Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zjyDnQWEfEqgVc4cYOqbVOg23ZQ.roa
File: zjyDnQWEfEqgVc4cYOqbVOg23ZQ.roa (raw, json)
Hash identifier: v/JTYHY9dRfRnJ5LAe+8OlxL9KtCoE5UykNGXiUGIZw=
Subject key identifier: CE:3C:83:9D:05:84:7C:4A:A0:55:CE:1C:60:EA:9B:54:E8:36:DD:94
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018970002C3BEB396D976E805D89722F1EB6
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zjyDnQWEfEqgVc4cYOqbVOg23ZQ.roa
Signing time: Wed 19 Jul 2023 21:13:26 +0000
ROA not before: Wed 19 Jul 2023 21:13:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.145.154.0/24 maxlen: 24
45.145.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 06:59:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:70:00:2c:3b:eb:39:6d:97:6e:80:5d:89:72:2f:1e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 19 21:13:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce3c839d05847c4aa055ce1c60ea9b54e836dd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:21:88:9c:70:6f:66:6c:92:f2:bd:e2:af:1c:
81:3e:ed:35:d8:97:7e:63:88:bb:be:f7:15:32:80:
6d:34:b2:52:0e:0e:85:e9:56:24:f0:45:9f:99:b2:
4c:47:3a:5e:0d:14:de:a6:54:83:28:9c:9d:47:12:
70:9a:ec:df:a7:4f:fa:9a:f1:6b:71:fb:c5:90:13:
83:df:e2:44:3b:29:a4:b1:e6:34:84:f5:0d:88:67:
05:8d:5d:8f:b7:51:66:48:ea:a0:63:7e:8a:31:60:
54:75:13:8b:40:cc:af:bf:ed:34:3d:ab:69:b3:a5:
79:31:18:39:0e:34:56:00:95:02:0c:8b:20:34:07:
1b:cb:b2:5a:3d:83:8c:b6:0f:95:5c:41:5c:20:db:
3d:c0:9a:04:a1:d5:24:bd:dc:d8:58:29:2a:2e:4c:
d9:f9:33:79:99:80:4b:2d:26:fe:6d:ba:3d:56:f7:
b7:14:91:84:f7:84:3f:59:9f:53:18:9f:ba:eb:3b:
e3:7b:b0:ed:55:b1:62:f1:65:2b:a9:2c:f6:50:87:
de:b2:e2:a2:ef:a9:2c:73:cb:7c:f9:9e:e5:c9:e0:
30:2b:d4:e5:b2:ee:07:4d:09:72:bb:64:74:73:ce:
16:4c:26:65:93:3d:cc:b9:9a:6a:62:6a:7e:cc:5f:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3C:83:9D:05:84:7C:4A:A0:55:CE:1C:60:EA:9B:54:E8:36:DD:94
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zjyDnQWEfEqgVc4cYOqbVOg23ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.154.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:cb:0d:c6:46:f9:7e:94:47:e5:24:45:0f:01:65:94:dd:07:
c4:0f:e9:15:fe:be:d8:75:d4:43:f2:da:4c:97:15:d8:66:fc:
5f:57:68:2c:8a:c2:6a:27:41:7e:21:54:42:7e:2a:55:fe:f7:
3f:16:d2:03:98:aa:51:03:67:27:7b:bd:2a:9e:a9:95:15:f0:
dd:7c:33:2e:2d:d5:5a:1a:86:bf:ef:87:9e:f4:2d:77:0b:ce:
57:0f:23:57:08:dd:f6:1f:db:02:be:00:e3:a4:4b:2f:92:a7:
61:aa:d9:12:e2:69:da:bf:f8:aa:df:5e:43:37:51:eb:68:14:
71:80:ab:91:16:c3:1f:a5:11:d2:52:9f:3a:a5:5c:c1:58:e2:
88:45:7a:2f:e7:47:e0:c8:49:30:21:a4:0f:ee:43:a8:ad:23:
cb:81:8c:68:c8:8d:f7:6e:fb:42:4c:7b:5d:0a:5d:6a:ce:16:
dd:2d:ad:27:4c:38:74:9b:fe:13:04:35:56:91:9d:37:fe:33:
b6:85:d6:27:b5:aa:1a:25:38:2d:91:43:fc:39:93:44:bb:c6:
d2:c7:f0:b8:3c:af:b0:07:4e:88:64:ca:42:79:b8:81:a4:25:
17:18:d2:f2:4d:11:2e:de:0d:d5:f1:6f:58:ca:25:45:d0:e1:
ae:05:ce:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:26 2024 by rpki-client on console-fra.rpki-client.org