Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/ug8Bre6CSBqKx3Zv4poMEEKvm1k.roa
File: ug8Bre6CSBqKx3Zv4poMEEKvm1k.roa (raw, json)
Hash identifier: aSSor72UZcKi9NrPgB9YmZHB7lwAofkOCnMoHjl/6r8=
Subject key identifier: BA:0F:01:AD:EE:82:48:1A:8A:C7:76:6F:E2:9A:0C:10:42:AF:9B:59
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018F80920A7C7E0AF2051C0D1465FFBDEA88
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/ug8Bre6CSBqKx3Zv4poMEEKvm1k.roa
Signing time: Thu 16 May 2024 08:43:25 +0000
ROA not before: Thu 16 May 2024 08:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 16:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:92:0a:7c:7e:0a:f2:05:1c:0d:14:65:ff:bd:ea:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: May 16 08:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba0f01adee82481a8ac7766fe29a0c1042af9b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:ff:64:85:58:95:32:a1:08:45:f8:89:68:50:
1e:ba:2e:b2:8c:93:ff:2d:f6:80:61:ca:1e:a9:18:
a3:1f:6f:db:30:d3:d4:7e:32:c6:90:1f:d7:6e:f1:
64:7a:77:6b:34:75:af:c2:c6:fb:c9:df:02:55:c6:
6b:03:20:2a:c3:f2:76:68:c9:bb:45:36:3a:87:87:
83:90:ab:60:2d:e1:88:98:80:de:56:e1:b3:a3:3d:
20:20:1c:ff:91:e5:0e:08:e7:96:b9:6c:3d:3b:1b:
29:7f:28:a6:67:91:81:8c:65:9e:a9:21:d5:bb:75:
d0:93:a4:a6:39:e3:57:7f:56:dc:de:8d:0d:60:58:
7f:d1:3e:d8:5d:b0:83:db:56:0c:fa:e2:fe:3b:7a:
fa:55:38:57:16:c6:96:d9:d6:d7:76:90:5f:78:94:
00:75:6c:49:cb:45:d3:ab:86:7e:6c:07:46:a2:cb:
0b:0f:78:ed:f6:30:0c:a9:a3:50:1e:12:f8:6e:2a:
0b:eb:72:b0:5a:52:18:39:60:17:a9:04:42:58:92:
3d:92:37:f0:8a:eb:50:e2:6e:c9:8f:11:97:b9:7b:
8a:df:ae:f7:95:5f:fd:d5:01:89:48:e8:3f:00:ce:
65:2b:19:47:1c:7e:04:1e:04:35:bd:df:14:56:5f:
03:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:0F:01:AD:EE:82:48:1A:8A:C7:76:6F:E2:9A:0C:10:42:AF:9B:59
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/ug8Bre6CSBqKx3Zv4poMEEKvm1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:6e:60:da:c3:5f:64:19:17:90:fd:1a:cb:fc:b4:2e:54:5c:
99:d3:08:40:7c:fa:b4:c7:5f:c9:c9:85:95:4d:8f:0c:f9:ff:
e4:83:69:2a:14:ae:63:a2:e4:81:66:cf:81:d7:e3:61:2d:b4:
6c:c4:7b:14:79:65:0c:a6:83:32:3d:5c:97:f9:1f:ee:7c:ea:
0f:72:5c:fe:7e:ad:53:a1:60:22:46:a6:f5:c9:5b:c5:b3:48:
2a:f7:f4:17:37:b0:d1:24:02:61:55:fe:a2:c4:16:bc:63:ab:
9e:c1:b4:49:bc:d7:6a:7d:c4:21:da:fe:3a:fc:2e:0d:14:66:
73:c5:c9:0d:e5:85:43:24:9e:79:03:ad:20:f6:07:db:26:e4:
03:f3:c0:1a:34:99:de:d7:71:b1:6c:6d:bb:c4:c5:e0:0c:d8:
8f:4e:f0:fc:d1:93:93:4d:e5:dc:18:a9:ad:82:3f:a4:5f:8c:
82:05:57:b7:2f:85:51:0f:c7:ef:3d:21:0e:96:9b:3e:c4:10:
72:7e:c4:6c:5f:15:08:67:8f:41:c1:c6:62:fd:1f:5b:c9:1b:
44:ee:f8:53:df:04:ff:47:ca:79:9d:6e:26:73:23:d9:b0:36:
e9:4a:c4:b2:eb:79:2e:40:61:09:46:a6:f3:1f:60:99:28:b9:
80:ed:1c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org