Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/4ekfHzwED-PKz_4cssNekJaiXyg.roa
File: 4ekfHzwED-PKz_4cssNekJaiXyg.roa (raw, json)
Hash identifier: s8Ax+XYeh5fszoOGrR45If1/MC9b03BuJgVmy/aNuUU=
Subject key identifier: E1:E9:1F:1F:3C:04:0F:E3:CA:CF:FE:1C:B2:C3:5E:90:96:A2:5F:28
Certificate issuer: /CN=bea6ca03a8c135ceeae232c937c1ee0bab87e782
Certificate serial: 018CCA2859ECA872E978C9EEE2806A9C455B
Authority key identifier: BE:A6:CA:03:A8:C1:35:CE:EA:E2:32:C9:37:C1:EE:0B:AB:87:E7:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqbKA6jBNc7q4jLJN8HuC6uH54I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/4ekfHzwED-PKz_4cssNekJaiXyg.roa
Signing time: Tue 02 Jan 2024 12:31:31 +0000
ROA not before: Tue 02 Jan 2024 12:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209055
IP address blocks: 45.8.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 07 Mar 2024 16:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:59:ec:a8:72:e9:78:c9:ee:e2:80:6a:9c:45:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea6ca03a8c135ceeae232c937c1ee0bab87e782
Validity
Not Before: Jan 2 12:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1e91f1f3c040fe3cacffe1cb2c35e9096a25f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0d:60:c3:3d:97:81:b9:51:df:d4:db:87:f8:
8c:12:5b:3a:14:b6:0b:a5:e9:04:43:ee:1f:ab:02:
6d:34:13:3f:cd:38:8d:71:a0:31:82:d4:1f:80:b4:
21:5d:b2:c6:94:5f:ea:52:45:58:ab:b7:74:ff:82:
bd:01:a7:a5:b4:d6:d4:7a:bd:52:6c:6c:f2:b7:53:
38:0f:b4:66:ae:d3:63:c7:f7:ef:1b:da:08:c1:6f:
1b:21:04:a8:5e:b8:73:97:7f:02:6b:c1:8c:39:4d:
51:b7:07:a6:d7:ee:66:9d:f4:ea:c4:51:5d:42:87:
e4:8a:4f:c2:cc:18:b6:ea:69:89:b8:ec:35:67:3a:
67:ad:3c:96:d5:0a:73:65:48:b1:8b:f8:c0:da:2f:
a9:1d:7c:35:09:a5:35:bb:99:4a:b7:f4:2c:2c:2c:
e9:7f:d0:eb:ae:e9:89:a9:33:7c:d1:18:28:4e:e9:
bd:ae:61:38:82:b5:e1:c0:85:b3:c8:0b:a6:1c:b0:
00:3a:d0:98:29:3c:66:23:4b:9b:b9:3d:8b:9d:57:
ca:8d:27:0a:ac:67:05:f7:c9:e0:87:9a:fb:88:a3:
70:70:55:41:94:1c:f9:52:ff:e3:9c:d9:9b:12:cb:
85:61:4b:a0:6a:12:f3:52:bf:47:a4:53:35:fb:8c:
c2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E9:1F:1F:3C:04:0F:E3:CA:CF:FE:1C:B2:C3:5E:90:96:A2:5F:28
X509v3 Authority Key Identifier:
keyid:BE:A6:CA:03:A8:C1:35:CE:EA:E2:32:C9:37:C1:EE:0B:AB:87:E7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqbKA6jBNc7q4jLJN8HuC6uH54I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/4ekfHzwED-PKz_4cssNekJaiXyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/bc65f6-0c3b-404e-bfad-9fa4228c02ea/1/vqbKA6jBNc7q4jLJN8HuC6uH54I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.40.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:3c:58:50:4c:e5:ff:28:bd:75:99:cb:8c:6e:0c:84:16:0a:
fb:56:f2:cf:71:16:c9:68:56:9d:fa:14:0b:68:74:be:74:40:
b2:40:7f:ad:8f:1b:71:47:96:19:5b:19:7d:56:34:2e:a3:77:
a4:f5:38:32:f7:48:7c:6d:f8:6d:82:d5:27:61:1f:fb:94:df:
6e:f6:f4:b6:03:cc:5d:a8:68:95:78:cf:83:99:8c:d2:4f:be:
de:ca:70:11:53:6b:dc:c4:ea:91:6e:24:a8:4e:97:07:ef:2c:
c7:c0:66:fa:82:20:b5:94:5a:de:6d:23:93:34:dc:0e:18:60:
bf:6e:c1:c2:ad:32:9d:80:6f:4c:da:da:bd:f8:6b:e5:f7:9d:
6a:5a:9b:5d:4f:54:c2:2c:11:65:a6:02:ac:fe:e6:84:33:69:
a1:6b:6c:ff:4b:59:d2:c3:34:98:a4:3e:9d:13:1a:3e:78:2a:
d1:ad:89:42:04:93:c2:8d:5f:23:34:79:8b:de:de:b0:5d:3c:
9d:2b:8d:c6:36:63:4a:f2:42:c6:86:e6:2b:91:e6:81:e1:36:
6f:1b:f5:45:41:46:70:02:38:d2:d2:8b:93:17:3e:64:98:75:
fc:f3:44:01:ba:91:45:df:c0:7d:2d:dc:59:90:08:6d:4f:f1:
c7:ba:06:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:22 2024 by rpki-client on console-fra.rpki-client.org