Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b8c0cc-7a67-4ac9-bc81-a5fe484616ad/1/A8v5igMoTjNHmrmB5G1C9lGYaWM.roa
File: A8v5igMoTjNHmrmB5G1C9lGYaWM.roa (raw, json)
Hash identifier: R9rzxJmT9csh+FUGYJ5YUEmyWEZS/lwILfDPxX7pndI=
Subject key identifier: 03:CB:F9:8A:03:28:4E:33:47:9A:B9:81:E4:6D:42:F6:51:98:69:63
Certificate issuer: /CN=139ca3799553b9e180d334442323003513485e2d
Certificate serial: 018570D53D8C8A07350FA7A38F68EBB541A4
Authority key identifier: 13:9C:A3:79:95:53:B9:E1:80:D3:34:44:23:23:00:35:13:48:5E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5yjeZVTueGA0zREIyMANRNIXi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b8c0cc-7a67-4ac9-bc81-a5fe484616ad/1/A8v5igMoTjNHmrmB5G1C9lGYaWM.roa
Signing time: Mon 02 Jan 2023 04:55:01 +0000
ROA not before: Mon 02 Jan 2023 04:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8823
IP address blocks: 45.141.188.0/22 maxlen: 22
2a0e:cf40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:3d:8c:8a:07:35:0f:a7:a3:8f:68:eb:b5:41:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139ca3799553b9e180d334442323003513485e2d
Validity
Not Before: Jan 2 04:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03cbf98a03284e33479ab981e46d42f651986963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ff:ba:cc:26:8c:b5:2b:91:a3:3e:14:ba:7f:
83:2b:e3:8f:b5:36:0c:39:07:7c:f4:44:08:5e:95:
73:10:c5:cb:d4:b7:62:05:89:fa:9c:6b:71:33:24:
80:eb:e3:75:42:b4:95:fa:94:db:7a:3d:66:6f:69:
73:fd:43:c4:d6:9e:9d:82:8f:59:f8:b7:11:4d:b3:
02:cd:45:e2:5d:0c:f8:92:47:26:57:20:ec:90:9a:
34:ab:0d:1e:8f:98:0a:02:17:d4:8e:af:da:e3:20:
1d:a3:77:08:ee:94:2a:12:67:c3:f6:26:80:99:36:
9a:b2:83:29:47:02:84:be:94:33:85:01:3a:52:0e:
36:68:6c:07:b2:c4:a0:d2:7d:06:8b:9b:3e:e2:95:
6d:3a:9b:94:12:77:8c:2c:a4:ac:48:9d:59:b5:71:
ee:55:df:76:91:a0:14:2d:45:6a:35:af:2f:a0:3c:
1a:b2:b9:56:08:16:6f:7b:75:17:76:1a:81:94:dc:
02:6d:3e:ce:31:30:64:37:38:60:d1:cc:5d:b9:17:
9c:41:c2:6a:8a:4d:f2:a5:38:4f:eb:ca:24:95:60:
01:7f:a8:fd:5a:82:f6:ae:ad:3a:0a:09:d8:c3:ea:
84:b5:49:3d:9a:1f:db:4c:2c:af:cc:c5:c9:00:1f:
26:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CB:F9:8A:03:28:4E:33:47:9A:B9:81:E4:6D:42:F6:51:98:69:63
X509v3 Authority Key Identifier:
keyid:13:9C:A3:79:95:53:B9:E1:80:D3:34:44:23:23:00:35:13:48:5E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5yjeZVTueGA0zREIyMANRNIXi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b8c0cc-7a67-4ac9-bc81-a5fe484616ad/1/A8v5igMoTjNHmrmB5G1C9lGYaWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b8c0cc-7a67-4ac9-bc81-a5fe484616ad/1/E5yjeZVTueGA0zREIyMANRNIXi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.188.0/22
IPv6:
2a0e:cf40::/29
Signature Algorithm: sha256WithRSAEncryption
a8:8f:d8:e1:45:9b:8c:87:67:a9:f9:eb:50:71:f5:77:e4:43:
2f:d4:ee:37:06:a6:d4:1b:7a:b1:e4:af:87:c2:0b:b1:a5:04:
5a:36:27:c6:90:b4:e0:c8:a8:32:69:71:be:22:f7:05:71:c3:
bf:e1:1f:87:b6:59:bc:7b:2d:02:58:94:b3:52:c2:f6:c6:e5:
b1:d0:21:60:b5:26:75:55:30:70:78:ca:23:b5:cc:12:69:f8:
42:2d:c5:bc:a6:c5:32:87:6f:ab:0c:64:43:44:de:9b:92:34:
e6:03:2d:ec:3c:53:95:0f:8a:31:b5:fe:5e:eb:08:bd:85:03:
79:10:c8:11:f1:30:99:72:a3:bb:6c:9b:1f:ef:98:39:90:db:
9b:f6:a7:07:dd:bf:3e:0e:df:fd:95:97:fe:0a:7d:9b:1c:71:
89:5f:fe:57:2e:93:e9:fb:f4:b8:77:98:c3:64:6c:ca:bf:44:
fd:d7:44:d7:48:1c:08:a6:b2:84:f9:0e:cc:b4:9b:bf:dc:bc:
5e:83:59:f7:55:df:49:87:b5:10:32:5b:8d:eb:4e:87:ab:71:
9b:ba:67:b7:c8:1e:3e:ae:37:2e:21:06:50:a3:93:26:d6:46:
2f:2d:fa:e0:f1:05:03:98:23:53:88:5a:bf:0f:7d:ca:42:4b:
01:bf:76:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:24 2024 by rpki-client on console-fra.rpki-client.org