Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8A-Ocljuc13CFqqhYGSUmI5CYho.roa
File: 8A-Ocljuc13CFqqhYGSUmI5CYho.roa (raw, json)
Hash identifier: Q2x4nU4Sz6XSFCeaX1XfqR0zoNMIFIsxAuF11HEYY9c=
Subject key identifier: F0:0F:8E:72:58:EE:73:5D:C2:16:AA:A1:60:64:94:98:8E:42:62:1A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01858231D6048E5D8DA9727F1485AC3E6DAE
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8A-Ocljuc13CFqqhYGSUmI5CYho.roa
Signing time: Thu 05 Jan 2023 13:49:42 +0000
ROA not before: Thu 05 Jan 2023 13:49:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211620
IP address blocks: 45.145.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 04:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:31:d6:04:8e:5d:8d:a9:72:7f:14:85:ac:3e:6d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 5 13:49:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f00f8e7258ee735dc216aaa1606494988e42621a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0e:16:53:77:89:97:b5:48:97:1f:aa:c4:0f:
2b:67:f0:5e:e2:58:36:e6:95:d2:1e:2d:75:a4:38:
92:0e:81:a3:3d:74:cd:3e:e0:c9:66:23:82:ef:f0:
8e:8c:54:e0:78:38:52:18:47:27:ba:b4:5a:aa:60:
e5:ef:a9:78:0a:7b:59:7c:87:e0:9b:2f:33:2b:cc:
31:9f:7f:6e:7a:aa:a5:15:96:9c:38:15:5a:aa:28:
79:ad:5d:71:93:70:14:b0:44:5b:12:0c:fd:99:4a:
52:8f:cc:f0:9b:f8:ce:51:70:c7:73:fa:b3:b5:b9:
39:88:ae:46:71:0c:56:a5:94:0b:53:80:bb:b0:e9:
1e:67:9f:55:d2:81:08:b7:ab:5d:19:1a:e1:b6:5a:
48:d0:ba:0c:f3:b0:52:99:13:3a:88:61:ab:6a:2e:
2f:c6:ef:c0:da:9e:78:4b:8b:58:f7:de:d9:42:9d:
f3:d0:bd:38:ec:27:b8:f5:03:26:3c:d9:6b:6d:7c:
36:23:77:4b:85:c0:6d:35:8c:80:5b:ae:04:42:6a:
b1:c5:15:4b:0f:4f:b6:5f:20:cd:41:91:70:2b:ae:
e9:1e:f2:b4:cd:c5:38:5d:9c:cc:1e:58:07:47:ca:
21:b8:32:42:5f:44:f5:cb:a1:53:02:af:3d:93:e1:
71:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0F:8E:72:58:EE:73:5D:C2:16:AA:A1:60:64:94:98:8E:42:62:1A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8A-Ocljuc13CFqqhYGSUmI5CYho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.248.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:8c:38:03:d0:dd:3e:58:5c:45:98:ae:9a:c8:29:96:7e:5b:
ed:bb:70:71:83:a1:03:5c:df:f8:b0:a0:db:8b:4a:e6:29:e4:
ef:78:29:d3:6a:e1:6f:bd:53:56:8a:63:50:80:ae:6b:c6:53:
67:85:c3:93:82:1d:d4:5f:fc:91:00:a5:66:6d:c5:d2:90:7a:
4c:43:6e:64:f0:29:ba:a5:d7:e8:16:b4:31:f8:1f:91:bc:0e:
dc:17:4a:a0:10:eb:66:ad:f5:39:3a:70:9f:57:13:72:dd:f5:
50:28:05:fb:18:4f:00:b2:b4:50:77:96:c9:24:ed:d9:2a:bd:
3e:77:e0:8a:02:14:27:06:f4:8b:9d:20:78:6c:97:46:d0:6f:
17:52:6a:3a:30:88:ed:28:58:e9:41:51:98:20:b6:72:1e:79:
64:ad:1c:e6:86:0e:af:59:77:25:c4:d1:08:00:a3:92:cc:8d:
b7:8d:7b:37:e8:30:4e:1c:93:62:88:ce:91:0f:b4:ac:9a:4f:
32:26:1a:ee:8a:30:7f:d0:62:8d:e6:70:bc:f6:91:a6:d5:5e:
38:3f:17:74:02:8b:b3:19:aa:dd:a8:51:5b:90:ce:66:b7:d7:
64:80:2a:35:75:e0:62:27:69:fc:cb:30:e4:71:b0:99:80:17:
a0:c4:e4:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org