Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m-hcQ-5tA5zZ9UKaE7cFElLVWT4.roa
File: m-hcQ-5tA5zZ9UKaE7cFElLVWT4.roa (raw, json)
Hash identifier: aspss56ZP2vUq8MyWCR4xfrcOop50CMixz3Kr1cw0PU=
Subject key identifier: 9B:E8:5C:43:EE:6D:03:9C:D9:F5:42:9A:13:B7:05:12:52:D5:59:3E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018F996466AE48DCBDF041738CB4548A3978
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m-hcQ-5tA5zZ9UKaE7cFElLVWT4.roa
Signing time: Tue 21 May 2024 04:24:04 +0000
ROA not before: Tue 21 May 2024 04:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 45.135.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:64:66:ae:48:dc:bd:f0:41:73:8c:b4:54:8a:39:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 21 04:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9be85c43ee6d039cd9f5429a13b7051252d5593e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:59:ff:10:85:0b:20:1c:10:ed:1b:65:95:48:
bb:58:a4:f3:cf:a0:c3:64:68:b5:9e:27:00:cc:7d:
f2:ef:3d:d0:a9:db:61:cf:95:4c:72:c8:f1:f5:fd:
8e:87:02:37:eb:54:77:54:68:e1:6b:d1:7a:f6:92:
32:76:6e:e7:69:f6:bb:eb:fd:7c:71:1f:65:17:ee:
29:a8:10:63:48:c1:e7:17:8d:d1:cf:11:5d:4e:3e:
fd:3a:06:c5:b0:62:c9:ae:c9:60:89:da:6f:76:2a:
7c:a8:bf:18:8c:4e:a4:02:95:a3:15:2f:45:55:9b:
95:cd:3c:8e:b8:28:f6:5b:00:3a:c5:ae:5c:15:ac:
82:57:0b:de:06:ee:33:0d:f5:60:44:03:2f:96:84:
5b:ca:19:4b:cd:9d:51:f1:dc:bd:9e:51:c3:1f:ed:
37:86:06:e0:85:99:d3:eb:22:66:c4:74:f5:cd:98:
60:fd:80:c0:de:4c:24:ae:32:92:23:66:d6:22:0c:
2a:df:9b:9f:94:75:e6:a4:2e:46:aa:2c:60:d1:3e:
14:d8:57:1b:f2:71:1a:20:f1:30:e2:22:a7:0e:c7:
f7:f4:c9:80:35:d6:02:a5:0b:43:ea:0d:a0:92:dc:
0e:88:9a:5c:ba:54:9a:4c:62:8e:00:9a:f6:de:68:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E8:5C:43:EE:6D:03:9C:D9:F5:42:9A:13:B7:05:12:52:D5:59:3E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/m-hcQ-5tA5zZ9UKaE7cFElLVWT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:b1:6a:3e:e6:11:48:4b:eb:b9:1b:1e:23:4d:b5:56:e9:ab:
4e:8f:48:f0:e0:3b:e9:ef:9a:c0:78:d4:3f:20:37:b0:61:12:
c0:37:ef:7b:01:d9:01:cf:df:c3:b2:03:ff:cd:69:cf:24:3d:
25:57:ad:9e:e4:8c:52:e3:d7:73:20:4d:80:37:c1:02:6c:42:
46:fd:33:3d:52:b2:93:b6:72:04:0c:38:e8:98:d1:dc:6a:e7:
6a:a2:07:a6:9e:c6:50:c8:a4:12:36:15:bb:f8:50:5b:70:89:
43:28:19:44:d8:1d:1c:ca:60:3f:b3:7a:53:f2:2d:42:7d:78:
5f:1a:1d:07:72:c9:19:62:fa:d1:56:59:05:99:44:1e:ab:99:
85:45:9b:85:9c:18:96:37:fc:34:12:fc:6c:69:76:ae:28:ef:
e6:d3:5e:84:57:67:f1:e1:64:7c:2f:ca:94:f9:fc:a9:59:a6:
08:a3:c6:91:c6:ba:27:35:7f:8d:43:4e:c7:e5:a3:47:13:c4:
b0:06:9d:40:14:70:e0:82:cc:ea:be:48:48:95:03:cb:c0:46:
74:94:4e:57:00:c2:aa:22:0c:69:2a:65:2d:3e:82:d3:63:9e:
1a:b0:48:be:9a:5b:39:77:c2:a3:85:b8:b6:b3:68:0d:6d:31:
4d:88:38:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org