Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/G1nMFnU-2RnEx4N4R5xAINc1Xko.roa
File: G1nMFnU-2RnEx4N4R5xAINc1Xko.roa (raw, json)
Hash identifier: uwxhtp8thkW0LbCIeH38vPFg8sCQV4slFCdpjkY9J2o=
Subject key identifier: 1B:59:CC:16:75:3E:D9:19:C4:C7:83:78:47:9C:40:20:D7:35:5E:4A
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018B1ECDF3FE99498F166D6D4423868E04F6
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/G1nMFnU-2RnEx4N4R5xAINc1Xko.roa
Signing time: Wed 11 Oct 2023 12:54:55 +0000
ROA not before: Wed 11 Oct 2023 12:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39600
IP address blocks: 45.146.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 07:39:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:cd:f3:fe:99:49:8f:16:6d:6d:44:23:86:8e:04:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Oct 11 12:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b59cc16753ed919c4c78378479c4020d7355e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:c0:fa:f5:4e:c0:cd:46:06:bd:05:44:d6:
db:2a:4e:61:00:7e:e4:b5:cb:a0:3c:4b:12:ef:37:
3a:e2:01:e6:e7:b3:bc:78:3e:37:29:92:a4:d1:29:
db:00:17:96:10:5d:a1:e4:83:e1:c0:b2:5f:5c:a5:
c1:aa:38:48:7b:0d:47:0b:1a:c7:72:96:99:35:c5:
ec:2e:7a:96:34:24:ce:8f:0a:72:a3:0d:63:a4:de:
f8:e4:05:57:d2:74:1d:8a:80:23:92:30:04:89:00:
f4:16:63:22:9e:0a:a4:e8:dc:a3:75:ae:11:2f:1c:
df:8f:2a:9e:bd:2b:2b:f4:3c:58:1e:d1:37:46:41:
72:5e:c2:61:9e:80:c4:42:7f:87:82:4e:58:7e:c3:
58:23:cf:af:7f:78:1b:52:7c:8d:68:93:d1:be:e3:
66:37:5c:f5:ec:5c:a5:3d:59:60:f9:b2:25:54:e0:
32:83:15:93:22:c6:c2:82:fb:d5:b7:c1:2d:0b:85:
82:30:dc:e0:dc:76:56:de:d1:25:b0:f0:ec:46:93:
c2:c6:dc:85:23:b4:ae:66:2d:c3:af:3e:f8:30:36:
f1:f8:58:97:a1:57:cf:2e:b1:77:e1:6a:0e:83:dd:
5e:e9:7a:fb:9e:46:bf:d4:3e:d5:f3:1f:c2:c3:52:
a9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:59:CC:16:75:3E:D9:19:C4:C7:83:78:47:9C:40:20:D7:35:5E:4A
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/G1nMFnU-2RnEx4N4R5xAINc1Xko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.203.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3c:04:b5:16:cf:a5:d9:b9:78:b1:b5:da:60:4c:35:c9:ac:
53:a9:4d:32:f9:15:c7:45:e8:f6:19:b4:90:cc:05:e7:a1:17:
15:b7:88:99:d6:ba:14:fe:f0:5b:88:fe:ed:f8:6d:80:5c:67:
68:4e:03:94:8b:54:fc:6b:2a:1e:42:b6:54:6e:5a:ae:2e:3f:
80:17:1c:88:82:a7:3a:43:13:0e:97:bc:73:23:39:36:25:44:
21:5f:82:da:22:8f:3c:8f:37:74:d7:6a:ca:33:3e:11:98:e9:
fb:bd:c2:dc:6a:dc:3e:c9:6a:25:50:e9:a1:80:11:f8:5a:47:
97:cf:13:5d:44:aa:c5:eb:86:29:c0:fe:09:45:74:63:f7:5a:
77:4c:65:41:11:08:14:8c:0a:23:7c:59:b4:42:48:7c:8d:9e:
cf:5c:52:f1:11:8d:39:b4:ac:c2:e2:df:74:d4:73:cb:80:f8:
7e:08:cc:5f:b3:0a:66:8c:f5:70:f2:dd:76:4e:7f:af:01:8e:
75:08:b8:77:a2:ed:bf:b2:fb:74:91:b8:ba:39:8f:ed:2a:a2:
db:aa:69:59:df:7e:3b:73:3b:6e:74:c3:6a:f1:bf:a9:8b:61:
2d:5e:03:4e:62:a3:e9:22:74:92:f0:ea:ba:02:e7:d1:c1:4e:
ea:38:3b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org