Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/U2WU5zgzshsbf4xlPc5nV8ydQt8.roa
File: U2WU5zgzshsbf4xlPc5nV8ydQt8.roa (raw, json)
Hash identifier: yiMXMBGYIFZdU2QzXAdw1sQWBsttwcGgR2oMdfqZNHU=
Subject key identifier: 53:65:94:E7:38:33:B2:1B:1B:7F:8C:65:3D:CE:67:57:CC:9D:42:DF
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0189F85ABFA5FD8DDF05439005E588A8A28D
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/U2WU5zgzshsbf4xlPc5nV8ydQt8.roa
Signing time: Tue 15 Aug 2023 08:40:44 +0000
ROA not before: Tue 15 Aug 2023 08:40:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 45.85.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:5a:bf:a5:fd:8d:df:05:43:90:05:e5:88:a8:a2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Aug 15 08:40:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=536594e73833b21b1b7f8c653dce6757cc9d42df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cb:1f:f8:b1:8d:a6:f9:4b:b7:b3:c3:38:65:
7e:95:71:4c:a6:3b:6e:b1:f3:8f:1b:f8:65:c4:44:
b1:6a:97:f3:bc:19:79:a4:1d:34:62:4b:eb:32:b3:
50:52:27:76:1c:b6:bd:a1:3d:af:01:4f:7c:7b:0f:
29:b8:31:a3:41:cb:3e:87:6b:4a:2c:56:94:5d:5b:
41:f6:33:96:ac:92:93:70:97:35:f1:10:f4:ce:bb:
12:99:eb:13:47:95:db:c6:4d:41:01:cc:8f:a6:63:
1f:8b:ee:dd:91:2e:e6:64:c1:e2:63:36:b1:33:36:
43:18:83:35:ca:dc:5f:04:fd:13:31:f4:58:55:76:
da:c3:e0:93:0f:ac:c3:1a:59:73:c6:93:40:a6:a7:
59:4a:ea:cf:3a:b8:76:b9:e9:3d:44:0e:55:65:4d:
e4:cb:4b:52:5a:c7:37:62:bb:ff:8c:25:7f:28:27:
a0:84:5f:a3:99:78:68:da:42:d6:d3:9c:93:e2:35:
4d:58:79:11:56:96:e0:89:0f:01:c3:d3:3e:59:b3:
81:ac:c0:93:fc:8c:2d:37:3c:b6:2d:40:b1:bc:58:
69:d9:af:6e:88:69:be:dc:a7:16:da:68:b8:c6:86:
3e:3f:ab:ee:5b:f4:98:eb:66:03:9f:d6:b8:01:4d:
68:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:65:94:E7:38:33:B2:1B:1B:7F:8C:65:3D:CE:67:57:CC:9D:42:DF
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/U2WU5zgzshsbf4xlPc5nV8ydQt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:44:73:42:39:0b:1b:20:e9:80:1b:66:55:af:8d:85:d9:8c:
27:19:fc:75:a4:6b:c4:f1:6c:5f:01:c0:74:cc:4e:5b:28:77:
ca:9f:d6:b0:41:72:16:40:18:be:5c:f7:f3:c5:89:49:fc:24:
63:21:ab:db:62:b4:ca:9b:61:8a:47:10:35:5d:c0:d3:95:e2:
16:40:7e:89:9c:aa:d7:5b:ca:54:34:b5:0d:4c:4d:ed:df:44:
1c:b2:af:d8:13:47:58:0d:ec:a8:36:ca:be:92:dc:ee:25:f8:
81:2b:c4:2d:a2:72:35:f4:9e:98:a7:c2:16:1a:65:ff:7f:5b:
4e:9c:dd:e5:02:13:f4:a7:df:c7:1d:5d:64:70:f1:8c:c3:0f:
27:58:56:2b:75:4e:d2:77:54:26:86:97:10:ab:27:56:99:e0:
47:7f:52:f8:41:6a:69:95:47:ba:1d:ce:6d:5e:96:e5:c9:9a:
52:e7:4d:e5:a1:ff:6c:d2:98:c2:d0:9e:0f:43:f8:19:5d:19:
ab:19:6e:9e:d4:1d:23:84:7b:ef:31:e2:03:c7:c3:49:45:ff:
5a:2c:b7:c4:f5:a9:0e:2c:d4:58:7b:95:c8:4d:bc:eb:29:d7:
0c:d2:2b:f2:55:5e:c4:e6:57:ff:5c:c0:4c:59:b4:1b:e3:a4:
0b:89:52:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org