Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/iJ_EYS078mR_oIytodfXSpXGi4c.roa
File: iJ_EYS078mR_oIytodfXSpXGi4c.roa (raw, json)
Hash identifier: QEmgx6ll07WLiz8fAK7ZdaZ4uRSCk98JshuJD3bnJJU=
Subject key identifier: 88:9F:C4:61:2D:3B:F2:64:7F:A0:8C:AD:A1:D7:D7:4A:95:C6:8B:87
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 01857295DB6F8D7F8AA3E41685E012EA2EEA
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/iJ_EYS078mR_oIytodfXSpXGi4c.roa
Signing time: Mon 02 Jan 2023 13:05:01 +0000
ROA not before: Mon 02 Jan 2023 13:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 45.15.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 10:36:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:db:6f:8d:7f:8a:a3:e4:16:85:e0:12:ea:2e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Jan 2 13:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=889fc4612d3bf2647fa08cada1d7d74a95c68b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:17:a0:15:0c:56:9d:fb:83:38:2b:e5:63:ec:
cb:5a:7e:56:a0:fd:a1:46:c3:2f:c7:67:46:43:a1:
c7:cd:ce:47:86:e6:6d:b8:ce:57:c8:e6:cd:b2:8c:
ef:a1:0e:f3:7f:e3:49:3d:38:58:97:a0:8f:fc:d0:
0c:ee:7c:6f:14:84:03:b2:83:71:e9:91:38:2b:80:
c8:c4:03:d4:29:c9:06:43:ef:2e:d4:be:f4:e7:5c:
48:41:e0:9d:cb:c5:cb:cd:44:c3:25:8e:0b:66:6b:
e3:56:9c:bf:c8:e3:4d:bf:c5:b2:2e:1d:75:d2:7a:
b1:39:25:61:9d:4c:86:49:12:d9:30:a9:1d:f8:1f:
10:48:ae:7b:06:b3:5a:79:91:0c:96:c8:29:66:3a:
42:74:30:25:51:50:d7:bb:5c:17:43:dd:10:9c:44:
aa:8d:9f:25:df:08:13:3e:57:7d:19:b0:fb:78:94:
5f:bc:24:a5:4b:80:f5:80:3b:68:b7:15:53:ab:9f:
91:29:b4:10:6c:b6:d7:eb:68:d9:06:86:8c:35:6c:
1d:92:87:a8:26:14:83:6a:bf:77:d1:46:5f:b5:bc:
88:35:ea:93:5f:ae:22:31:3d:9a:66:6c:13:d1:1a:
fe:64:38:9d:19:0a:13:ce:eb:f9:10:30:67:ce:64:
81:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9F:C4:61:2D:3B:F2:64:7F:A0:8C:AD:A1:D7:D7:4A:95:C6:8B:87
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/iJ_EYS078mR_oIytodfXSpXGi4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.157.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9c:51:1d:85:9a:c6:06:a6:09:19:15:a5:20:48:b7:c7:f3:
cd:b8:40:26:5d:75:5b:97:cc:dc:f6:be:16:96:28:85:29:21:
2f:52:cf:e6:16:e9:09:c8:6c:60:dc:90:83:91:57:d0:81:dc:
b6:47:36:dd:f0:92:7a:66:3a:45:a9:1f:cc:3b:0a:15:e1:38:
2c:72:ac:8d:1a:95:c6:b5:37:91:bb:9e:b0:1c:b8:a6:f9:32:
e2:95:db:01:38:4f:54:f9:7d:7f:0c:be:a0:5d:b7:90:ad:00:
a4:37:c7:ca:45:18:33:7b:a4:c4:9b:3f:b3:00:72:15:e1:9d:
0d:4f:3c:e0:96:72:80:c5:83:4a:5f:47:97:44:8b:93:6f:72:
e8:4a:64:12:72:90:3c:b4:f0:0d:dd:c7:f9:c2:4f:74:21:69:
b3:73:b4:cf:75:0c:3b:93:23:c2:48:26:f1:10:dc:51:d7:3c:
f8:d1:48:7c:31:4e:60:ee:0d:a4:4b:13:8b:aa:49:55:97:72:
6a:a6:bb:f6:2b:e1:9b:20:8b:92:25:61:98:41:ae:2c:d6:0c:
10:82:90:75:e3:11:d2:a7:b8:97:04:2e:12:a1:0e:ce:5d:7b:
33:bf:33:0d:77:7b:db:39:5b:3a:43:f2:da:23:5e:02:01:e3:
44:e6:a3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org