Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/5tJPL0MuzNdvAqEnsg1Ecj7lF0Q.roa
File: 5tJPL0MuzNdvAqEnsg1Ecj7lF0Q.roa (raw, json)
Hash identifier: IaMciTv8pULyoRCk1gD+vK3djX+hxQcEPVNpdU0AAMM=
Subject key identifier: E6:D2:4F:2F:43:2E:CC:D7:6F:02:A1:27:B2:0D:44:72:3E:E5:17:44
Certificate issuer: /CN=adc8a9bbc2bc3a4c8bb876ccdd95fd865250b6db
Certificate serial: 01856ED4BF872C8CDFACB630CD2999419C8C
Authority key identifier: AD:C8:A9:BB:C2:BC:3A:4C:8B:B8:76:CC:DD:95:FD:86:52:50:B6:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rcipu8K8OkyLuHbM3ZX9hlJQtts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/5tJPL0MuzNdvAqEnsg1Ecj7lF0Q.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3352
IP address blocks: 45.148.220.0/24 maxlen: 24
81.90.111.0/24 maxlen: 24
81.90.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:bf:87:2c:8c:df:ac:b6:30:cd:29:99:41:9c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adc8a9bbc2bc3a4c8bb876ccdd95fd865250b6db
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d24f2f432eccd76f02a127b20d44723ee51744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:26:18:fb:76:2f:1b:14:aa:36:a0:20:43:16:
91:63:d7:b7:4e:f6:c4:93:58:bd:1b:4d:c7:27:07:
62:4c:d3:d3:73:33:dd:98:3a:5e:27:f4:6c:09:5f:
51:27:e6:09:bb:02:ab:18:1f:99:1c:1f:a3:28:e5:
aa:8d:15:92:0b:af:f6:33:dd:47:a3:d4:fa:62:f3:
c7:4c:c9:ca:8a:16:ee:ee:5e:ff:1e:28:fd:04:34:
7d:49:de:05:67:7b:0e:3b:6b:6d:81:a5:7a:17:d8:
5b:ff:ae:42:70:a5:de:93:39:2b:e3:ae:fc:de:d2:
42:b7:00:27:a9:f7:6f:5c:98:cd:87:8b:1b:83:9e:
91:a3:06:0c:4b:a6:5f:e6:96:18:02:0b:b6:bd:4e:
7a:ca:b3:86:d0:63:45:ae:42:c8:42:35:ef:cf:fd:
41:be:61:44:75:d4:b4:f9:27:a6:fc:24:f8:7c:f3:
1f:b1:b8:a5:8b:c7:69:04:e1:f3:be:69:04:18:d8:
cd:21:ed:60:78:3c:96:e4:ae:71:61:c5:9a:46:6f:
04:f7:25:ef:b6:f0:e4:da:3d:d1:2b:9a:81:d5:e2:
1a:68:5a:3a:d7:55:93:a1:cb:b5:12:6a:1c:47:e7:
4b:35:ef:d2:d2:ad:78:4b:92:91:bd:c6:de:f5:65:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D2:4F:2F:43:2E:CC:D7:6F:02:A1:27:B2:0D:44:72:3E:E5:17:44
X509v3 Authority Key Identifier:
keyid:AD:C8:A9:BB:C2:BC:3A:4C:8B:B8:76:CC:DD:95:FD:86:52:50:B6:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rcipu8K8OkyLuHbM3ZX9hlJQtts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/5tJPL0MuzNdvAqEnsg1Ecj7lF0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/rcipu8K8OkyLuHbM3ZX9hlJQtts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.220.0/24
81.90.110.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:09:12:a7:55:a1:0a:ee:2b:d3:80:f8:a9:a2:be:6e:85:a8:
23:aa:fe:e5:59:5f:ff:97:bc:ec:80:61:b7:a3:b1:cc:46:48:
ac:14:6e:73:65:86:2a:76:58:d4:f7:a7:2a:3f:e8:30:be:13:
e7:cd:55:04:7a:09:8a:63:47:43:e4:96:aa:5e:cd:f9:bf:ff:
ad:9d:90:f4:22:ab:dd:14:a7:38:16:7a:fb:ac:c3:da:23:69:
e3:7c:7c:af:f2:07:4b:d6:a2:5f:13:64:2f:c0:32:a0:87:27:
97:cc:c7:cf:36:7f:fa:be:50:92:a5:44:5a:b0:a0:7c:e9:39:
b4:97:02:73:b8:29:4b:83:a2:47:87:2c:43:53:aa:40:6a:72:
9c:16:b5:e8:05:ad:bb:66:47:22:b2:df:db:3a:0e:b0:d5:99:
37:7f:bb:27:6c:a1:45:9f:a6:45:69:14:86:04:90:51:ab:c6:
36:86:5d:96:2b:7a:2f:8b:9b:86:d7:da:ad:68:4a:0b:2d:47:
53:32:d7:e8:64:93:ae:63:5d:d2:b7:d0:66:5d:04:f9:1b:87:
b8:c4:66:22:5a:11:0c:ea:74:71:f5:94:60:5f:66:66:95:a5:
f0:30:f6:df:38:a1:91:5b:12:18:56:c9:c8:b3:04:2c:67:f1:
79:3e:ee:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:30 2024 by rpki-client on console-fra.rpki-client.org