Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/E7KfUnJLbo4sOb2Jwalgyi1mQrU.roa
File: E7KfUnJLbo4sOb2Jwalgyi1mQrU.roa (raw, json)
Hash identifier: eyV0+v71s1c5lrrJYUsrWbLeo3xPo0Zsra7U/MEH8tQ=
Subject key identifier: 13:B2:9F:52:72:4B:6E:8E:2C:39:BD:89:C1:A9:60:CA:2D:66:42:B5
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF430E72FCE3DC83B0FB84380B95F6
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/E7KfUnJLbo4sOb2Jwalgyi1mQrU.roa
Signing time: Sun 01 Jan 2023 09:35:03 +0000
ROA not before: Sun 01 Jan 2023 09:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 45.146.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 06:05:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:43:0e:72:fc:e3:dc:83:b0:fb:84:38:0b:95:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13b29f52724b6e8e2c39bd89c1a960ca2d6642b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:b6:33:ed:c3:c7:c1:49:86:7a:8f:fa:79:
1a:16:40:da:82:4a:dc:51:ac:a9:71:34:2d:00:a4:
0b:a9:d4:74:6a:cd:c7:c6:d7:d2:19:0e:8c:51:32:
b4:50:6f:3b:fb:01:53:00:c6:44:43:68:a5:4d:6a:
f2:34:a1:c3:fb:3b:6f:ef:16:cc:ca:1c:8f:26:a7:
56:d5:5b:d5:66:20:c3:98:65:a8:ba:a9:b5:63:b2:
f8:82:7d:b4:e1:b5:22:d3:7d:27:8f:e3:de:c2:df:
80:9a:84:d6:13:9c:81:bd:d1:bd:38:28:de:93:65:
ce:55:72:fc:0b:ef:65:0e:4c:b0:59:98:3f:69:fb:
07:14:66:c6:8f:f5:b2:0d:d7:71:db:8b:50:f1:ca:
36:d0:38:0b:7f:9a:e9:07:0c:72:33:51:09:17:72:
a0:b5:e4:88:e6:ce:00:ba:c0:76:00:a1:ca:76:b7:
57:54:61:3a:d6:08:55:5a:75:43:ff:3d:81:88:e6:
7d:7d:fa:dc:94:8c:0e:5b:97:db:81:33:08:3c:45:
98:9b:c6:88:df:d3:3e:1e:30:c9:59:f1:40:32:9f:
8c:fd:18:9e:aa:e2:e9:a9:41:65:75:73:1c:64:db:
4c:bf:76:cf:c5:7f:c7:d3:d1:3d:b0:3a:f4:3a:ff:
fd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B2:9F:52:72:4B:6E:8E:2C:39:BD:89:C1:A9:60:CA:2D:66:42:B5
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/E7KfUnJLbo4sOb2Jwalgyi1mQrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e4:cf:01:4e:e1:b5:23:f5:d5:5c:03:9a:fc:51:6b:17:03:
67:2f:b7:bd:e1:ba:ca:f2:68:d6:e9:a2:8f:bc:4e:73:02:c2:
89:5e:1f:83:03:c5:7e:2b:ec:5b:24:ec:6e:e2:86:74:a1:ed:
e1:26:55:e2:b1:36:7a:3a:b2:f5:d6:b1:3b:a1:ad:8f:78:2b:
56:54:06:69:4b:bd:38:ab:6f:c9:7d:33:bb:31:10:ce:80:5b:
59:12:37:a6:5c:bf:cd:23:e3:06:76:09:db:af:34:bc:52:90:
e1:db:7a:aa:f3:c8:64:87:90:c8:83:8f:ef:d3:a7:82:5d:c6:
95:62:84:43:f6:14:0a:6d:bf:8c:d7:a3:31:0a:e5:85:13:f1:
8a:2d:67:f1:c3:bd:01:9d:20:93:b7:ac:f1:3c:7c:fb:64:3f:
46:10:d9:74:7f:ed:e7:76:78:c0:34:aa:7f:d4:46:ab:0b:a3:
b2:43:70:eb:f2:da:5b:02:62:b6:90:0a:4e:68:9a:f0:52:8d:
63:90:f0:83:17:13:27:4c:6c:93:f6:e2:fa:c5:5c:ac:fc:dc:
73:cd:3b:27:ae:14:9d:56:f4:8b:44:29:56:77:bd:be:7f:69:
e0:dc:1d:7e:ba:6f:d0:5c:c3:0f:05:49:89:ac:31:36:7b:fd:
98:80:78:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org