Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/P_ndxawEaYj-AZlaLHpG6pwZZ84.roa
File: P_ndxawEaYj-AZlaLHpG6pwZZ84.roa (raw, json)
Hash identifier: +keLtq8QtP11eDlh7bcLYWNm+2fD0NOQQxVgMF+3Ah4=
Subject key identifier: 3F:F9:DD:C5:AC:04:69:88:FE:01:99:5A:2C:7A:46:EA:9C:19:67:CE
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 01857295DC673719948C43682211B8DAF102
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/P_ndxawEaYj-AZlaLHpG6pwZZ84.roa
Signing time: Mon 02 Jan 2023 13:05:02 +0000
ROA not before: Mon 02 Jan 2023 13:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211409
IP address blocks: 45.15.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:dc:67:37:19:94:8c:43:68:22:11:b8:da:f1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Jan 2 13:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ff9ddc5ac046988fe01995a2c7a46ea9c1967ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4e:84:90:bf:df:d9:06:c5:df:fc:16:db:df:
27:7b:80:1e:b6:5e:26:65:a3:ae:0a:ce:e0:7f:bb:
1d:8e:e8:60:86:45:e7:f6:0d:d6:81:57:cf:ae:b2:
b8:94:82:dc:fb:6a:c2:cd:d1:bf:47:ef:48:20:25:
d2:8f:5f:5d:08:a0:c8:b0:92:cf:e3:e3:03:c2:25:
17:db:a6:5f:cf:8d:50:87:22:fc:d5:cc:68:5c:ee:
ed:eb:2e:63:91:6f:05:0f:8e:de:10:e8:94:d0:44:
59:4f:ce:05:b1:03:c3:7e:1c:12:04:41:f9:f4:5c:
60:7e:b0:f6:06:38:74:5e:46:db:ab:d2:3e:d9:20:
0a:49:ce:1c:a1:1d:ea:9b:c7:76:90:af:84:e0:93:
16:da:fd:e6:19:45:0f:30:c8:7c:67:9b:db:dc:35:
a2:3d:a7:8c:d5:23:af:1c:15:42:73:f9:46:4c:97:
fc:79:ed:b9:19:99:c9:81:4a:ee:0b:c9:80:5a:3b:
68:29:9e:42:69:d1:16:ad:74:db:4d:91:52:4e:02:
83:cf:68:06:67:28:68:44:dd:e4:56:ee:64:24:a8:
0c:cb:ec:24:94:00:d1:87:42:e9:94:e8:32:c2:82:
88:72:6d:ea:8d:b2:1f:e2:ae:51:28:12:30:42:7a:
32:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F9:DD:C5:AC:04:69:88:FE:01:99:5A:2C:7A:46:EA:9C:19:67:CE
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/P_ndxawEaYj-AZlaLHpG6pwZZ84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.156.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:6d:e5:41:7d:25:9d:ee:c5:6c:4c:82:7f:3b:21:78:19:a4:
31:de:04:e3:e0:d2:82:55:fb:9d:bf:26:c0:0e:93:b3:58:af:
e4:27:1d:4c:82:b5:c0:18:89:e3:6a:fe:41:c9:90:dc:19:cc:
1c:13:a6:25:00:18:3d:83:86:6b:0d:56:38:43:3f:03:d8:ec:
cf:19:8e:2d:b9:0e:4d:0e:97:db:4c:e9:e6:36:1a:6b:70:98:
57:48:0a:3d:c0:bf:93:c9:ac:0b:a1:91:6c:6c:85:70:da:00:
3c:ff:21:fd:30:32:cf:d8:82:97:b6:5f:fc:9a:4a:85:27:a0:
2b:95:62:e8:01:55:0a:40:a9:4b:2f:4e:10:d0:44:65:1c:42:
9e:f0:76:8b:b8:a7:2f:f7:08:a5:f7:13:2a:4d:43:65:52:13:
84:16:2f:14:6d:3d:3f:f2:d2:62:0b:8c:59:4b:01:88:1c:09:
3e:58:84:e5:1a:16:bf:8b:22:6f:79:f1:a7:a2:cc:c1:58:92:
62:49:d1:90:07:d4:7e:87:96:94:1e:44:c8:23:30:29:6c:e0:
b8:00:c6:a3:0d:43:24:01:d4:dd:4b:ac:6a:1a:33:71:a2:d9:
a1:02:24:fa:58:18:28:7b:ca:96:53:77:09:e0:2b:3d:36:54:
a3:3d:a2:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org