Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kCWKlRa-NQ_1u80BvFOpIqwdbBI.roa
File: kCWKlRa-NQ_1u80BvFOpIqwdbBI.roa (raw, json)
Hash identifier: bypr0PoyF6MFas+KLNTi7AUnj3BLU6GF7y7kFQmZHf4=
Subject key identifier: 90:25:8A:95:16:BE:35:0F:F5:BB:CD:01:BC:53:A9:22:AC:1D:6C:12
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018970002BE50A9115EB86BC8BA14E8E9891
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kCWKlRa-NQ_1u80BvFOpIqwdbBI.roa
Signing time: Wed 19 Jul 2023 21:13:26 +0000
ROA not before: Wed 19 Jul 2023 21:13:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.152.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 20 Jul 2023 21:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:70:00:2b:e5:0a:91:15:eb:86:bc:8b:a1:4e:8e:98:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 19 21:13:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90258a9516be350ff5bbcd01bc53a922ac1d6c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:1d:df:99:16:f9:6e:64:68:54:1b:43:4b:0c:
7c:7c:e8:f9:8b:7f:8d:84:c9:c7:38:77:24:51:39:
55:57:af:af:a5:0b:20:c8:dd:68:63:ab:93:d0:75:
6e:31:8a:f5:cf:f8:c6:a3:3f:69:bb:8a:53:5e:b4:
66:af:79:88:18:72:bb:45:68:73:dd:13:ca:d0:c2:
1b:38:5c:0e:e7:e7:f2:79:65:e6:59:bb:f5:a3:9e:
73:0e:13:4d:41:27:86:f3:11:a5:2a:d1:21:dd:bb:
82:71:c8:0c:23:bc:1c:ce:e6:2f:1e:da:a6:9e:19:
5b:e7:0b:88:8d:b5:a6:de:0a:d8:3a:2f:8f:ba:3e:
a3:71:d1:9e:40:4a:e4:74:f9:32:74:5b:15:14:39:
36:ef:2e:47:2a:c9:52:b3:b3:dc:3f:95:34:8f:63:
db:9a:e8:53:49:e8:0e:51:d5:98:44:c1:44:19:7b:
d0:f9:45:15:9a:20:eb:9d:34:4f:1d:32:50:40:3a:
84:43:f9:70:0b:2a:2b:14:bc:0d:fa:8e:f0:83:40:
c0:2d:ad:75:47:4c:ee:8d:e0:7b:93:fd:a3:c3:1a:
bb:32:51:67:73:46:ad:a4:ea:35:59:06:44:a5:04:
51:dd:8a:ca:8e:9b:58:f1:f3:9d:5b:0a:32:bf:81:
72:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:25:8A:95:16:BE:35:0F:F5:BB:CD:01:BC:53:A9:22:AC:1D:6C:12
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kCWKlRa-NQ_1u80BvFOpIqwdbBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/23
Signature Algorithm: sha256WithRSAEncryption
24:f6:4f:97:2e:8e:1e:3f:e2:1a:93:38:2c:73:c6:d4:fc:bb:
e1:4c:b0:63:a5:ad:c3:fa:dd:75:73:c6:d0:2d:e9:fd:f6:b6:
76:01:37:aa:23:35:1f:8c:5e:c9:d2:a5:1a:27:94:cd:9e:13:
3c:4b:57:91:2e:72:08:e8:ad:f3:02:65:bb:b1:33:1c:35:f7:
60:9b:19:35:3b:f9:4d:0e:6e:f5:95:92:46:a9:2f:c2:dc:4d:
d8:dd:03:b7:8f:51:07:52:e7:e9:b3:f3:8a:00:d7:26:bf:45:
a4:43:4b:8e:14:ec:88:ae:ee:84:d0:a9:28:d4:48:b1:69:34:
2b:72:e8:7f:74:38:f2:0f:b4:c6:0b:3b:ac:75:ce:35:51:62:
44:17:6e:a8:32:7d:f5:bd:84:98:89:d9:33:95:66:8f:99:c8:
70:76:45:07:ef:ea:30:cd:85:46:ee:75:93:81:6e:a9:60:53:
ff:c5:e0:31:cc:17:34:42:8d:d6:26:49:c6:22:d6:e0:47:db:
f6:04:83:a6:6e:cf:a4:6d:2b:86:83:c4:b3:9b:9f:1a:31:0b:
83:ff:06:c6:e8:f5:6c:58:f2:93:b8:7a:b9:d8:33:29:28:7e:
7f:a8:a6:77:95:fe:e8:4e:81:76:31:22:af:25:b6:f6:d9:a8:
cf:d2:6d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org