Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/mzE8BYbw6iC3DoPsKl27bymko8Q.roa
File: mzE8BYbw6iC3DoPsKl27bymko8Q.roa (raw, json)
Hash identifier: TKYPsmz9E/1Hif2n+tYgDsWTrQ9FD0q6FqQdDiSYW9U=
Subject key identifier: 9B:31:3C:05:86:F0:EA:20:B7:0E:83:EC:2A:5D:BB:6F:29:A4:A3:C4
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 01857169A1DB31C4274E547AE34041608D45
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/mzE8BYbw6iC3DoPsKl27bymko8Q.roa
Signing time: Mon 02 Jan 2023 07:37:06 +0000
ROA not before: Mon 02 Jan 2023 07:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41881
IP address blocks: 45.142.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 09:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:a1:db:31:c4:27:4e:54:7a:e3:40:41:60:8d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Jan 2 07:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b313c0586f0ea20b70e83ec2a5dbb6f29a4a3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:fc:c1:94:14:f9:b3:99:84:81:28:90:58:
79:88:51:34:26:74:ee:df:4e:ea:00:bc:b0:0b:73:
a7:2b:b6:04:aa:ad:b2:a9:76:40:09:e4:e0:f9:e2:
81:bf:12:dd:9f:81:40:9c:1a:3f:61:5d:4b:8c:de:
0f:ed:15:46:42:31:79:88:e9:4e:02:52:dd:88:79:
54:48:cc:d0:0a:eb:3d:83:89:7a:3c:9d:c3:1e:44:
42:66:f4:c2:10:37:97:61:98:86:80:12:89:29:3c:
b5:46:3c:48:51:8e:54:be:36:01:94:50:82:4b:49:
90:38:53:47:02:9c:34:9c:09:44:a4:ef:a2:26:23:
28:f1:55:e3:fc:37:16:4a:d2:80:23:a0:05:52:c2:
a3:16:a5:98:db:74:68:12:bd:07:dc:cb:e9:10:8e:
0a:58:a2:7f:6e:21:70:48:f9:e0:27:dc:54:ed:18:
61:5a:bc:ab:0e:5d:41:43:4a:d3:de:ef:84:31:15:
4c:40:d4:23:eb:29:0e:54:8b:07:75:f9:c3:7c:35:
f4:25:75:e0:04:b1:21:5a:01:87:c1:94:c4:cf:5e:
93:cf:ba:56:d8:32:0b:cc:4a:e4:63:df:06:c7:08:
e1:f0:46:a7:0b:bd:a9:5d:d9:07:43:79:88:f1:9f:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:31:3C:05:86:F0:EA:20:B7:0E:83:EC:2A:5D:BB:6F:29:A4:A3:C4
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/mzE8BYbw6iC3DoPsKl27bymko8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:6a:b0:c6:78:c6:4b:a5:cf:ce:e5:43:ec:44:f0:ad:85:13:
ab:7c:a1:80:30:a3:c5:2a:59:39:89:f2:4f:da:03:43:6d:ef:
84:e3:8e:4d:af:21:34:52:ba:f4:bb:4d:f4:02:97:b4:a7:fc:
ab:bc:95:fb:65:e1:be:fd:e0:88:dd:6b:33:a7:07:70:bd:5c:
69:d7:ab:a6:ef:f7:81:ad:e3:43:52:e7:2b:37:e9:91:7e:78:
7f:7d:3e:69:52:11:93:4f:f2:dd:e6:52:15:7e:d0:ab:13:ee:
cf:53:fb:e0:c9:cf:64:80:00:14:f5:fe:6d:9d:fa:b9:99:c0:
60:03:db:71:93:77:fc:47:aa:c3:b3:c5:43:20:a1:e7:0f:08:
fb:b0:27:f9:8b:55:7e:49:ce:be:7d:cd:75:e8:7c:20:28:7f:
49:84:5b:67:af:25:df:12:8b:99:c6:a0:18:0a:d7:9a:4c:64:
58:4a:74:1b:77:97:f0:56:13:45:b4:db:5a:d3:1a:fa:1a:de:
38:68:92:2e:88:eb:3f:8f:c7:7f:13:57:fd:21:bf:63:90:2d:
ed:a6:f6:25:96:94:11:5c:81:a3:1e:f1:ae:bb:33:9d:0b:8a:
98:06:bb:84:fc:14:b9:b5:67:30:65:4e:87:f8:62:9e:fb:71:
45:25:0c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:42 2024 by rpki-client on console-fra.rpki-client.org