Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/pUsLSWkFwkgSBzs9upS4u3ZFkoI.roa
File: pUsLSWkFwkgSBzs9upS4u3ZFkoI.roa (raw, json)
Hash identifier: MiMCdtTwYwTg5dm6O6Tm0P8H4VJmEKMVnZ0IpCp4eYA=
Subject key identifier: A5:4B:0B:49:69:05:C2:48:12:07:3B:3D:BA:94:B8:BB:76:45:92:82
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 01907D442E45A276F91D8EF6BDCC8461D4EE
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/pUsLSWkFwkgSBzs9upS4u3ZFkoI.roa
Signing time: Thu 04 Jul 2024 10:22:18 +0000
ROA not before: Thu 04 Jul 2024 10:22:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12679
IP address blocks: 45.134.13.0/24 maxlen: 24
45.134.14.0/24 maxlen: 24
185.192.21.0/24 maxlen: 24
185.192.22.0/24 maxlen: 24
185.192.23.0/24 maxlen: 24
212.8.224.0/22 maxlen: 22
212.8.228.0/24 maxlen: 24
212.8.229.0/24 maxlen: 24
2a07:500::/32 maxlen: 32
2a07:501::/32 maxlen: 32
2a07:502::/32 maxlen: 32
2a07:503::/32 maxlen: 32
2a07:504::/32 maxlen: 32
2a07:505::/32 maxlen: 32
2a07:506::/32 maxlen: 32
2a07:507::/32 maxlen: 32
2a0e:7c40::/32 maxlen: 32
2a0e:7c41::/32 maxlen: 32
2a0e:7c42::/32 maxlen: 32
2a0e:7c43::/32 maxlen: 32
2a0e:7c44::/32 maxlen: 32
2a0e:7c45::/32 maxlen: 32
2a0e:7c46::/32 maxlen: 32
2a0e:7c47::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 05 Jul 2024 17:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7d:44:2e:45:a2:76:f9:1d:8e:f6:bd:cc:84:61:d4:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Jul 4 10:22:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a54b0b496905c24812073b3dba94b8bb76459282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:de:7b:3d:27:c0:09:77:aa:2e:7c:77:1f:37:
de:4d:7b:10:21:ef:c8:12:d3:82:15:4b:2a:36:39:
b7:e5:7c:29:30:76:9e:53:f4:00:45:74:9c:58:50:
ce:7e:1a:97:99:e1:ba:97:e7:48:36:3c:3a:e0:28:
a4:d3:75:0e:ec:f2:1b:c9:0a:e2:48:41:ec:e7:44:
30:ac:03:fb:47:ad:ca:54:c7:83:da:a7:ad:21:84:
de:19:f8:a9:cb:b1:5c:6e:dd:d0:c7:dd:02:a8:2e:
86:c3:11:95:9a:f2:ac:f9:cf:eb:fe:ca:ed:ec:f5:
0e:22:c3:13:1b:8b:7d:6f:41:9a:6c:82:de:37:34:
e1:b6:7c:b3:06:85:14:18:92:88:ee:40:f8:38:bf:
26:ab:0d:0d:0f:e8:1f:13:ab:dc:86:3e:dd:62:0c:
1b:14:a9:72:2f:cb:55:75:df:d8:c3:88:58:6e:7c:
e5:df:bd:66:b2:95:5d:00:14:6e:de:6c:e4:e8:fe:
24:e1:4a:39:cd:48:6f:a1:41:ab:9e:b7:d0:f4:3a:
67:cd:c2:77:85:67:c1:3b:91:3a:c9:09:4a:b7:68:
dd:b3:1b:61:54:8c:4f:f1:2d:3e:50:18:ee:bb:92:
cb:7f:c4:1d:24:14:10:58:da:75:67:1c:78:d5:05:
f1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4B:0B:49:69:05:C2:48:12:07:3B:3D:BA:94:B8:BB:76:45:92:82
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/pUsLSWkFwkgSBzs9upS4u3ZFkoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.13.0-45.134.14.255
185.192.21.0-185.192.23.255
212.8.224.0-212.8.229.255
IPv6:
2a07:500::/29
2a0e:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
4c:15:a7:08:a5:cb:85:11:03:72:dc:27:ea:b4:a3:36:02:60:
9a:7b:af:6a:15:a2:e2:00:23:47:28:99:73:0a:d2:c1:1a:7e:
35:2c:2d:7b:e0:d1:68:02:2c:0b:3f:3f:22:e2:fd:01:62:1b:
66:4b:1e:2a:76:15:a8:d1:cf:f0:2f:7d:93:dd:38:e7:58:8a:
10:27:7a:86:a8:fe:47:ea:0e:7a:87:2f:09:5e:7e:35:b1:a6:
77:d0:20:76:04:84:15:b2:2a:a0:ad:ae:8b:7d:98:a0:93:4c:
7a:0b:37:fe:78:ae:ce:14:1d:e8:6f:b7:38:20:a4:f1:38:c2:
f6:fd:90:10:bd:ad:d5:bd:48:65:54:59:1d:2b:db:13:ee:12:
78:e2:b4:ed:94:bc:41:e8:47:ac:23:71:dc:60:44:f1:fe:4f:
2b:fe:24:1b:ba:19:9e:60:75:79:98:8f:b6:45:78:77:30:e1:
ad:f8:6c:f7:9e:bd:9d:5f:0d:41:bd:aa:db:68:f5:e1:25:7f:
fa:69:09:7e:b2:2c:d4:d6:b4:35:16:be:24:51:c6:88:3c:7f:
e1:35:2c:8a:c7:a3:11:e6:30:5b:d2:75:54:e4:49:d2:2c:58:
e0:d3:16:28:4e:99:80:e7:da:e1:59:41:1c:c3:c5:b0:c6:72:
8e:0e:de:5b
-----BEGIN CERTIFICATE-----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Generated at Fri Jul 5 18:41:39 2024 by rpki-client on console-fra.rpki-client.org