Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/JRMFHIipR3fBYKyhdVgdeLE1vFs.roa
File: JRMFHIipR3fBYKyhdVgdeLE1vFs.roa (raw, json)
Hash identifier: xqw4UeJ+4JM9G9OZK/rQ1wpkA7Ynyi2jbPovUsU+7yA=
Subject key identifier: 25:13:05:1C:88:A9:47:77:C1:60:AC:A1:75:58:1D:78:B1:35:BC:5B
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018D5A82D405DA39A7E325DC0D54CEB88169
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/JRMFHIipR3fBYKyhdVgdeLE1vFs.roa
Signing time: Tue 30 Jan 2024 13:15:39 +0000
ROA not before: Tue 30 Jan 2024 13:15:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51791
IP address blocks: 45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Mar 2024 21:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:82:d4:05:da:39:a7:e3:25:dc:0d:54:ce:b8:81:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jan 30 13:15:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2513051c88a94777c160aca175581d78b135bc5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:07:e3:94:91:f3:a1:33:00:e0:87:79:a1:83:
0f:ee:3c:4b:74:c6:ea:61:d9:60:8d:91:eb:fc:4c:
44:e3:c1:0d:52:f6:97:63:f9:be:79:99:92:58:ac:
0e:97:80:95:1d:86:32:70:e3:6c:06:af:e5:8c:fb:
47:be:17:14:dc:05:7e:f3:8d:dd:17:74:59:d7:0c:
c3:8c:a3:4c:17:8a:fb:e5:a4:cf:a9:bc:2e:da:2e:
92:30:e1:71:44:ec:66:b5:d2:ff:ca:20:aa:44:d5:
8a:cd:9c:d8:3e:2f:e1:89:dd:36:b3:10:66:ad:41:
7c:2d:d7:f4:5a:52:6c:cf:f5:73:18:d8:d8:d7:84:
1f:e9:0c:47:48:99:4b:33:7c:37:49:70:5e:83:19:
a7:70:69:66:ca:78:4a:63:9a:ac:ea:c0:e6:11:36:
c8:47:a0:da:d7:bd:15:53:f9:41:8d:b9:5a:5c:40:
bb:ec:5f:22:e8:0b:a8:72:91:74:3f:4a:10:43:9c:
6e:87:74:c0:c8:7c:a8:da:d3:27:9c:df:3f:d5:75:
be:71:f5:17:db:b7:a4:01:ea:64:38:51:40:7e:36:
0a:ef:a2:c6:88:75:1e:05:08:06:ad:2e:99:ab:20:
8b:00:83:5b:cd:39:3f:bc:4a:44:88:14:11:a1:8d:
71:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:13:05:1C:88:A9:47:77:C1:60:AC:A1:75:58:1D:78:B1:35:BC:5B
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/JRMFHIipR3fBYKyhdVgdeLE1vFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.153.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ed:79:86:5c:86:f5:b7:35:bb:1e:af:2f:b6:cb:3c:50:59:
32:d3:53:c1:bc:28:d3:ba:a8:12:17:39:63:69:9e:95:aa:49:
86:d4:27:eb:7b:24:12:2c:27:8d:ae:c0:71:eb:8a:12:7a:14:
c3:d1:04:63:7c:49:1b:52:df:e4:0e:3f:33:20:f6:96:76:3c:
9a:b6:20:8a:10:6b:f0:a9:d2:06:c5:12:01:c4:2e:0a:27:93:
a1:60:d5:d3:92:bb:83:db:9e:37:21:96:7c:d7:8a:90:b8:ff:
1d:5b:da:da:52:01:6f:c7:da:eb:4c:7b:2f:6b:f9:c6:32:91:
4d:0a:f3:1c:92:7a:83:c1:94:18:e9:ed:97:e8:bb:ff:0d:ae:
6f:08:31:b7:9e:33:9f:a9:6e:6f:23:2b:91:94:13:cc:30:0e:
64:53:0a:7e:65:6f:52:1b:eb:c5:4d:4b:9e:b0:4c:79:47:88:
ed:db:b8:ae:9e:5e:6f:93:75:a1:00:1c:85:e1:b1:e5:9c:28:
c6:df:6e:dc:2b:ce:34:d7:25:68:4d:81:56:ad:3a:1c:1b:cb:
98:b0:78:25:21:ce:56:a9:37:61:ee:ce:b9:31:22:7c:5c:a2:
04:25:b8:8b:84:40:2e:1e:82:91:30:fb:8d:55:92:c6:41:3d:
76:4c:f6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 23:29:44 2024 by rpki-client on console-ams.rpki-client.org