Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/aeae95-40bd-4aad-ab14-e3eecf9dfaad/1/EK8-lSTMAsYUPLMMGe5O0Vn6vGI.roa
File: EK8-lSTMAsYUPLMMGe5O0Vn6vGI.roa (raw, json)
Hash identifier: Bc25puCbikrR0r3DHZZcTzLK/Be5vRgl2MwQFPZpdTA=
Subject key identifier: 10:AF:3E:95:24:CC:02:C6:14:3C:B3:0C:19:EE:4E:D1:59:FA:BC:62
Certificate issuer: /CN=41f282cc1c07697ff5b5190c714393d542406d43
Certificate serial: 018CC2DB0332A9C61143D503ECD729D9CB48
Authority key identifier: 41:F2:82:CC:1C:07:69:7F:F5:B5:19:0C:71:43:93:D5:42:40:6D:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfKCzBwHaX_1tRkMcUOT1UJAbUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/aeae95-40bd-4aad-ab14-e3eecf9dfaad/1/EK8-lSTMAsYUPLMMGe5O0Vn6vGI.roa
Signing time: Mon 01 Jan 2024 02:29:42 +0000
ROA not before: Mon 01 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208449
IP address blocks: 45.90.168.0/22 maxlen: 24
2a0d:f100::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 06 May 2024 21:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:03:32:a9:c6:11:43:d5:03:ec:d7:29:d9:cb:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f282cc1c07697ff5b5190c714393d542406d43
Validity
Not Before: Jan 1 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10af3e9524cc02c6143cb30c19ee4ed159fabc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:62:3d:69:58:b6:d0:2d:e2:23:f7:03:df:74:
03:fb:65:52:b4:af:0b:3f:77:05:53:5e:7b:6b:73:
61:d7:5c:e0:91:59:dd:14:93:11:6d:e1:8e:39:5e:
2f:ef:14:8d:7f:b1:11:b1:86:51:34:37:5f:98:47:
08:f9:2e:e1:6a:75:ef:6a:ce:59:0f:90:17:dc:3f:
ba:8f:a2:42:5e:77:c7:66:d7:d8:4c:98:24:0b:a4:
ce:dd:65:50:22:61:35:bf:d5:58:bf:76:d0:01:c9:
57:e6:ef:6a:49:ac:61:76:ed:dc:50:99:16:c7:5d:
5f:de:4f:bd:b7:16:13:0a:a8:08:7e:60:95:c2:8c:
7e:f1:fa:01:e9:eb:1c:a3:ba:3c:51:6c:a5:2b:c6:
8e:9a:07:b0:25:c3:59:64:39:30:75:58:de:bc:ca:
50:a2:90:19:eb:d7:bd:af:4d:e2:45:c5:12:ba:dd:
2a:bf:c9:6c:05:ee:1c:1d:be:8e:ce:8f:0c:53:28:
19:15:33:13:98:30:99:68:41:12:55:8e:9b:d6:6c:
90:21:86:9b:1a:74:0f:db:97:52:f1:ce:f6:e2:a1:
48:cb:4e:ce:71:3e:e9:e2:de:54:e5:a6:13:58:7f:
44:8c:17:90:45:84:62:4a:28:2e:df:25:8d:5d:3d:
31:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AF:3E:95:24:CC:02:C6:14:3C:B3:0C:19:EE:4E:D1:59:FA:BC:62
X509v3 Authority Key Identifier:
keyid:41:F2:82:CC:1C:07:69:7F:F5:B5:19:0C:71:43:93:D5:42:40:6D:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfKCzBwHaX_1tRkMcUOT1UJAbUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/aeae95-40bd-4aad-ab14-e3eecf9dfaad/1/EK8-lSTMAsYUPLMMGe5O0Vn6vGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/aeae95-40bd-4aad-ab14-e3eecf9dfaad/1/QfKCzBwHaX_1tRkMcUOT1UJAbUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.168.0/22
IPv6:
2a0d:f100::/29
Signature Algorithm: sha256WithRSAEncryption
9c:83:85:34:2e:95:a7:b3:36:35:53:f2:4a:62:ef:9e:1b:74:
09:ef:64:51:d4:1b:c7:2d:e2:9d:25:ec:bf:b6:c7:21:12:e1:
8b:53:6f:af:d8:ce:37:56:dc:ac:4c:1b:8a:4d:99:92:3c:cd:
30:a0:92:25:12:c8:c5:ec:d6:f0:fb:01:6f:a4:f0:67:39:c1:
db:13:5c:98:fc:f8:de:c3:31:bd:8e:60:41:d1:37:bb:01:15:
ff:d8:51:91:49:65:a5:12:19:7b:ca:b2:f5:7f:24:94:c7:4b:
68:0b:e0:d6:41:aa:0f:06:eb:bc:e4:5d:57:89:df:f0:e7:4b:
08:97:4c:ae:e8:05:4d:79:a4:10:0a:cb:ae:aa:b6:5e:a7:70:
16:ff:20:47:80:dc:6a:28:c1:93:39:d8:f8:e4:95:32:f9:dc:
ef:16:89:32:60:3b:3b:12:ad:af:db:69:0b:5c:72:78:bb:55:
0f:83:8c:a0:2f:9d:6e:27:c8:44:7d:8b:c3:14:3f:3a:01:c4:
e3:f8:ec:cf:1d:32:8a:8b:a9:a2:97:a3:dd:63:83:45:d6:aa:
00:48:96:aa:8e:1f:a4:5a:c1:9d:4a:bd:e2:68:9d:2a:1d:6e:
a0:07:60:09:88:49:17:1a:40:8a:a3:12:5b:aa:76:97:0e:86:
41:23:85:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:14:13 2024 by rpki-client on console-fra.rpki-client.org