Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/2xilomFObE0N3Rvk4pQ7HxER_hU.roa
File: 2xilomFObE0N3Rvk4pQ7HxER_hU.roa (raw, json)
Hash identifier: 5Rk2HTPDiR7KYbB/t4ANWdPDgN3if6d6sog8kUNvi9M=
Subject key identifier: DB:18:A5:A2:61:4E:6C:4D:0D:DD:1B:E4:E2:94:3B:1F:11:11:FE:15
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 01856E5D45A65809F48F6F39490A1BC82D64
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/2xilomFObE0N3Rvk4pQ7HxER_hU.roa
Signing time: Sun 01 Jan 2023 17:24:44 +0000
ROA not before: Sun 01 Jan 2023 17:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 45.158.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 23:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:45:a6:58:09:f4:8f:6f:39:49:0a:1b:c8:2d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jan 1 17:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db18a5a2614e6c4d0ddd1be4e2943b1f1111fe15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:04:17:c3:32:b6:bf:2e:91:a6:49:2b:1c:36:
40:bd:5f:e9:87:15:6e:f1:94:6d:de:44:7e:9f:54:
2c:1a:4d:66:59:1a:77:39:fb:28:8a:5f:62:ba:72:
7e:9c:5f:73:94:5d:6b:4d:54:95:08:3f:b1:c5:6e:
ec:0b:1d:8a:c2:45:51:97:5b:e7:f2:d3:2d:08:3b:
55:1a:8a:25:c7:82:fc:f5:4e:0d:bb:a2:fc:be:21:
2e:c0:7c:6b:9e:f8:86:74:8f:0a:a0:30:4f:28:dd:
ba:d6:2a:e3:69:f1:b8:87:28:04:a7:7a:83:1c:3b:
42:9f:75:af:b8:a6:64:12:68:38:98:ae:64:bf:8c:
67:92:12:66:59:25:79:c8:e8:fa:dd:40:86:26:97:
40:9f:0f:e5:9e:f2:59:11:d3:9b:98:db:b9:da:e7:
dc:e6:f1:50:cd:c9:c6:21:2a:dc:e4:fb:dd:56:75:
5d:8f:5c:17:a3:01:a6:6d:67:50:5d:3d:38:77:f7:
e1:b7:56:58:a3:35:c0:c1:a2:a5:5d:8f:91:37:ca:
c2:02:73:e4:c9:de:b2:ff:2e:b2:18:e2:a6:b1:f3:
bb:ef:06:ed:e5:68:9a:41:cd:57:a2:cb:1a:29:09:
7a:af:af:2f:91:e2:21:79:0c:e6:e7:1e:bb:37:89:
9c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:18:A5:A2:61:4E:6C:4D:0D:DD:1B:E4:E2:94:3B:1F:11:11:FE:15
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/2xilomFObE0N3Rvk4pQ7HxER_hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.127.0/24
Signature Algorithm: sha256WithRSAEncryption
60:2a:74:8b:60:d7:b2:ea:1a:3f:c2:fa:b5:86:37:ef:f6:fc:
8b:1d:ea:10:be:9d:c7:8a:12:3d:d4:77:53:81:79:f5:dc:64:
b4:50:d6:fb:90:75:ea:67:22:bf:fb:aa:2a:6f:24:9b:03:03:
30:a2:00:54:fd:11:2f:70:b5:6a:cd:c8:4f:11:cf:4e:9e:de:
30:ee:36:56:d4:02:41:e2:e4:65:ac:fc:f4:1d:e1:cc:ff:36:
c6:21:65:58:a5:fc:f9:3a:23:db:1a:fb:65:e3:f8:e0:57:95:
7d:11:fd:9a:7f:ff:eb:f4:10:a8:7f:14:12:cc:e9:e0:6f:4f:
73:7c:e0:47:93:78:cf:e7:ad:13:9b:d9:1e:f1:83:b5:0a:a7:
4a:fc:eb:ad:c1:0a:1a:d8:e9:f2:19:6b:42:ce:48:b3:ab:c0:
45:04:96:9c:de:99:47:23:1f:60:25:5f:b2:4f:38:37:c1:c9:
78:63:52:54:d4:f2:a7:82:41:e5:00:c1:72:6d:4f:78:e9:74:
2c:d5:f7:02:c4:d7:50:2c:18:76:7a:c4:20:07:aa:4c:ba:8a:
a2:c7:a2:d9:23:27:99:0c:66:1f:2e:94:f7:99:3e:10:19:70:
28:1c:70:bf:14:08:8a:7a:15:5d:fa:32:5c:90:fe:6e:8e:af:
f9:72:2d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org