Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/22JT4xbHSq8oH-VX5Qnkzx_uiVo.roa
File: 22JT4xbHSq8oH-VX5Qnkzx_uiVo.roa (raw, json)
Hash identifier: h6jruq+I6dSorEKcKFEgmSvYnopt34Pt9c+I1hgPT1A=
Subject key identifier: DB:62:53:E3:16:C7:4A:AF:28:1F:E5:57:E5:09:E4:CF:1F:EE:89:5A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018733D4759CE85D5DCEBE597A5FE5CCA70A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/22JT4xbHSq8oH-VX5Qnkzx_uiVo.roa
Signing time: Thu 30 Mar 2023 18:42:54 +0000
ROA not before: Thu 30 Mar 2023 18:42:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.83.207.0/24 maxlen: 24
2a07:e345:100::/40 maxlen: 48
2a07:e342::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 03 Apr 2023 11:23:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:d4:75:9c:e8:5d:5d:ce:be:59:7a:5f:e5:cc:a7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 30 18:42:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db6253e316c74aaf281fe557e509e4cf1fee895a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:59:e0:8a:ba:ea:a5:78:14:e6:29:7d:0b:19:
7c:4d:f9:69:dc:1c:36:14:83:34:84:f6:8e:0a:ba:
4c:c3:e8:57:81:99:1c:fa:3f:22:af:99:39:65:ec:
ac:10:c2:7d:58:eb:51:fe:b4:bb:36:a3:75:80:83:
1d:3e:a5:e4:0a:38:91:6a:e0:50:dd:df:6d:21:d3:
51:b7:04:f9:fe:be:73:7d:c8:08:6e:66:35:14:71:
a6:6b:0e:2f:c6:39:b6:7f:1a:22:82:6e:3f:13:00:
f2:e0:6b:a2:f8:76:50:72:a9:d3:15:02:04:82:f2:
49:0e:a9:2e:5d:b5:2a:92:43:4c:9a:a4:ac:52:8d:
9e:81:87:93:56:ef:59:06:a4:46:07:12:c9:13:e9:
0f:ff:ff:a9:41:3d:98:b9:3a:38:f0:1a:44:da:22:
cf:ce:b2:b3:d3:dd:1b:e3:9d:b9:3f:db:bd:23:fe:
a3:19:b0:ff:30:aa:81:2b:80:b7:24:7f:4c:7b:86:
1f:ad:54:e6:95:2c:13:6e:cc:dc:c3:d0:28:93:4b:
20:04:32:8d:bc:c8:43:39:4c:01:9f:92:35:51:7d:
55:24:e0:02:82:e9:d0:11:2b:15:be:06:91:d9:ac:
c9:fc:64:78:f2:da:aa:ad:c5:cd:31:6a:ee:66:58:
70:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:62:53:E3:16:C7:4A:AF:28:1F:E5:57:E5:09:E4:CF:1F:EE:89:5A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/22JT4xbHSq8oH-VX5Qnkzx_uiVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.207.0/24
IPv6:
2a07:e342::/32
2a07:e345:100::/40
Signature Algorithm: sha256WithRSAEncryption
8b:91:d8:02:98:c6:78:b3:d1:8b:77:ab:66:6a:0e:c3:ef:d2:
96:f5:d1:7d:7e:fe:1a:7b:48:7f:0e:c8:ff:ff:39:c6:46:f6:
f2:1f:5f:4b:4e:8c:de:d3:1a:28:f0:96:9c:83:4c:ff:f7:16:
23:74:c0:1b:f7:e0:e8:7a:a4:2f:d0:d6:7c:d9:f2:16:ef:06:
c8:71:e5:cd:cc:2b:d5:d1:7c:f2:43:f0:0a:21:3a:57:43:f0:
32:a6:78:20:0d:22:51:fa:69:53:ad:6d:3c:f0:1a:7f:0c:c7:
8d:cb:6a:4e:41:d2:78:f7:62:ae:b9:c8:4b:31:5b:80:cf:f1:
6d:ef:8a:a3:2f:8f:7a:cb:71:e4:b9:44:0f:f0:de:6d:f3:e1:
9d:2e:3a:1e:6b:5f:ac:b7:bd:cb:c4:a7:92:f0:7f:7f:eb:dd:
fc:e8:b0:df:99:e4:03:c4:d9:f9:5f:c4:55:69:19:a8:46:10:
cd:fc:2d:c1:6d:0a:7c:38:d3:79:6e:53:97:e6:a4:97:0a:51:
ac:6c:24:0f:fd:49:90:e4:7b:33:0f:4d:a6:ff:30:7b:ec:40:
7d:22:cd:c8:95:43:7d:74:8e:c9:3a:36:46:f3:ee:03:bd:5c:
f6:9d:b9:32:4f:ea:e7:3c:c4:95:71:3c:50:88:5a:d0:72:f6:
e1:61:d6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org