Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/H7sLVCL2GS-imc7C5ZFFBqeL_os.roa
File: H7sLVCL2GS-imc7C5ZFFBqeL_os.roa (raw, json)
Hash identifier: P1iIcCUGpqydPfUTU8/qrCtjEYSwuTuAmfVZTENtxKI=
Subject key identifier: 1F:BB:0B:54:22:F6:19:2F:A2:99:CE:C2:E5:91:45:06:A7:8B:FE:8B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F7985140CFB020329E15160BDA08667
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/H7sLVCL2GS-imc7C5ZFFBqeL_os.roa
Signing time: Sun 01 Jan 2023 22:35:12 +0000
ROA not before: Sun 01 Jan 2023 22:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51736
IP address blocks: 45.138.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 14:53:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:85:14:0c:fb:02:03:29:e1:51:60:bd:a0:86:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fbb0b5422f6192fa299cec2e5914506a78bfe8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f6:31:eb:9d:35:cb:f4:31:5b:70:b8:8b:6a:
5d:84:fc:c8:60:9d:bd:ea:cf:3e:78:a2:24:d5:1d:
f5:98:24:09:b5:73:ef:7e:ee:00:07:92:36:59:6a:
f1:11:c1:8f:69:03:df:0b:25:42:77:23:2b:ca:a9:
95:05:72:a6:d6:ac:ff:38:2a:45:1a:40:7a:82:16:
f1:9f:e4:36:f8:cf:d6:84:4b:f1:0e:98:e2:69:7f:
cb:4e:20:a8:b1:5f:3f:1a:3a:a3:dc:32:4d:92:c3:
2f:0c:1a:87:33:db:25:90:f2:94:42:cb:85:ae:28:
c4:3d:dc:92:49:4d:49:7a:14:a4:d2:e9:91:dc:85:
04:2a:22:4a:0e:5a:13:07:13:a4:2e:26:d9:3b:c8:
6f:76:b2:4a:74:f5:71:ce:89:19:16:35:4f:f1:9a:
b1:81:72:2e:94:a2:29:71:ee:0a:b4:91:cc:57:b1:
f4:4e:90:c0:98:c6:8d:96:b5:7c:15:6b:5d:26:b0:
96:9c:21:0c:79:d2:92:ab:f8:73:40:d9:fd:02:c6:
81:eb:33:e9:06:87:64:f6:c8:89:d6:95:de:5c:de:
ce:b7:9c:72:1a:dc:ec:58:93:90:9b:40:ee:aa:90:
32:eb:6f:a9:36:71:e9:51:c3:39:29:ab:36:1d:21:
d3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BB:0B:54:22:F6:19:2F:A2:99:CE:C2:E5:91:45:06:A7:8B:FE:8B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/H7sLVCL2GS-imc7C5ZFFBqeL_os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.19.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:b1:a5:53:5f:e4:bc:1d:04:8f:11:8e:a6:90:fd:84:0d:3f:
a4:0a:a1:a8:02:c1:14:a4:0f:37:c4:c1:d9:33:74:9c:d5:70:
1e:47:76:c1:d7:db:ff:0e:9a:25:8b:16:dd:b1:98:93:d0:8a:
28:4a:ef:40:57:2e:83:54:3a:e3:63:45:94:26:4e:7c:ba:6c:
de:cf:47:67:85:f9:92:e7:03:01:93:dc:9d:ea:c1:e9:cf:3c:
d2:1f:d4:08:e5:ec:9e:02:a5:cd:ee:ce:a0:93:57:ac:c3:39:
6b:97:eb:a7:e8:60:48:76:5d:c0:f4:7e:f3:16:12:25:7c:53:
94:42:02:ea:48:45:be:55:d9:2b:0d:d4:f5:af:68:d1:0d:d6:
2e:cf:fe:22:e5:c6:9f:89:5c:ce:54:e2:ec:93:93:11:9d:9a:
81:39:aa:b1:52:43:62:5a:14:13:06:99:1f:3e:51:86:8e:81:
d5:3e:4d:3a:34:59:09:7d:b2:20:3a:8e:98:9a:b0:1e:ef:a7:
81:c0:66:37:85:ba:06:02:d3:b9:8d:fa:08:ba:c9:16:d6:94:
78:f2:f4:b3:10:52:33:28:ac:97:5e:95:e0:59:46:ae:49:d8:
f0:9a:ce:94:f5:32:93:52:e3:90:ea:fe:f9:74:23:03:89:65:
de:1b:d2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org