Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/DEo6dkMivgr1UynQ1TvykULCsMA.roa
File: DEo6dkMivgr1UynQ1TvykULCsMA.roa (raw, json)
Hash identifier: m0S5/bBysd4W5Jc1ZiUKsRNkgReZPM6DQvSLD12zNF0=
Subject key identifier: 0C:4A:3A:76:43:22:BE:0A:F5:53:29:D0:D5:3B:F2:91:42:C2:B0:C0
Certificate issuer: /CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Certificate serial: 018CCA2B73013DD1D26329F82723A00098E7
Authority key identifier: 74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/DEo6dkMivgr1UynQ1TvykULCsMA.roa
Signing time: Tue 02 Jan 2024 12:34:54 +0000
ROA not before: Tue 02 Jan 2024 12:34:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 45.144.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 06:22:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:73:01:3d:d1:d2:63:29:f8:27:23:a0:00:98:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Validity
Not Before: Jan 2 12:34:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c4a3a764322be0af55329d0d53bf29142c2b0c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:26:e2:f3:5e:41:a7:ed:f5:d7:28:02:30:
93:7a:3f:c8:dd:5a:59:1e:95:fb:bf:0d:cd:3b:a4:
b7:a2:d1:49:2b:5c:ab:2a:f2:7a:9a:28:83:8c:04:
d8:9a:58:4a:a1:75:29:80:c5:d9:f1:cf:78:d6:13:
5d:83:eb:58:e5:6c:70:56:59:4d:7c:38:a1:77:67:
80:7c:73:ca:c2:4c:1a:85:cc:e6:2d:bc:c5:d6:03:
0e:40:c8:c2:d9:f4:68:14:99:b9:2c:ae:bc:7d:fa:
cf:f9:f1:96:ee:ff:a6:66:83:b3:2f:ee:20:96:75:
bb:00:94:6f:d8:63:2f:d5:fd:86:12:f0:38:3a:c6:
44:6e:ce:6c:28:28:08:9b:0d:09:53:a7:62:b7:af:
77:bc:3d:e2:96:af:12:fd:14:65:50:6a:e6:60:7f:
85:e1:5a:fd:a2:ee:87:77:4a:9d:50:a5:0f:d0:1f:
61:ae:4b:5e:67:92:15:99:eb:2a:9d:96:f7:86:86:
77:68:11:e4:54:e4:a8:71:3a:f6:77:7f:b2:12:32:
de:0d:b5:a5:1f:15:5a:4a:98:da:89:6a:f8:7f:b6:
bb:06:67:15:52:3c:d7:fc:0f:93:91:be:a2:ae:d6:
72:31:49:e7:05:34:8f:a9:15:2c:a7:08:00:70:29:
9b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4A:3A:76:43:22:BE:0A:F5:53:29:D0:D5:3B:F2:91:42:C2:B0:C0
X509v3 Authority Key Identifier:
keyid:74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/DEo6dkMivgr1UynQ1TvykULCsMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:98:4e:e1:92:17:15:a7:4b:bc:ec:1a:53:ed:29:17:ee:a1:
2e:fc:bd:63:66:9e:b3:77:73:a9:56:96:d8:36:a3:02:00:98:
30:a2:51:ce:16:96:61:0c:e4:10:9d:61:a3:05:8c:37:86:7a:
ea:b3:39:a9:4f:6f:f5:59:ab:c0:0f:a8:4b:38:d5:a7:9e:8b:
3e:25:2a:ec:cd:c8:8b:c7:e1:0c:d1:3c:47:c5:fd:80:58:a0:
4a:71:c6:dd:20:1f:35:19:97:77:d6:de:2d:19:a0:5c:79:99:
f1:bc:26:95:b5:c2:ad:ec:2a:d8:7c:64:cf:68:c6:34:a1:e3:
bb:94:fe:02:c2:84:b7:61:dd:26:e2:ba:9d:98:0e:56:7b:1a:
53:f7:4c:b9:57:bf:8f:0f:dd:38:c3:c5:6b:c9:6f:a4:f6:7f:
e8:1d:ee:f5:f0:a9:8f:ab:9f:1a:4e:b1:29:c6:34:fd:fa:8f:
91:49:e2:11:a0:4f:8c:1a:1d:53:db:bd:86:a4:9c:5e:f3:9b:
98:d6:7f:e7:b6:a3:a5:fe:10:cc:c9:f5:24:39:be:68:6c:39:
66:94:a8:77:50:27:1f:fd:8e:98:db:7d:14:07:54:99:18:d0:
ea:ad:63:9e:c4:1c:72:33:17:bb:56:a5:1a:1e:7a:1b:c6:59:
f5:06:8a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:56 2024 by rpki-client on console-fra.rpki-client.org