Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/1hlkbiCCnjmfpH9PuLnG46vWmyU.roa
File: 1hlkbiCCnjmfpH9PuLnG46vWmyU.roa (raw, json)
Hash identifier: aiHSmPyAVJvxj5ktddbR6svTQx8xP3w/YvU/mbSBHmc=
Subject key identifier: D6:19:64:6E:20:82:9E:39:9F:A4:7F:4F:B8:B9:C6:E3:AB:D6:9B:25
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 018DEE91C9C77F3741E115198B7EF5CB23C3
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/1hlkbiCCnjmfpH9PuLnG46vWmyU.roa
Signing time: Wed 28 Feb 2024 07:15:48 +0000
ROA not before: Wed 28 Feb 2024 07:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 45.13.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 13:20:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:91:c9:c7:7f:37:41:e1:15:19:8b:7e:f5:cb:23:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Feb 28 07:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d619646e20829e399fa47f4fb8b9c6e3abd69b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:ec:69:28:8a:d8:62:e6:a9:81:79:cb:6c:
b9:0e:50:ae:d6:40:96:2f:9d:6d:4f:ff:ca:67:3d:
ce:40:88:d1:52:a9:b3:43:26:d4:66:7c:44:5a:36:
c6:c2:5f:70:6d:17:aa:55:1c:75:8b:37:b2:cc:39:
f8:27:52:69:73:d0:ee:0c:04:a9:ee:14:f6:64:4b:
4c:45:c6:4a:b2:d9:25:3a:1e:ec:4b:95:d4:f4:58:
f9:d2:34:9a:56:b8:63:7c:32:e2:0a:bf:68:02:fe:
1e:e0:31:45:a1:7e:76:81:2a:9f:b2:f4:ea:c1:6b:
4c:71:18:84:77:5c:34:ba:fe:40:96:48:d5:16:7c:
e8:63:a2:04:bc:66:11:30:c8:b9:ab:39:17:f6:7a:
e0:98:02:41:1f:5c:b2:50:1c:bb:b4:8d:0e:60:34:
11:b7:ca:84:e2:4c:1b:b4:21:4b:c7:f8:0d:24:d6:
62:51:f5:d5:ac:18:28:df:5b:85:c7:d1:be:e7:a2:
80:e0:3d:5e:04:d4:de:88:10:8d:63:c9:19:ec:cb:
13:60:69:f5:08:62:b9:a4:a4:2d:b9:89:83:49:52:
e0:1e:c8:9f:37:c0:ea:14:48:aa:59:e7:d4:13:64:
b4:3c:29:93:d7:84:b2:a2:50:d3:e7:50:71:89:a9:
ea:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:19:64:6E:20:82:9E:39:9F:A4:7F:4F:B8:B9:C6:E3:AB:D6:9B:25
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/1hlkbiCCnjmfpH9PuLnG46vWmyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.179.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:20:3a:33:c7:64:c5:ea:e3:9d:38:07:13:db:e1:49:2d:0d:
88:c4:30:81:9f:85:66:54:b5:7e:31:e9:0f:c8:94:e1:1c:b3:
1e:b4:2c:29:1e:28:7b:b4:73:cc:3f:da:e1:1d:67:44:85:dd:
5c:df:f7:ac:b2:34:1b:06:53:d9:2e:dc:04:8f:aa:f2:bc:cb:
d7:0b:c6:03:1b:8a:32:f8:1a:59:4d:37:c8:33:0a:a1:ac:16:
84:65:86:af:5a:4b:64:2e:04:8e:81:b8:6e:ca:97:39:e6:49:
1a:33:2e:d8:1e:be:19:a4:55:ec:50:16:c7:22:f8:45:00:cf:
64:51:28:e3:9d:f0:3f:7b:42:88:7d:75:b0:ff:65:19:6e:21:
cc:d7:d8:03:c4:ce:66:ad:22:0f:8c:8f:fa:90:34:41:61:d0:
32:c1:3b:32:b9:79:38:0a:d7:26:ae:af:9a:72:18:62:6b:75:
dd:34:7d:94:f0:f7:ef:cb:e7:20:3b:24:b0:10:3e:d7:1a:36:
20:ef:cd:2f:a0:9f:4c:bc:c6:38:bb:db:41:7a:74:ed:74:a8:
2c:0d:4a:62:cb:23:ce:13:4d:e5:89:32:a8:54:56:55:37:67:
11:a6:dc:bd:a8:e3:68:46:90:3d:c7:7c:b6:1d:9d:de:e2:d6:
b1:24:48:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org