Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/23kfE1jqk3n1us374hzT01u8LXw.roa
File: 23kfE1jqk3n1us374hzT01u8LXw.roa (raw, json)
Hash identifier: RB8FIQcInE3kS6sgt/GF+PXNiUUD/3FzhdNrztEeUXU=
Subject key identifier: DB:79:1F:13:58:EA:93:79:F5:BA:CD:FB:E2:1C:D3:D3:5B:BC:2D:7C
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 01865F7437A0DEEC0F1E7F63B23AECE0DEB5
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/23kfE1jqk3n1us374hzT01u8LXw.roa
Signing time: Fri 17 Feb 2023 12:58:17 +0000
ROA not before: Fri 17 Feb 2023 12:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210512
IP address blocks: 45.91.65.0/24 maxlen: 24
194.187.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:74:37:a0:de:ec:0f:1e:7f:63:b2:3a:ec:e0:de:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Feb 17 12:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db791f1358ea9379f5bacdfbe21cd3d35bbc2d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c8:27:6d:d3:d3:d9:c7:b6:22:65:d2:cc:f0:
2f:70:0a:ab:af:37:d1:f1:67:69:3f:81:4d:50:1a:
9f:18:cd:74:86:62:8e:dc:94:42:06:37:08:39:c3:
6f:fd:01:22:8d:17:10:af:b2:04:ae:68:b5:56:e6:
cc:5e:ad:9a:7a:8e:63:5d:dc:09:6d:1c:00:c5:ed:
45:34:01:2d:cf:06:8c:ed:89:bb:2f:54:3b:6a:ea:
bc:60:ae:d6:50:a7:3f:ce:71:a3:1b:4e:12:58:87:
c5:6a:fa:b3:c4:67:a0:8e:7a:f7:ff:3b:23:36:79:
c8:21:7d:58:10:40:04:ca:49:8e:2f:f7:d6:ac:30:
00:39:4e:eb:a7:8a:4f:cf:aa:b4:92:4a:4f:58:83:
7d:30:2a:8d:f7:0f:c2:a5:c8:6b:73:c9:11:c3:04:
fa:71:6d:b1:1c:50:cf:e5:6d:f4:4f:98:2c:82:8f:
3d:f2:e9:79:23:88:10:2c:cc:d9:ca:8f:94:d0:d0:
7d:e6:01:88:89:40:93:e5:d9:ca:ef:c0:7b:d0:93:
63:25:0f:ad:1a:f8:a9:a2:02:b2:27:5a:5d:4e:50:
5d:66:18:7e:9b:d9:92:38:95:68:94:9f:d8:17:5b:
b0:bc:80:2b:1f:32:ae:64:14:fc:32:30:ee:c4:7b:
f0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:79:1F:13:58:EA:93:79:F5:BA:CD:FB:E2:1C:D3:D3:5B:BC:2D:7C
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/23kfE1jqk3n1us374hzT01u8LXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.65.0/24
194.187.120.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f0:ae:d4:89:a2:f2:e0:1f:1d:3e:24:00:72:7d:27:65:93:
9c:c6:33:4e:08:80:15:12:f5:e3:cf:53:75:c3:d3:ab:8f:94:
b5:2d:d2:30:9a:2c:da:a9:50:4e:d4:fc:f6:a8:c6:3f:75:c8:
37:ab:02:eb:a6:54:b9:b8:63:68:b5:1b:08:6a:34:d0:db:05:
7f:c5:55:25:66:0f:a9:ba:72:9b:31:af:1d:69:6b:47:7d:39:
20:1b:5a:f4:cf:b9:99:c8:d1:fb:56:4c:b3:24:61:66:a5:de:
07:55:b8:8f:06:f9:44:52:01:e3:0b:e5:15:9d:32:e4:f0:6b:
70:c2:11:8f:89:74:ac:3a:7c:d5:0e:b5:7e:37:28:f6:e9:79:
fa:dd:96:58:4d:3e:aa:bc:b0:50:77:fa:10:dc:91:b7:54:6e:
58:6d:07:d2:d0:c0:59:76:c1:65:5d:51:29:cb:93:e8:1d:8e:
b6:c5:f3:1e:08:66:d9:0e:1c:84:57:b2:2e:59:ff:32:07:92:
ae:dd:cd:d5:ab:ca:35:bb:89:24:76:4c:9b:04:cb:8e:ac:88:
4c:8d:f5:06:f6:6a:fd:1c:9d:e4:64:18:48:0a:2b:f2:4f:c6:
f9:48:1a:88:4d:2f:6c:35:be:70:08:6c:eb:68:0e:6a:88:e3:
4d:82:33:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:30 2024 by rpki-client on console-fra.rpki-client.org