Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NeHXkH3qjNfFL1Hh2bx0YvW04gA.roa
File: NeHXkH3qjNfFL1Hh2bx0YvW04gA.roa (raw, json)
Hash identifier: Ree4TfZPHHmr711tL4a2YzyzpMJ3fIlYW+7EBMYT7a4=
Subject key identifier: 35:E1:D7:90:7D:EA:8C:D7:C5:2F:51:E1:D9:BC:74:62:F5:B4:E2:00
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C381B7E72B9CF2732D2903510C1663212
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NeHXkH3qjNfFL1Hh2bx0YvW04gA.roa
Signing time: Tue 05 Dec 2023 03:52:55 +0000
ROA not before: Tue 05 Dec 2023 03:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400536
IP address blocks: 45.88.12.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
45.88.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:38:1b:7e:72:b9:cf:27:32:d2:90:35:10:c1:66:32:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 5 03:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35e1d7907dea8cd7c52f51e1d9bc7462f5b4e200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:51:0d:97:34:ba:13:dc:81:03:51:a3:4c:
15:af:a7:31:88:92:38:5f:bf:ad:e1:12:dc:b6:bb:
cf:99:cf:25:75:22:87:bd:93:36:41:3e:23:0b:b4:
e2:8d:e3:15:b7:e9:e5:1d:3a:cc:31:90:e6:aa:7e:
11:90:7c:62:20:f9:d5:4a:28:b0:a9:b6:22:a5:34:
52:00:0b:3b:a2:63:b3:d7:54:51:4d:e9:aa:58:3d:
81:7f:bf:64:6a:3a:31:5d:f2:5c:56:4c:1c:13:b3:
55:d4:df:70:03:a7:82:c1:3b:ae:9a:23:26:19:b6:
a3:b2:64:26:0b:76:b6:25:62:83:65:13:69:06:fe:
72:ba:98:74:45:61:e6:6b:ca:f4:26:47:dc:c5:58:
0d:24:42:52:46:19:54:02:c5:94:68:06:36:4c:df:
24:fc:e8:65:cf:8c:0f:53:a9:19:ed:8a:33:65:03:
61:af:5b:fe:b9:bc:a9:c1:2c:3e:45:67:c2:d3:90:
bf:aa:a9:31:20:0a:72:3e:8c:8e:f9:36:fe:36:d6:
de:8f:44:aa:eb:cf:34:9c:89:c0:87:36:ef:90:fe:
be:8f:2c:d8:78:be:0f:e1:14:48:99:4f:b6:90:05:
a7:5a:12:fc:3b:fd:62:64:f9:ae:70:7b:95:64:c0:
00:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E1:D7:90:7D:EA:8C:D7:C5:2F:51:E1:D9:BC:74:62:F5:B4:E2:00
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NeHXkH3qjNfFL1Hh2bx0YvW04gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
45.88.14.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:db:49:53:6e:50:2b:aa:b5:5c:57:84:c3:36:ee:bf:c3:3a:
8d:0c:23:00:8c:60:28:7c:4b:81:a7:3e:07:0f:45:c3:85:82:
97:af:71:a4:59:94:ea:a2:b8:41:24:6f:77:d1:68:94:0b:71:
b0:bb:05:d8:d6:47:c2:3c:fe:f3:a0:d1:ed:67:d6:e2:93:f7:
9e:85:a2:d1:90:cd:cd:e2:cc:96:9f:1d:65:0c:55:5e:f8:47:
2e:b3:6f:dd:98:30:23:66:0c:18:72:df:d4:9d:41:1c:e3:64:
b1:d6:3c:a6:19:bd:1c:07:58:8c:43:21:3b:7d:4f:93:5b:92:
f8:c8:ed:39:25:be:87:4d:f8:9b:89:8a:1d:49:bd:11:77:e1:
40:f0:a6:e7:f5:39:7f:ac:f4:b8:e6:b1:23:04:d3:13:5d:39:
0e:38:d4:b5:26:2a:08:82:85:71:be:4a:f9:7e:19:76:6d:9e:
99:56:a8:81:e1:4d:e2:7a:50:b4:8f:0d:bb:a0:60:61:6e:2d:
03:fa:fe:7d:89:80:af:2e:d9:ce:9f:c3:7d:d2:81:e5:71:2f:
2f:8c:b4:47:af:6d:91:6c:2f:ca:d3:a4:75:bb:fa:be:cb:17:
e1:e6:89:97:9a:32:78:06:cb:ae:83:00:8b:55:0c:3f:a3:b4:
31:4d:44:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org