Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/a7QJQLO6Br-nPW2nPI1bSAvAMZ0.roa
File: a7QJQLO6Br-nPW2nPI1bSAvAMZ0.roa (raw, json)
Hash identifier: SFJvjvCapVWXwbJeiC762YSCdJUsqvG3XSegDX3scDs=
Subject key identifier: 6B:B4:09:40:B3:BA:06:BF:A7:3D:6D:A7:3C:8D:5B:48:0B:C0:31:9D
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 01856FD5112F8FF070680D903C25EF85D842
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/a7QJQLO6Br-nPW2nPI1bSAvAMZ0.roa
Signing time: Mon 02 Jan 2023 00:15:12 +0000
ROA not before: Mon 02 Jan 2023 00:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 45.157.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 20:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:11:2f:8f:f0:70:68:0d:90:3c:25:ef:85:d8:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 2 00:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bb40940b3ba06bfa73d6da73c8d5b480bc0319d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:7e:be:95:eb:de:26:06:38:5d:85:c8:4f:
25:75:e6:1e:7f:8e:e3:65:a0:02:8f:dd:42:e5:87:
3c:55:ed:ed:89:d8:17:a8:f4:6e:a7:c8:29:9b:ef:
33:01:4c:23:c2:a8:9a:57:0f:2c:35:12:59:7c:64:
9a:27:03:56:e7:2a:22:4b:04:11:4d:ee:77:84:b3:
fa:a6:31:4c:17:dd:34:11:3b:20:79:79:8b:93:34:
37:0e:69:09:fa:8b:2f:4f:a8:64:a1:af:13:b2:bb:
75:49:ee:ec:68:90:67:fd:27:1b:09:3f:57:08:45:
0f:0b:6e:c6:72:65:c3:4a:5c:bd:35:0a:dc:bd:26:
3e:88:fd:7b:12:ec:f1:3c:23:35:62:ea:64:f0:a5:
a6:0c:3d:5f:b3:b9:55:e1:66:90:58:23:86:1e:16:
d5:17:cb:2b:3a:d0:f0:db:48:95:ac:fc:96:70:34:
13:34:34:d7:03:45:77:7a:0b:7f:f8:d3:de:0c:03:
9b:1b:96:c0:78:e1:ab:b4:fa:53:4a:26:95:84:16:
eb:09:ff:62:fe:1a:eb:a0:dc:4c:a8:39:83:a8:13:
1d:65:00:56:d7:ac:4a:da:45:a2:bf:68:33:13:0f:
ed:7f:f5:c5:59:4d:4b:d8:80:a3:93:03:a8:c5:e8:
2a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B4:09:40:B3:BA:06:BF:A7:3D:6D:A7:3C:8D:5B:48:0B:C0:31:9D
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/a7QJQLO6Br-nPW2nPI1bSAvAMZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.10.0/24
Signature Algorithm: sha256WithRSAEncryption
55:5c:d4:3c:72:94:05:8a:b1:41:13:60:05:75:64:eb:ff:e4:
fc:bf:9b:1a:58:fc:6c:56:05:96:c8:11:54:36:fa:25:90:83:
2a:5e:20:b0:56:51:2a:3f:19:55:71:0d:64:24:03:ed:ab:b0:
49:53:90:a6:9c:d8:71:98:b9:8d:52:3a:4d:ae:f3:36:e5:66:
49:fc:65:b1:3d:2a:35:b6:7c:b8:06:06:7b:b1:80:56:ab:4a:
f5:6f:96:00:0a:86:2c:22:42:e4:46:13:07:8f:88:6a:7f:77:
3e:e4:7d:bd:dc:20:b4:64:f8:d5:ca:93:07:1f:52:bc:e4:73:
de:4c:88:f4:c9:00:d1:c7:ac:7a:09:c9:7b:cd:b2:21:7b:2e:
c8:af:2e:5c:aa:fd:24:26:df:20:df:3e:9e:ba:86:75:c5:4d:
3e:37:b9:21:d3:18:68:aa:ff:10:e3:56:de:d1:5c:80:4a:dc:
0e:84:ed:4e:be:6b:44:7c:f5:b2:e4:ff:cd:6e:ec:81:0a:8f:
6d:26:e3:bb:e1:a4:d1:fa:f0:c1:65:10:67:72:e1:27:41:31:
4f:89:97:09:20:e3:42:56:8e:d2:fa:b9:30:39:45:da:14:56:
ff:bc:5c:03:3a:58:1b:61:bd:77:30:6e:94:11:11:66:42:08:
be:59:7d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org