Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/xUzt_oZ4lo8JqfqahBA9F_ShS4c.roa
File: xUzt_oZ4lo8JqfqahBA9F_ShS4c.roa (raw, json)
Hash identifier: teYWV4UU4OXKAIm/ezo/1w8a/46tuT69qz3cxEKlKZs=
Subject key identifier: C5:4C:ED:FE:86:78:96:8F:09:A9:FA:9A:84:10:3D:17:F4:A1:4B:87
Certificate issuer: /CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Certificate serial: 018CC3B71D9F898E5C4CE372192D6EB8C612
Authority key identifier: 29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/xUzt_oZ4lo8JqfqahBA9F_ShS4c.roa
Signing time: Mon 01 Jan 2024 06:30:06 +0000
ROA not before: Mon 01 Jan 2024 06:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208956
IP address blocks: 45.13.67.0/24 maxlen: 24
45.13.65.0/24 maxlen: 24
45.13.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 21:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:1d:9f:89:8e:5c:4c:e3:72:19:2d:6e:b8:c6:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Validity
Not Before: Jan 1 06:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c54cedfe8678968f09a9fa9a84103d17f4a14b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5b:21:03:0e:04:d2:b3:ae:90:e2:e1:72:57:
99:94:40:0e:da:67:c1:32:fc:b6:49:4b:fd:cc:12:
ee:4e:e4:9f:18:5b:ce:e5:25:74:6d:a5:5a:00:6c:
86:0d:7d:6f:c5:c2:f4:1b:10:16:82:72:5a:c1:e5:
2a:40:40:ba:98:ce:9c:7d:9c:d4:e3:35:39:91:42:
22:c9:ab:77:50:e5:a6:83:75:c1:73:46:58:9f:99:
ad:df:29:d2:0b:16:4d:94:cf:97:66:6c:3e:89:4f:
3b:58:79:f0:c1:a7:d5:33:a1:71:20:a8:25:30:c8:
ee:71:be:37:87:3e:0d:9f:d3:35:6a:5a:f2:f2:8f:
1a:a7:0c:bb:ae:a6:10:51:45:18:0e:25:a6:f4:b0:
e0:d7:51:59:03:a6:d8:ce:06:f8:2d:7b:9b:6c:3d:
ec:ca:92:00:1d:45:50:fd:74:85:4c:87:36:da:78:
9f:ed:c4:9d:50:7c:f7:42:b3:82:61:0c:23:e1:e4:
36:73:b8:18:9e:d9:aa:f3:41:42:4b:96:96:77:a1:
6a:07:f1:f6:84:99:81:d6:cb:d9:b0:9a:f5:70:eb:
33:21:2a:b4:aa:1b:6e:ba:30:38:20:75:5c:e6:ae:
bc:23:df:d9:c9:1e:6b:b3:5a:d4:85:b5:9e:6a:3c:
45:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4C:ED:FE:86:78:96:8F:09:A9:FA:9A:84:10:3D:17:F4:A1:4B:87
X509v3 Authority Key Identifier:
keyid:29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/xUzt_oZ4lo8JqfqahBA9F_ShS4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/KboKHXhI0sGyMd0-aCRCDRh5mRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.65.0-45.13.67.255
Signature Algorithm: sha256WithRSAEncryption
08:44:82:68:07:a7:1f:80:9e:a2:1d:b1:95:4d:f3:de:1e:7c:
b1:7c:40:c9:1f:10:e4:34:db:a0:92:b0:14:cd:08:e6:75:85:
b7:7b:cd:3a:aa:f3:09:70:40:a9:10:bb:4d:c3:c2:37:a2:91:
e6:51:64:9c:fa:46:9f:d2:87:98:54:6e:8f:f1:cc:38:39:f0:
3c:e8:26:c6:68:8b:7a:48:35:f6:a9:8c:20:d0:b5:83:df:e4:
88:2f:dc:ad:6e:6c:a8:a7:18:1c:e6:80:bd:a1:68:9c:2f:2e:
88:9b:3b:09:1f:0d:52:4e:21:88:85:f9:57:46:91:f3:61:1f:
b7:ba:f4:b4:fb:3f:6d:12:97:10:2d:a8:eb:55:ff:90:fb:0a:
56:25:24:28:68:c7:39:ac:ce:dd:7d:30:0f:7c:3a:af:16:15:
ae:6c:95:e2:23:32:94:f2:2d:4c:a1:69:c3:fb:91:bd:dc:a5:
ac:91:0b:76:b9:c9:57:f1:6f:dc:4c:5f:45:d6:07:b8:0a:c8:
94:10:e2:9c:f1:96:79:3a:73:54:56:8d:18:c0:44:6e:99:9d:
ee:12:0a:b9:32:6d:a9:34:b7:61:c5:b6:ef:9b:64:be:87:ea:
cd:fe:13:80:7c:6e:cd:42:bf:5b:44:6b:4b:1a:1c:d0:02:d1:
ac:12:bf:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 00:00:33 2024 by rpki-client on console-fra.rpki-client.org