Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/pztx_2I2_7c1NY66NYWVqX477DI.roa
File: pztx_2I2_7c1NY66NYWVqX477DI.roa (raw, json)
Hash identifier: bCy5z+bxWfJCTa4bOGDSlrxHFHYgpZDntYeiw9xjPKQ=
Subject key identifier: A7:3B:71:FF:62:36:FF:B7:35:35:8E:BA:35:85:95:A9:7E:3B:EC:32
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 018570F0B61F3872C01575CE43CFA7BBC501
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/pztx_2I2_7c1NY66NYWVqX477DI.roa
Signing time: Mon 02 Jan 2023 05:25:01 +0000
ROA not before: Mon 02 Jan 2023 05:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207152
IP address blocks: 45.130.204.0/22 maxlen: 24
45.145.192.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 07:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b6:1f:38:72:c0:15:75:ce:43:cf:a7:bb:c5:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Jan 2 05:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a73b71ff6236ffb735358eba358595a97e3bec32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1e:64:98:d3:66:a3:07:f3:5b:e6:f2:e6:5d:
42:0c:bb:60:43:66:30:94:91:0a:d5:bb:e7:48:22:
54:04:8e:3c:05:b9:b3:81:a8:a5:a1:f0:ae:52:58:
1f:b3:a6:82:cf:b0:98:c5:3c:e1:6b:39:09:47:9f:
08:d6:39:73:4b:4e:57:9c:53:08:92:9a:1a:ce:eb:
d0:6b:5e:9b:31:9e:86:c8:2f:3f:d0:2f:f4:b4:37:
a5:1d:93:a2:b1:c3:94:62:ff:8e:81:89:b4:30:95:
06:29:97:0f:b0:8d:ef:fa:60:1f:ea:6d:53:07:ab:
d0:9a:43:cb:e8:43:be:3d:52:59:3f:8c:6a:a3:6f:
2c:c9:75:84:22:c5:0c:7c:9c:bc:8a:ab:67:82:1d:
0e:d6:5b:bd:d9:08:a7:01:8d:5c:63:03:2f:0b:32:
f6:41:53:1e:7e:47:5c:28:20:0a:3d:58:a4:50:94:
be:c1:e8:b2:83:2c:68:06:12:c3:17:4b:6c:4d:39:
c8:65:5c:bb:6e:d2:4a:ce:64:62:5c:80:4f:e6:f0:
f6:66:f6:e0:c8:2b:83:1b:72:5a:a8:32:80:81:cf:
75:f6:ce:4e:8b:f0:3c:41:a7:91:1a:81:b8:40:00:
ed:55:80:1b:bc:9b:95:07:47:ec:a1:54:f6:85:12:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3B:71:FF:62:36:FF:B7:35:35:8E:BA:35:85:95:A9:7E:3B:EC:32
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/pztx_2I2_7c1NY66NYWVqX477DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.204.0/22
45.145.192.0/22
Signature Algorithm: sha256WithRSAEncryption
26:f0:3c:e1:c6:74:ee:02:c1:df:06:c7:15:31:fa:04:42:85:
42:52:2b:9e:dd:74:8d:49:19:ab:80:54:a0:74:88:2f:2a:96:
18:eb:b0:fe:6a:79:01:e9:01:2e:6c:b4:a1:36:4c:3e:a2:3e:
25:93:8c:da:15:99:08:1b:5c:0a:ab:01:b6:f2:94:d3:ac:07:
98:b5:82:ac:31:31:c1:ed:b6:5b:0f:8c:3f:f4:77:0b:91:fa:
d7:f3:5c:b7:ff:01:e4:fe:16:5d:a9:64:1f:56:db:22:f1:c1:
86:82:71:d2:91:99:e8:cc:6f:82:ff:e8:66:33:16:50:f6:b6:
be:83:b9:2e:4b:83:18:aa:d1:a5:fd:ae:be:39:2c:e8:df:7b:
41:a3:8d:f6:02:1c:79:33:1a:2e:47:d1:31:d6:91:3d:6b:df:
58:72:69:7d:35:64:46:2d:f1:f2:fd:37:aa:fe:d3:74:6f:ed:
32:ed:85:8b:00:97:ee:a8:9d:51:ba:4d:a9:02:a0:0c:04:27:
12:9c:4b:83:10:d0:68:12:5a:63:69:f2:af:a5:5b:41:f4:e2:
3e:b4:ab:31:06:f7:0d:94:a9:0b:28:d6:5d:1c:06:3f:05:2f:
26:02:d1:d3:c2:3e:6b:0d:bf:b2:b9:c6:66:36:8f:a9:79:fb:
ad:86:30:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:02 2024 by rpki-client on console-ams.rpki-client.org