Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6Ce7--r7GKeS6FXSJoGhlDD7IlY.roa
File: 6Ce7--r7GKeS6FXSJoGhlDD7IlY.roa (raw, json)
Hash identifier: 9c8FzSTICkyVDQVXl+axJ+pUY8KJRwE9ZFYve78ndNg=
Subject key identifier: E8:27:BB:FB:EA:FB:18:A7:92:E8:55:D2:26:81:A1:94:30:FB:22:56
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571956C710804AF6925B55B3B02B7F2DF
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6Ce7--r7GKeS6FXSJoGhlDD7IlY.roa
Signing time: Mon 02 Jan 2023 08:24:56 +0000
ROA not before: Mon 02 Jan 2023 08:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48037
IP address blocks: 145.10.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:6c:71:08:04:af:69:25:b5:5b:3b:02:b7:f2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e827bbfbeafb18a792e855d22681a19430fb2256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:d1:a5:a5:fe:25:a9:04:73:15:75:62:b7:
aa:df:59:86:91:18:cc:06:40:96:b4:bf:8b:54:98:
3e:dc:f5:e7:82:b8:24:72:ab:06:9b:d6:de:30:71:
98:7a:62:e6:bb:c4:e8:30:7c:f7:95:3f:f8:74:fe:
a0:90:08:19:67:55:fe:fe:d3:b9:af:aa:98:a7:aa:
a0:8c:a1:95:77:17:f6:19:fa:7a:39:98:3f:2c:2e:
a4:04:98:3e:82:15:a3:7c:87:af:ec:4d:6c:8b:bc:
2b:b6:04:1a:8e:4e:c6:4a:aa:fc:91:71:0f:43:ba:
62:e6:52:c9:eb:30:0d:c5:7e:32:8e:d0:40:ab:91:
3d:53:9c:7e:c0:a2:9e:6b:0c:7b:a2:a4:fa:d6:f3:
96:9d:72:83:e1:3f:ab:d3:5c:3b:4e:57:76:f5:62:
03:af:a4:f5:65:8c:b7:09:2b:a1:3c:f9:88:1d:39:
68:bb:da:4e:8a:5d:6c:35:76:c1:02:a7:0a:31:16:
d9:f2:f7:9b:16:d5:cd:d3:01:64:13:72:0a:7d:19:
87:e6:38:93:8f:87:84:d9:5d:93:f4:e5:f4:a8:75:
42:31:e5:3f:b8:4c:00:86:e0:1c:a2:77:1c:c8:d1:
49:c1:a1:1e:95:bd:b9:2c:36:6a:8a:03:df:c3:1b:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:27:BB:FB:EA:FB:18:A7:92:E8:55:D2:26:81:A1:94:30:FB:22:56
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6Ce7--r7GKeS6FXSJoGhlDD7IlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.10.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:06:20:8f:db:7b:0a:29:56:06:04:5d:59:1b:2d:47:bc:d7:
47:f6:55:f5:6c:b1:6e:ed:bb:c8:ff:c8:26:78:7e:a8:b4:1d:
33:32:44:0e:88:ec:e0:0c:c9:e5:2a:e8:00:c9:58:b8:92:4c:
32:42:a9:8c:8e:1c:c4:a6:21:6e:04:cc:1a:0e:c7:3d:aa:f0:
99:4c:c8:b2:52:de:cd:c5:bc:80:04:06:9e:55:e2:97:49:81:
1f:b4:03:69:3a:e4:a6:87:95:e9:19:dc:fe:dc:a1:79:89:7d:
02:2e:b5:2b:c3:ed:7d:08:4a:f9:56:43:40:86:90:1f:fa:21:
e4:c5:20:ca:71:98:ca:6a:a3:0a:d6:84:70:b8:a9:b0:79:8a:
0a:c1:04:58:69:58:9e:7b:ed:c3:ec:e9:50:f6:56:cd:0e:e5:
25:59:e0:5d:01:2b:45:08:60:32:70:1b:63:d2:f4:f2:23:72:
b3:30:b3:78:70:e4:bc:f0:72:b1:7e:e5:21:93:11:ae:d3:30:
f5:00:fd:15:d4:9a:81:a2:32:13:21:96:f1:9c:4a:35:ba:50:
fc:78:bb:dd:09:54:68:76:cb:be:af:7b:31:b9:12:a5:ea:c7:
a5:ca:0d:c5:5f:9f:37:ae:05:9c:7b:9d:6e:64:5f:6f:84:27:
07:3b:c3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org