Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/65f954-3f88-4357-9642-9a16d9c0caf7/1/eLMrODkBGtm5aDe1vw9-pVEZusk.roa
File: eLMrODkBGtm5aDe1vw9-pVEZusk.roa (raw, json)
Hash identifier: DE4A1ElXP9rqHhO0g4t5MFtduOgQiBFUmjL/BAJUq/k=
Subject key identifier: 78:B3:2B:38:39:01:1A:D9:B9:68:37:B5:BF:0F:7E:A5:51:19:BA:C9
Certificate issuer: /CN=c510ad4689896fb850ce790fdfe344d4c027a5ae
Certificate serial: 01856F66F647D95DD09673CC0D72FC794DD5
Authority key identifier: C5:10:AD:46:89:89:6F:B8:50:CE:79:0F:DF:E3:44:D4:C0:27:A5:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRCtRomJb7hQznkP3-NE1MAnpa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/65f954-3f88-4357-9642-9a16d9c0caf7/1/eLMrODkBGtm5aDe1vw9-pVEZusk.roa
Signing time: Sun 01 Jan 2023 22:14:56 +0000
ROA not before: Sun 01 Jan 2023 22:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208557
IP address blocks: 45.129.72.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:f6:47:d9:5d:d0:96:73:cc:0d:72:fc:79:4d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c510ad4689896fb850ce790fdfe344d4c027a5ae
Validity
Not Before: Jan 1 22:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78b32b3839011ad9b96837b5bf0f7ea55119bac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c7:2b:06:b3:9f:7c:0b:4b:ff:8e:02:9a:dc:
3c:3c:04:84:ad:bd:33:45:da:9f:91:d6:48:3f:3f:
3b:d5:fd:5d:8b:51:99:df:99:17:85:0b:05:47:77:
eb:a7:26:d5:fc:03:45:43:4a:32:a4:e6:16:33:e7:
dc:6f:6a:bf:83:40:bf:6c:b7:4c:13:1b:e0:3a:0b:
d4:37:9a:df:4d:c3:fe:2f:38:80:fe:b4:62:7b:10:
55:af:75:60:da:f8:cd:80:6a:c9:9c:29:48:a1:b3:
63:6b:4c:03:06:9d:9f:fb:3e:a0:03:46:97:80:8e:
ae:1a:4f:30:43:4c:37:4a:23:d7:66:83:5f:98:92:
9e:82:b0:67:b9:30:14:48:7e:81:22:d2:c6:04:fd:
82:d7:fd:3c:cc:ef:5d:d3:ce:2c:9a:11:55:68:9d:
1e:49:f3:fd:99:a9:6d:61:2d:1e:85:d2:62:b0:32:
2e:cc:81:4b:10:4f:be:77:8c:c7:32:68:82:9a:36:
04:ab:ed:b7:4f:86:1c:ca:02:0f:10:c3:a9:9e:9c:
57:3c:14:fa:5c:1b:c0:e5:ea:e2:1a:24:c3:41:0b:
cc:10:c1:31:c3:0d:55:9d:64:c6:66:d4:03:38:88:
ad:49:a8:2d:15:73:23:10:48:0b:e0:2e:17:1e:a2:
a3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B3:2B:38:39:01:1A:D9:B9:68:37:B5:BF:0F:7E:A5:51:19:BA:C9
X509v3 Authority Key Identifier:
keyid:C5:10:AD:46:89:89:6F:B8:50:CE:79:0F:DF:E3:44:D4:C0:27:A5:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRCtRomJb7hQznkP3-NE1MAnpa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/65f954-3f88-4357-9642-9a16d9c0caf7/1/eLMrODkBGtm5aDe1vw9-pVEZusk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/65f954-3f88-4357-9642-9a16d9c0caf7/1/xRCtRomJb7hQznkP3-NE1MAnpa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.72.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:36:de:80:d7:cb:05:4b:88:a5:32:4f:65:42:40:1b:32:72:
30:47:8a:c8:3a:c7:83:cc:a7:61:cc:47:d7:18:87:d6:81:41:
d7:08:08:28:36:8d:f6:ec:ca:e3:f1:e1:b8:3e:45:37:3d:be:
2f:5e:c7:f7:d2:a7:02:11:28:d5:a2:a2:70:76:4b:5a:f6:89:
1f:6b:57:31:fa:fe:a7:8e:b0:60:64:2a:e4:b9:81:c0:e4:80:
41:84:14:aa:f7:9d:d5:d1:04:27:26:ca:44:75:b5:8f:ba:b4:
8e:38:ac:36:c0:43:ea:85:43:35:58:ef:21:d4:9c:c9:b6:b2:
4a:b4:6a:14:6a:77:94:3d:89:96:30:cf:9e:03:f3:48:46:ec:
9e:5d:b2:c4:24:b0:90:a0:66:63:6f:bb:23:e0:d6:fd:3d:01:
19:93:99:f0:bd:ba:2b:0c:0d:5c:b1:da:dc:53:52:d0:b6:37:
f3:e0:fd:7e:b9:7e:98:62:f3:71:b9:28:38:e5:4a:b8:ac:01:
6f:cd:d8:98:9b:e5:f3:32:42:a8:2f:32:8e:89:a1:5f:63:1e:
7d:86:e6:8f:78:8f:e7:83:5b:dd:92:bc:ac:21:b3:6f:bc:76:
af:c3:4d:4b:91:5a:2d:4e:fc:bc:b2:f9:7d:23:e4:09:ca:97:
9c:a6:ea:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:28 2024 by rpki-client on console-ams.rpki-client.org