Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/deO8xlOhGP12iHct8gv5sa1t5-c.roa
File: deO8xlOhGP12iHct8gv5sa1t5-c.roa (raw, json)
Hash identifier: EKef6nn29QDOOM/x2KDrxnt2EDTTtGp5ZKs8DTeyOTU=
Subject key identifier: 75:E3:BC:C6:53:A1:18:FD:76:88:77:2D:F2:0B:F9:B1:AD:6D:E7:E7
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 018572B444D65E49D55E7A3049891ED95BE9
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/deO8xlOhGP12iHct8gv5sa1t5-c.roa
Signing time: Mon 02 Jan 2023 13:38:14 +0000
ROA not before: Mon 02 Jan 2023 13:38:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 145.221.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 09:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:44:d6:5e:49:d5:5e:7a:30:49:89:1e:d9:5b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Jan 2 13:38:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75e3bcc653a118fd7688772df20bf9b1ad6de7e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fc:99:f5:56:f8:c8:4b:eb:88:3a:46:cc:a5:
28:87:ba:55:4d:89:dc:bf:dc:4b:83:b8:5e:59:52:
85:81:85:78:05:d4:98:82:a7:96:a9:e6:f5:a1:49:
77:b6:a8:6f:4c:a7:fc:f6:b0:73:c8:57:01:b5:e1:
de:df:2e:77:ec:93:59:50:cc:79:63:27:29:09:c6:
9b:c8:76:0e:da:6f:40:d3:a6:72:17:97:ef:f3:c5:
b4:80:34:12:0a:50:55:3c:a3:06:2f:17:61:fb:78:
60:54:36:3d:e4:43:a1:f4:1f:5e:b1:8f:8e:f0:04:
35:22:3b:b9:67:15:b9:c4:16:80:29:59:76:41:5b:
d6:e5:22:d3:b5:f7:63:65:2e:1f:6a:52:da:0f:74:
bd:bc:eb:cd:e2:89:25:fb:22:50:06:74:a4:28:00:
8e:5a:9e:dd:ef:12:78:6d:31:28:d6:21:a8:52:41:
85:dd:b0:77:a4:fd:c8:79:8f:54:8f:66:61:33:d8:
8c:c3:fe:14:98:11:f8:2e:e4:40:d2:5c:f9:c5:3b:
15:06:50:4a:61:35:cd:4e:c1:1d:0f:fe:cd:00:07:
35:66:f4:22:14:b2:17:59:8f:cf:6b:f0:95:9d:21:
a1:b3:89:cb:8e:93:b7:f3:a1:08:69:c1:24:3e:20:
2c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E3:BC:C6:53:A1:18:FD:76:88:77:2D:F2:0B:F9:B1:AD:6D:E7:E7
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/deO8xlOhGP12iHct8gv5sa1t5-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f8:29:68:15:d8:e1:cc:a1:f8:7c:73:5b:35:d0:af:3b:1e:
1d:35:a8:60:d0:bc:21:d3:c9:5d:e6:12:58:f6:e0:c3:1a:15:
2a:06:46:51:8e:78:11:8f:82:63:bc:0e:9e:c9:d2:ce:63:b2:
70:d4:65:15:e0:29:5e:b8:cc:d2:7b:28:97:48:56:e9:a4:d7:
8e:55:7f:68:7f:36:8d:fc:d0:ab:1b:ed:1b:28:78:4c:83:19:
1a:5d:67:11:1e:54:5b:80:a8:b7:f4:91:6c:34:07:02:1e:26:
73:39:3d:e1:71:15:b4:e6:0a:84:41:78:4c:eb:3d:c3:73:94:
b0:85:1d:d5:0a:0b:5f:fe:e6:11:20:05:3e:5d:ad:31:ac:18:
cd:0d:7c:42:e0:3f:b0:7b:1a:de:d7:73:24:02:de:f1:24:a8:
53:b5:e2:da:91:2f:60:0b:ff:ed:39:6d:a7:a9:4a:e8:87:d2:
eb:47:58:3a:a2:8b:3b:6a:f0:7f:f6:f6:b9:90:39:29:f6:e9:
22:bc:bd:c0:12:03:d1:97:0a:54:e0:4e:e5:bf:90:59:fd:00:
ea:12:85:2e:2d:f7:e0:ad:93:cc:ff:83:10:2f:2f:f0:c1:25:
f2:06:fb:11:0b:c6:da:12:2e:36:b0:c5:54:c8:c5:8c:34:e3:
33:f9:8b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:22 2024 by rpki-client on console-fra.rpki-client.org