Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/2U4Od8fKuEqvLmTw-ev5nmnISIU.roa
File: 2U4Od8fKuEqvLmTw-ev5nmnISIU.roa (raw, json)
Hash identifier: ItPQEv/ThfKO1kD/84YvU2S6/+3PiY+lzvoMxPR3mqo=
Subject key identifier: D9:4E:0E:77:C7:CA:B8:4A:AF:2E:64:F0:F9:EB:F9:9E:69:C8:48:85
Certificate issuer: /CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Certificate serial: 0190C5E259F3748609826ADE27D28627DD91
Authority key identifier: 4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/2U4Od8fKuEqvLmTw-ev5nmnISIU.roa
Signing time: Thu 18 Jul 2024 12:47:44 +0000
ROA not before: Thu 18 Jul 2024 12:47:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 45.133.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 05 Aug 2024 15:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c5:e2:59:f3:74:86:09:82:6a:de:27:d2:86:27:dd:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561
Validity
Not Before: Jul 18 12:47:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d94e0e77c7cab84aaf2e64f0f9ebf99e69c84885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3b:93:aa:3f:62:f3:13:6a:0e:a6:9e:69:64:
3b:c5:b5:c3:74:f3:ed:bf:14:4d:a2:bf:3c:21:d6:
d2:65:af:f8:8c:ff:09:e0:7a:90:4c:3e:24:1e:75:
73:3f:2d:2d:7e:d6:0f:0a:d0:a0:7e:71:1e:7c:81:
57:7b:c2:40:05:bc:f5:ef:a0:fa:0a:bb:31:ec:f3:
3f:77:63:52:c1:9f:29:50:7c:f5:ea:f7:23:c9:56:
57:d7:f3:02:6d:dd:73:e4:e1:42:65:73:0f:54:41:
9a:3b:d5:95:fb:57:81:d9:f4:74:e1:f0:ef:31:39:
14:b0:a8:07:2d:ab:fe:d1:2a:b6:12:0e:9e:fe:de:
a2:da:c8:34:cd:bf:dc:27:dc:56:0a:63:46:e5:5a:
c5:db:4a:96:99:8f:fb:29:d0:7a:2b:e7:83:7c:2a:
82:81:73:3e:7f:96:ab:8b:0d:0a:ba:e4:91:d1:18:
f4:03:f6:fe:b0:ad:15:b5:f8:91:29:dc:5c:39:b6:
35:fc:3e:f9:e4:3b:23:2a:1f:fb:02:a9:ba:98:e8:
8d:d1:d5:bb:48:e9:6b:cd:c1:13:56:cf:76:20:c3:
16:56:3b:94:20:c2:60:b0:74:ff:0e:4d:b0:c9:4a:
fe:4c:5c:9f:9c:08:99:96:56:dd:59:52:3e:d7:c6:
25:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4E:0E:77:C7:CA:B8:4A:AF:2E:64:F0:F9:EB:F9:9E:69:C8:48:85
X509v3 Authority Key Identifier:
keyid:4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/2U4Od8fKuEqvLmTw-ev5nmnISIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.144.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:22:71:ef:13:64:16:55:5b:7d:77:7d:ff:cb:ee:27:d8:f0:
ad:d8:cb:45:99:5b:05:16:45:86:66:eb:cc:27:8c:ed:9a:3c:
3b:42:26:a0:fa:b6:1d:46:db:8e:d1:81:5a:65:8e:c0:12:23:
65:42:97:1a:0a:49:e7:de:f0:9c:6d:cb:1c:88:6a:ef:0f:ed:
a3:8c:51:d8:b2:97:67:bd:3d:60:63:a2:94:05:f0:98:28:9e:
dd:3b:22:ae:b9:70:b4:7b:39:3f:73:79:93:34:3b:4e:c3:ee:
41:1e:5c:d4:ec:a2:f4:68:9b:6b:5e:98:43:35:a5:2d:34:a5:
af:09:81:d5:c9:e5:9e:6e:41:7d:e9:5a:8b:9c:f7:1b:7c:5f:
29:24:c6:61:d1:6f:16:5f:c4:a3:b3:60:94:73:11:0e:1a:1c:
ed:94:e8:e2:72:44:c8:e2:bb:87:e8:f0:c1:1b:c4:26:dc:71:
b7:7c:57:f3:c7:16:b2:63:b6:6d:e3:0c:ae:9c:2e:a6:e8:d5:
91:52:61:f4:fe:f2:2c:8d:d4:69:30:d3:0d:3c:12:ac:45:62:
eb:3c:16:04:9b:89:19:08:ae:e2:de:f4:09:2e:30:12:6d:56:
40:4a:ae:b9:2d:9a:1f:0d:9d:44:cf:09:c8:70:88:73:74:7e:
f2:2c:d5:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 18:50:06 2024 by rpki-client on console-fra.rpki-client.org