Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/86x3jJU2uOQknjVFIy4ML2vHnPc.roa
File: 86x3jJU2uOQknjVFIy4ML2vHnPc.roa (raw, json)
Hash identifier: wY2kzTipYRIP0hom7gzpTyTYYkLyzk14lVYpH5yupLs=
Subject key identifier: F3:AC:77:8C:95:36:B8:E4:24:9E:35:45:23:2E:0C:2F:6B:C7:9C:F7
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F799B433808894EB089DC29C3A992AD
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/86x3jJU2uOQknjVFIy4ML2vHnPc.roa
Signing time: Sun 01 Jan 2023 22:35:18 +0000
ROA not before: Sun 01 Jan 2023 22:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212728
IP address blocks: 45.130.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 13:51:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9b:43:38:08:89:4e:b0:89:dc:29:c3:a9:92:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3ac778c9536b8e4249e3545232e0c2f6bc79cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8c:2e:ae:0c:11:e3:e4:5b:6e:ec:7e:9b:83:
d2:8f:de:08:52:aa:11:58:e1:07:71:ad:3e:4d:35:
c3:b5:51:ab:02:67:68:73:42:96:c4:bd:f4:18:21:
e1:a2:68:8c:d2:f7:bb:52:c4:04:da:af:05:4a:7e:
e1:2c:cf:62:f9:75:af:20:8c:0f:a6:79:0d:12:a8:
46:07:76:60:9b:5d:e7:4d:87:6e:1c:10:d1:d3:ec:
a5:24:76:e0:c0:64:a2:d8:b2:8f:f4:3e:86:9d:ee:
7b:1e:66:fa:49:f9:90:10:3b:99:de:77:fc:40:df:
23:8b:a8:52:ed:47:8f:f9:f9:f4:11:66:4a:49:d8:
d3:de:8f:8c:a1:9d:cf:21:44:c4:2f:55:e9:f3:c5:
46:28:29:85:28:a9:9d:94:4e:50:1a:ca:d7:ca:4e:
9c:91:bc:a6:c4:c9:d7:e2:b3:58:3b:3e:99:de:ee:
ad:12:49:17:8d:3e:02:e8:53:69:94:79:c6:1c:84:
59:c0:d4:36:b9:17:83:35:e3:4d:5d:20:fc:f1:aa:
80:58:14:40:48:b5:81:e4:a4:52:d6:e5:d9:dd:ef:
49:97:ac:64:7e:01:54:a8:63:05:72:9c:d9:d5:e0:
ae:c4:eb:25:08:bb:a0:1c:d0:37:ae:cc:13:2b:33:
15:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:AC:77:8C:95:36:B8:E4:24:9E:35:45:23:2E:0C:2F:6B:C7:9C:F7
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/86x3jJU2uOQknjVFIy4ML2vHnPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.119.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:33:7b:12:0c:19:78:85:87:f6:67:e6:c9:4b:94:d7:b2:86:
18:1f:a9:83:cc:10:06:94:8c:40:4b:67:21:03:84:82:06:a3:
d7:cc:d1:2d:96:32:e2:e0:66:fa:0b:2c:50:d0:e0:73:de:7e:
ec:8f:01:43:30:48:3e:8e:9f:6e:2b:7e:48:01:01:72:50:cb:
af:1a:fe:41:63:ae:d3:50:28:b3:d3:31:a0:6c:ad:f9:3c:d6:
04:65:b8:14:50:d9:e1:7c:eb:8e:b8:bb:62:9b:9f:a4:23:d3:
81:1a:ec:e1:06:4b:8e:47:e5:ed:fd:df:0d:2c:4b:27:d2:a7:
d0:f4:c9:d2:c1:5b:aa:1e:50:b1:52:a8:a2:52:a8:c2:7d:bc:
e2:8a:9b:ca:d5:84:06:15:f0:9e:9c:69:60:84:03:a1:2f:19:
ef:3d:3f:99:8e:67:35:5a:8c:04:a9:9d:34:93:f3:2f:80:eb:
04:e9:48:c4:57:9f:86:14:99:62:c3:e0:69:4a:b5:1b:8b:13:
73:33:41:fa:7c:c3:5c:f9:df:28:fe:91:24:a9:7b:59:42:7e:
ed:17:82:45:16:e6:05:8d:7f:a0:42:d4:ab:65:cd:e8:9e:19:
0b:51:9e:38:75:e3:b6:a5:45:9b:72:81:d1:73:61:fc:4b:2c:
b4:27:88:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org