:88:fe:ff:ee:dd:1c:5f:9f:48:7f:72:9c:99:ff:
6c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:54:00:D2:41:1A:29:F5:08:0C:84:86:72:2D:23:BF:1D:07:E8:56
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tlQA0kEaKfUIDISGci0jvx0H6FY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.166.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:75:ab:84:ea:31:d7:68:e3:31:d0:35:dd:c2:35:7d:f5:f8:
b2:d2:e8:65:4a:64:d1:97:a7:87:8b:85:3c:e7:7d:31:b4:09:
43:9b:fa:f4:81:04:86:15:8a:00:35:28:ca:d5:d4:7f:bb:5e:
ea:13:65:9d:7f:ff:c1:73:b7:9f:52:21:5d:7f:69:0c:6a:26:
37:64:30:37:5a:a7:24:0a:ec:6f:8d:60:55:27:af:88:c4:fe:
b0:f7:58:37:80:a2:4a:41:50:cf:58:12:92:9b:2d:dc:d4:5e:
23:3b:d3:6e:fa:ce:a7:31:9f:2a:9c:df:69:0a:f9:5c:28:df:
4f:4e:81:ac:6d:77:61:f9:c5:7d:3f:fc:03:59:5d:d4:58:3c:
db:44:9b:0e:1d:a9:6c:88:39:71:d7:f6:0f:4b:70:0f:8c:d6:
30:ef:1b:e3:0a:87:bd:25:32:3e:d6:51:44:3a:77:e2:b9:d8:
f1:bc:c0:a6:41:5b:e9:16:0f:5a:6f:39:ca:26:75:b9:00:fc:
50:1f:38:3c:4f:fb:0c:ee:30:ad:05:4c:86:0e:f6:21:fb:3a:
da:85:94:20:ee:ea:c1:6c:04:07:92:fb:11:2c:80:9f:5e:42:
40:fe:b2:29:2d:91:f8:12:c9:e7:24:ba:1f:dc:ec:7c:87:45:
e9:a3:0f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org