Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sJDTsjqrJLxE7kbkwXt0CR4jB9k.roa
File: sJDTsjqrJLxE7kbkwXt0CR4jB9k.roa (raw, json)
Hash identifier: X1BF2i8CxC0c3ykgD7Ns9P3dnhFBLV+CiFpSYw9BOUI=
Subject key identifier: B0:90:D3:B2:3A:AB:24:BC:44:EE:46:E4:C1:7B:74:09:1E:23:07:D9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FAC98DAEF98A7E7B4CCE99BB0AF65
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sJDTsjqrJLxE7kbkwXt0CR4jB9k.roa
Signing time: Tue 02 Jan 2024 04:30:11 +0000
ROA not before: Tue 02 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58955
IP address blocks: 45.130.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 10:46:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ac:98:da:ef:98:a7:e7:b4:cc:e9:9b:b0:af:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b090d3b23aab24bc44ee46e4c17b74091e2307d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2d:84:0a:7d:87:b1:bb:74:1a:dc:cc:d8:b9:
f3:c1:a3:f8:2d:c1:1c:7c:8e:db:76:f0:6a:7d:40:
04:6e:0f:91:fc:3d:1b:1c:4f:82:b3:8b:ff:69:06:
c5:4e:63:ac:4f:a7:1a:49:5f:d8:41:8d:93:4c:73:
69:71:4c:c6:f9:17:ca:a5:e0:92:32:03:35:f8:93:
75:62:8f:9d:3a:5b:f9:80:7c:b5:11:63:17:15:1a:
cc:e6:f6:d6:13:10:70:9f:ae:81:14:01:2f:74:f8:
23:0b:51:bd:b4:4e:22:11:6f:8e:5e:b8:27:0e:4b:
a6:0b:ee:2d:cc:3c:2b:2f:99:89:01:0e:aa:21:f5:
b2:c4:55:10:cc:b7:07:2c:a8:83:7d:ca:fe:99:d7:
f5:00:af:82:49:57:8f:4b:c4:ed:43:ec:03:8c:ac:
4c:6f:de:9b:f4:d1:ea:b6:90:18:f2:c4:b7:78:61:
c7:3c:8f:cc:93:87:0e:16:23:b4:2b:24:cc:29:2d:
62:d8:98:c2:2d:86:78:e6:83:db:59:8d:3f:e0:50:
83:cc:20:cb:ea:fb:cd:b3:c1:ba:4e:8f:1c:0b:48:
ba:0b:89:5b:cd:00:1f:a3:e8:11:b5:b6:fc:aa:ca:
e0:c8:5f:10:36:b6:51:ac:30:03:e9:43:2c:88:f7:
a9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:90:D3:B2:3A:AB:24:BC:44:EE:46:E4:C1:7B:74:09:1E:23:07:D9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sJDTsjqrJLxE7kbkwXt0CR4jB9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.141.0/24
Signature Algorithm: sha256WithRSAEncryption
39:aa:48:ab:49:e4:ba:62:ac:d8:06:74:2d:95:3c:9e:ae:da:
81:c0:da:71:73:5c:f0:1a:a9:ad:00:e8:c1:74:3e:96:96:5e:
72:66:e8:16:02:b9:f5:fa:48:b5:01:3e:e7:69:79:c3:a9:33:
c2:e3:59:c1:40:fc:bd:03:7b:90:9b:6c:9b:a9:e4:b1:ec:94:
f5:3d:c5:17:3f:02:1c:d6:62:fd:e2:2f:eb:5f:e7:db:36:87:
af:e2:ef:bd:66:8c:cd:db:5a:b3:d1:a5:f9:a4:9b:e1:b6:db:
df:8e:a8:ca:02:d0:2e:09:f8:f7:e2:ac:30:04:72:a3:f9:d9:
cb:47:b1:a1:ff:c8:62:81:09:48:95:a4:2f:64:ef:76:e3:60:
67:44:db:d8:ad:74:95:6f:58:72:72:81:86:ee:ea:e9:a6:0a:
0d:b5:d0:a7:b3:34:99:c0:f3:57:c4:2c:f8:0f:d6:df:0d:6e:
93:4d:85:a2:5b:f0:87:5e:66:7b:70:d4:dd:74:82:2e:a2:af:
3d:0d:71:64:a8:c8:8a:08:29:59:78:c7:a4:76:de:ab:a2:e3:
5a:83:aa:72:75:2e:97:88:02:80:11:c5:77:a5:9a:ac:c6:b6:
47:ac:41:d8:0f:c5:b1:40:46:0a:17:b1:81:76:e0:ea:25:87:
ba:21:01:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org