Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uDzcZ2JIoW4EABfPx6zhB7pIRSs.roa
File: uDzcZ2JIoW4EABfPx6zhB7pIRSs.roa (raw, json)
Hash identifier: y2EssVTWr9C4x2acYGOgIjzN2esxp+rcaoltTD4cAZ4=
Subject key identifier: B8:3C:DC:67:62:48:A1:6E:04:00:17:CF:C7:AC:E1:07:BA:48:45:2B
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 019114470723F2C74A03CA778729BCC8281F
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uDzcZ2JIoW4EABfPx6zhB7pIRSs.roa
Signing time: Fri 02 Aug 2024 18:08:04 +0000
ROA not before: Fri 02 Aug 2024 18:08:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.151.70.0/24 maxlen: 24
88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 12:49:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:14:47:07:23:f2:c7:4a:03:ca:77:87:29:bc:c8:28:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Aug 2 18:08:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b83cdc676248a16e040017cfc7ace107ba48452b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:70:83:cc:1c:49:78:f1:df:c7:ef:66:3e:27:
dc:04:bf:0c:c6:b6:88:f5:13:df:d4:a3:b8:e9:b3:
61:d4:53:01:e9:a2:1f:62:b8:68:32:2c:d6:28:1e:
70:52:bc:6f:73:e4:12:6f:c7:4e:0c:7a:aa:4b:20:
89:a5:1d:1a:ca:04:14:b1:aa:56:6d:4b:4b:6c:00:
fd:ab:e9:d4:2f:b0:b9:a9:59:20:79:1c:db:83:d3:
ac:d5:a5:52:38:0e:5c:57:42:2e:52:26:24:32:19:
0e:77:19:f9:06:f8:60:12:2d:47:c5:6d:93:11:cd:
0e:20:5a:e5:2d:49:d4:46:f5:1b:2e:bb:71:35:47:
c2:0d:c8:e7:4f:63:c7:30:31:73:58:39:0f:83:44:
60:06:e2:04:53:d2:a3:96:db:9a:f9:5b:2d:df:07:
a4:aa:c4:89:5e:6b:9c:2b:2b:3d:c0:4e:92:6e:37:
24:4e:c1:24:04:74:67:22:60:16:33:ea:1c:52:58:
9b:47:a7:22:a0:e3:ff:c4:08:00:8d:df:b0:0a:63:
47:89:6f:84:85:0a:f5:72:a8:3b:8c:20:85:61:36:
72:65:ca:7d:c0:d5:6e:2f:bc:1b:73:86:7b:96:63:
21:f2:0e:92:41:47:fa:d8:cd:71:6c:5e:01:fb:c4:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3C:DC:67:62:48:A1:6E:04:00:17:CF:C7:AC:E1:07:BA:48:45:2B
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uDzcZ2JIoW4EABfPx6zhB7pIRSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.70.0/24
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:f1:35:99:74:ac:14:77:48:b6:be:d8:92:e0:08:c2:56:95:
3a:dd:97:bd:ea:11:5f:7b:b1:1a:5d:0a:c8:19:39:12:cd:2c:
0d:3f:2c:d9:84:21:67:85:5f:d8:f5:5d:b8:a6:30:48:7b:79:
f6:6f:13:e0:68:be:08:e5:cd:dd:20:45:67:1b:55:91:dc:b5:
10:f6:54:d0:9b:1c:d1:4c:b1:4e:7d:60:12:7e:cb:43:a4:d5:
a2:e1:39:98:90:00:88:20:19:a0:ef:e9:ce:d9:23:f3:cf:24:
1d:e5:7b:a7:44:bf:57:88:9e:a4:ed:e7:60:2c:6e:e1:11:c0:
09:35:7f:73:5e:52:5c:ff:d7:7b:ff:6f:96:1e:91:8b:a4:4b:
1d:94:17:55:bc:fb:b0:a0:4a:e6:fb:ee:0f:e3:53:a2:82:23:
53:eb:38:54:bc:95:d0:13:6c:67:ea:bc:e8:b3:0d:b7:90:19:
c4:df:4e:1e:e7:cb:75:13:e5:a1:8f:a7:3d:a3:9d:3b:28:30:
67:d0:ee:81:b4:cb:b3:22:54:21:ea:07:2b:9b:88:e2:0b:59:
0b:e7:98:62:b2:18:0b:7c:61:03:84:f7:c9:2f:bc:67:2a:2d:
31:42:af:c2:51:da:96:08:4e:2a:9c:fc:80:84:0e:55:67:ab:
a7:e5:23:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 16:29:52 2024 by rpki-client on console-ams.rpki-client.org