Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/8g7JQs_5aeBuwJ3_LEhj_O16K8o.roa
File: 8g7JQs_5aeBuwJ3_LEhj_O16K8o.roa (raw, json)
Hash identifier: G5uarRj3yI1A0p1KcUnWaxTZsgb5MIDEfuoEOrFcWuA=
Subject key identifier: F2:0E:C9:42:CF:F9:69:E0:6E:C0:9D:FF:2C:48:63:FC:ED:7A:2B:CA
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018606233F4A4D89CE94B4E74A9A71401018
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/8g7JQs_5aeBuwJ3_LEhj_O16K8o.roa
Signing time: Tue 31 Jan 2023 04:43:38 +0000
ROA not before: Tue 31 Jan 2023 04:43:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 45.143.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 Feb 2023 12:35:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:06:23:3f:4a:4d:89:ce:94:b4:e7:4a:9a:71:40:10:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jan 31 04:43:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f20ec942cff969e06ec09dff2c4863fced7a2bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fb:b2:2f:0d:88:14:46:8c:97:1e:af:55:d8:
73:fe:54:d1:c4:0c:1d:79:e0:f6:2f:5c:fa:84:1c:
6b:9c:22:70:52:76:22:ac:3d:c6:ad:36:a8:b1:25:
69:95:57:23:52:65:d6:fb:01:de:cb:8e:96:9f:bb:
3b:5c:03:28:c7:f5:60:7b:cd:d3:64:5b:47:b8:92:
e4:5c:27:0e:b2:75:9a:55:f8:dc:67:eb:10:e4:a7:
7d:49:b0:d7:41:a2:31:89:94:4d:e5:09:bc:f4:07:
84:45:c3:35:53:2c:ce:78:15:f0:1f:8c:d4:1b:0d:
92:86:9c:bf:33:9f:24:e2:c6:62:3b:52:d4:c9:78:
eb:af:d8:fe:d2:f0:a1:a0:cc:fc:9b:00:82:d6:50:
03:ec:dc:bd:af:0d:ef:53:5b:22:ba:33:d4:12:08:
24:d8:1c:c3:cf:a6:68:d0:65:47:2b:54:06:1e:ae:
e3:93:9c:c1:a5:14:37:e1:fa:cf:38:9e:dd:9d:90:
42:ce:ce:54:ff:b1:91:76:03:ba:d2:e8:e4:cd:70:
96:1b:14:e3:67:80:c8:59:cb:dd:81:35:ae:ad:2d:
7a:0d:8d:57:e2:b5:8e:0c:ae:51:1c:a6:c3:38:3e:
0e:05:7a:85:c8:37:89:f4:a1:40:74:b9:b1:f5:82:
62:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0E:C9:42:CF:F9:69:E0:6E:C0:9D:FF:2C:48:63:FC:ED:7A:2B:CA
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/8g7JQs_5aeBuwJ3_LEhj_O16K8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:54:e8:57:1c:47:83:e2:c9:e1:6e:87:da:a6:32:d5:ef:a8:
27:34:ba:9b:29:1a:70:14:d4:5f:db:4e:73:b5:87:71:60:93:
d5:1b:98:ff:79:b6:80:7f:7b:37:87:8c:55:1a:7d:a1:09:e8:
89:13:47:4f:0b:e9:fc:e1:d3:ee:20:4f:d3:f0:bc:82:10:70:
91:a8:91:b3:ca:bd:41:06:ea:bd:fe:51:32:92:ac:f8:65:4c:
f1:ca:0e:0c:3a:86:c7:09:8d:e2:15:eb:a6:89:a9:a2:53:1a:
fd:ef:25:01:cd:2e:a6:93:0e:35:76:60:1d:7e:23:f8:20:9e:
44:a5:ad:59:a3:f7:3f:21:a3:ff:05:e1:96:38:7a:e2:0b:dd:
c2:c4:2c:8b:16:3a:64:e7:b5:46:e9:8b:8d:7c:a6:0e:7f:81:
63:d9:13:ee:06:69:4a:46:f4:c5:8e:29:3e:5d:bd:35:03:29:
72:3b:72:cb:5a:9a:a5:b9:8f:5b:fe:28:76:ab:9f:2b:79:3f:
c2:04:4d:63:71:85:89:6c:51:48:3b:e7:2c:09:4a:d6:be:31:
2b:a4:49:43:dc:13:08:75:10:75:a5:b6:81:fb:3e:63:dc:68:
8e:77:dc:8c:53:90:e8:e1:bd:be:8e:5a:cc:c0:ac:8f:0f:76:
1b:ea:c6:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org