Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/gZhAA7s_ptGhOR7ZocpW1-M8mkc.roa
File: gZhAA7s_ptGhOR7ZocpW1-M8mkc.roa (raw, json)
Hash identifier: haRpuer/3Jy8ieIDXe80CnFHK+VryUvmo+7IZDL3BeY=
Subject key identifier: 81:98:40:03:BB:3F:A6:D1:A1:39:1E:D9:A1:CA:56:D7:E3:3C:9A:47
Certificate issuer: /CN=a4929fcd61dc69dccfbe01d5ff0035b41ac95260
Certificate serial: 018BDC53CDDC2C9F87BBB5E5D87F90748445
Authority key identifier: A4:92:9F:CD:61:DC:69:DC:CF:BE:01:D5:FF:00:35:B4:1A:C9:52:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJKfzWHcadzPvgHV_wA1tBrJUmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/gZhAA7s_ptGhOR7ZocpW1-M8mkc.roa
Signing time: Fri 17 Nov 2023 08:09:21 +0000
ROA not before: Fri 17 Nov 2023 08:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.150.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:53:cd:dc:2c:9f:87:bb:b5:e5:d8:7f:90:74:84:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4929fcd61dc69dccfbe01d5ff0035b41ac95260
Validity
Not Before: Nov 17 08:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81984003bb3fa6d1a1391ed9a1ca56d7e33c9a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:78:37:6a:9a:00:9f:ec:18:b8:45:79:fd:30:
2d:e1:34:6c:02:05:35:8a:bb:46:05:6c:a9:2f:65:
54:28:3a:d7:26:3a:8e:7a:87:27:c4:0b:f2:ef:0f:
c3:c4:28:b1:97:4f:16:a1:ab:7e:d5:a6:1c:91:40:
3d:a6:8c:6f:1c:97:6b:1d:98:d4:2b:8c:ce:a6:b1:
c2:28:39:96:d6:79:aa:87:61:6f:81:c8:d8:46:16:
1f:04:36:65:48:03:68:4a:f8:67:f1:32:b4:45:32:
23:f8:88:02:5e:42:42:96:e9:5a:bf:a4:96:00:3e:
6d:79:9b:13:09:e4:24:58:b7:29:7e:49:9e:ea:5c:
28:ff:7a:6e:db:5d:30:ee:2d:75:3c:88:83:fb:c0:
93:e8:17:ad:13:7f:16:bc:f8:d2:5c:3a:14:ff:36:
35:93:d3:ca:29:7d:d1:10:a7:b5:82:51:9f:39:04:
48:aa:27:46:f6:f4:31:5b:03:d8:3b:9e:ef:da:78:
be:61:15:35:b6:23:b4:b5:93:43:4a:3c:02:39:d9:
dd:c3:c6:7c:49:d6:7c:e4:2c:a1:94:12:7e:81:5c:
74:5d:74:ec:b1:67:09:18:05:00:a5:78:77:ad:5e:
4a:05:f7:af:e0:14:94:1a:1d:2d:47:6d:bb:f4:0d:
ab:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:98:40:03:BB:3F:A6:D1:A1:39:1E:D9:A1:CA:56:D7:E3:3C:9A:47
X509v3 Authority Key Identifier:
keyid:A4:92:9F:CD:61:DC:69:DC:CF:BE:01:D5:FF:00:35:B4:1A:C9:52:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJKfzWHcadzPvgHV_wA1tBrJUmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/gZhAA7s_ptGhOR7ZocpW1-M8mkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/pJKfzWHcadzPvgHV_wA1tBrJUmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.16.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:dd:e6:8d:e3:82:9c:1f:ba:ad:fc:f8:ed:ad:37:3d:83:01:
31:8e:06:b1:4b:ff:be:31:85:ba:19:e9:57:d6:75:ca:c8:7b:
52:54:c8:0f:0b:35:08:75:27:89:72:05:77:b1:3e:f2:0c:7a:
3a:30:43:d6:65:db:4a:4a:0f:11:a2:06:ac:02:26:9c:c1:89:
23:f7:82:c0:70:8e:18:99:78:ad:59:a1:aa:5c:dc:15:17:5d:
b0:da:c7:a9:a9:1e:42:5c:93:9f:2f:f3:ed:29:9e:e2:2b:6b:
9d:36:f5:15:95:e6:39:97:9c:fa:91:60:67:71:75:6d:9d:81:
95:6d:93:e5:a6:5b:98:e1:f7:b2:7b:5a:4b:c9:70:1a:25:01:
67:cf:3c:6c:56:1c:e8:9d:a1:63:84:20:a4:8f:6a:aa:2a:aa:
84:81:3d:37:c0:37:c5:f7:90:87:6a:7a:fb:9b:0a:1d:ef:d2:
a5:9e:f5:24:34:c9:93:d5:59:cf:c9:ad:b9:a0:f5:62:da:7f:
7e:03:a1:d8:6f:0a:94:c9:58:b0:52:8f:fc:aa:66:97:42:87:
a6:d4:b7:f3:e9:59:8a:5e:f4:bb:1e:11:37:c4:f0:06:fd:6b:
21:3a:72:f1:d7:63:a4:87:9a:8e:cc:ec:57:ff:e7:c3:0d:82:
91:af:53:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:14 2024 by rpki-client on console-fra.rpki-client.org