Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/42Ua7EzlbUrpQgf5SJrpib31tkE.roa
File: 42Ua7EzlbUrpQgf5SJrpib31tkE.roa (raw, json)
Hash identifier: rnrqlhPGh//UEhS1Dk1zT492g0yaahRxO61RYKF/qdk=
Subject key identifier: E3:65:1A:EC:4C:E5:6D:4A:E9:42:07:F9:48:9A:E9:89:BD:F5:B6:41
Certificate issuer: /CN=0a06f033537bbd863bbca2b62092d8de3611f651
Certificate serial: 0189D542E636B9F2AE5D50087DA170B553BC
Authority key identifier: 0A:06:F0:33:53:7B:BD:86:3B:BC:A2:B6:20:92:D8:DE:36:11:F6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CgbwM1N7vYY7vKK2IJLY3jYR9lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/42Ua7EzlbUrpQgf5SJrpib31tkE.roa
Signing time: Tue 08 Aug 2023 13:07:58 +0000
ROA not before: Tue 08 Aug 2023 13:07:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207919
IP address blocks: 45.133.54.0/24 maxlen: 24
45.133.53.0/24 maxlen: 24
45.133.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 17:08:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:42:e6:36:b9:f2:ae:5d:50:08:7d:a1:70:b5:53:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a06f033537bbd863bbca2b62092d8de3611f651
Validity
Not Before: Aug 8 13:07:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3651aec4ce56d4ae94207f9489ae989bdf5b641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:05:2b:b9:00:fd:96:9e:00:0b:55:de:6f:
03:5d:43:a2:ea:3e:f0:e6:33:db:ce:84:74:81:fb:
29:cd:7e:ad:15:a2:23:a0:2c:1a:f3:aa:47:12:88:
d9:86:d9:4c:a8:bf:c9:53:38:85:4b:06:1f:46:9c:
9e:12:78:88:c1:7f:dd:ae:88:58:c2:3a:ac:f5:50:
bb:9d:07:2b:c8:25:10:5e:1a:14:9a:35:08:5d:a6:
f1:5c:fc:0b:52:64:20:95:7e:11:36:79:00:66:a6:
c1:e0:fd:07:d1:8c:87:f1:72:95:f4:95:cb:29:5a:
59:5c:0c:b3:df:37:b0:c6:65:1b:da:2c:26:b6:c5:
c9:39:ba:a5:42:9d:5d:db:b0:10:78:b0:ba:19:a8:
be:0e:3c:45:69:6d:6a:65:28:9b:84:84:92:6c:92:
95:b6:b7:5d:cd:8e:09:06:e6:6c:72:8e:c2:a8:51:
34:bb:46:e6:bd:a2:d6:23:e2:e1:7c:37:55:b3:e2:
b6:f8:d2:31:e9:5c:e8:13:f1:20:41:a7:15:80:54:
a4:ed:23:da:32:05:c8:68:4d:5f:a1:af:06:34:4b:
f2:10:e7:71:72:b9:75:60:4e:a7:1a:3c:e0:48:ad:
79:12:84:67:f6:d9:90:7f:2b:84:93:8f:23:b8:0b:
e3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:65:1A:EC:4C:E5:6D:4A:E9:42:07:F9:48:9A:E9:89:BD:F5:B6:41
X509v3 Authority Key Identifier:
keyid:0A:06:F0:33:53:7B:BD:86:3B:BC:A2:B6:20:92:D8:DE:36:11:F6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CgbwM1N7vYY7vKK2IJLY3jYR9lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/42Ua7EzlbUrpQgf5SJrpib31tkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/CgbwM1N7vYY7vKK2IJLY3jYR9lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.52.0-45.133.54.255
Signature Algorithm: sha256WithRSAEncryption
3c:c6:d2:60:6a:2e:dc:31:8d:d4:98:ce:1d:8a:fe:5b:e5:8c:
23:13:83:1f:5c:c0:10:c1:49:ba:c8:3d:13:8c:94:d4:f0:a4:
ee:76:d5:f1:85:cb:6c:ea:46:42:9e:85:13:1e:65:3c:0b:f2:
c3:b5:3c:cc:87:39:dc:55:db:34:7a:0f:d4:92:86:be:29:76:
51:86:84:9d:c6:60:9e:6f:3d:b8:8f:d4:7b:bb:53:5b:40:f4:
89:d0:5b:2c:02:d2:86:32:69:02:65:3a:4f:e8:44:f5:d7:fb:
f8:29:17:ae:68:01:fd:a3:4a:81:65:e1:94:fb:e7:f2:6d:f7:
c7:dc:3d:2d:bd:d2:09:bb:94:31:6a:14:19:33:c2:dd:ca:f7:
f0:3d:49:bf:7f:7d:60:10:c2:1f:76:ce:fd:7e:21:89:cb:67:
2e:60:b3:ac:73:f7:ca:78:fb:3e:d8:30:60:26:95:19:94:ea:
d3:0f:e0:51:ea:dc:4d:b3:89:1c:19:1f:65:3e:28:26:52:fc:
f3:75:60:58:14:67:ab:43:d1:95:43:b6:ec:a2:ae:32:50:de:
1b:9a:2c:00:eb:56:fb:6b:4d:a3:e0:42:1c:94:69:0e:58:1c:
58:ce:d5:76:68:f9:40:59:43:57:e5:15:b4:4b:b2:52:2a:23:
3f:0c:16:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:01 2024 by rpki-client on console-ams.rpki-client.org