Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/lyCVH2_0t8n5NZ0pc_abEjvQA5Y.roa
File: lyCVH2_0t8n5NZ0pc_abEjvQA5Y.roa (raw, json)
Hash identifier: YAGeCIuuvxY34YNE5+5lwiYdFErJuCSFbzwvJaxN46Y=
Subject key identifier: 97:20:95:1F:6F:F4:B7:C9:F9:35:9D:29:73:F6:9B:12:3B:D0:03:96
Certificate issuer: /CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Certificate serial: 018B241AC4021967927AE9EA1BA463BA0A30
Authority key identifier: 53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/lyCVH2_0t8n5NZ0pc_abEjvQA5Y.roa
Signing time: Thu 12 Oct 2023 13:36:55 +0000
ROA not before: Thu 12 Oct 2023 13:36:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56596
IP address blocks: 45.8.58.0/24 maxlen: 24
45.8.56.0/24 maxlen: 24
45.8.57.0/24 maxlen: 24
45.8.59.0/24 maxlen: 24
195.128.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:1a:c4:02:19:67:92:7a:e9:ea:1b:a4:63:ba:0a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Validity
Not Before: Oct 12 13:36:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9720951f6ff4b7c9f9359d2973f69b123bd00396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:05:05:33:7a:4b:a9:84:59:72:b0:84:03:
4f:96:bd:54:6b:b2:ee:87:f7:6b:22:13:aa:57:77:
5d:03:0d:92:2a:a3:42:cd:6c:94:e0:1c:42:b6:f8:
b0:96:37:3e:33:e9:46:5e:b2:9c:23:5f:7b:a4:e0:
75:af:f4:4b:64:70:eb:de:c5:7b:a4:6e:6b:97:07:
80:c2:70:09:b1:54:76:3b:c9:54:d8:0d:bb:a3:9a:
3f:7d:04:b5:d3:d6:d1:23:a6:a8:c0:bd:a5:b0:ee:
a3:4b:61:c4:14:3c:39:ba:a7:78:b0:45:8c:82:72:
50:96:91:83:7c:62:44:67:95:26:2a:5f:14:e8:40:
84:fa:c3:41:9c:84:45:4b:4b:42:75:31:a6:ce:79:
5f:03:58:87:6c:e9:44:0a:53:5f:83:e8:b7:cd:81:
8c:4e:f3:97:27:ee:78:8c:dc:8d:19:46:83:08:f7:
6f:89:cc:c1:80:39:ce:2f:98:77:07:6f:5c:24:f2:
67:e0:0f:44:91:47:98:a0:ec:27:4f:d1:55:40:dc:
76:26:8b:4e:6b:f4:73:70:a3:f0:7e:66:90:1a:b6:
f3:35:cd:5a:3c:20:79:97:a3:34:c3:9c:47:01:79:
3f:a2:a6:1a:d5:1e:d8:c0:30:62:ca:1a:8e:7d:07:
f5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:20:95:1F:6F:F4:B7:C9:F9:35:9D:29:73:F6:9B:12:3B:D0:03:96
X509v3 Authority Key Identifier:
keyid:53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/lyCVH2_0t8n5NZ0pc_abEjvQA5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/Uwt27wq1VbyLB2H2BopE4QsrMfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.56.0/22
195.128.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:bd:54:a8:7a:27:07:57:53:08:af:87:3f:48:1b:3c:b9:6e:
9c:b1:74:73:08:f7:71:78:a7:6e:a9:9b:84:b1:2a:74:fa:0c:
d9:b4:2e:28:72:ca:a5:e1:a3:cd:6d:3f:07:a5:09:19:b0:54:
b4:b1:d1:88:8f:ba:73:1a:fb:b6:a0:d8:7d:76:b9:d6:68:90:
dc:98:f4:ea:98:44:03:74:27:2c:36:0d:ba:8d:86:ed:f0:b3:
b4:5c:86:af:a5:1c:ea:75:d6:88:17:49:b9:a2:73:26:7d:a7:
70:c4:b6:b9:dc:d2:71:46:31:eb:86:cc:7a:4d:67:d9:8d:12:
f8:54:38:b5:62:21:01:70:49:ef:7f:dd:d0:82:0a:3e:bb:2a:
af:e7:8a:99:6f:07:9c:3d:9d:ba:e1:7b:4d:f9:32:1d:10:9a:
05:5a:36:e2:9b:18:49:ff:71:41:55:3a:ac:d5:b2:eb:29:00:
84:2e:b9:2f:eb:d1:a2:6b:3f:a0:0b:c6:0e:27:b1:8b:d0:24:
b8:a4:9b:ea:98:21:77:5c:cf:26:37:78:c6:d3:fa:5b:a0:5d:
99:db:0d:a6:67:f1:0f:9d:16:87:2d:05:ee:3f:fd:06:7c:1f:
36:45:e5:39:67:d3:2f:db:c3:48:f5:9c:4b:38:4c:7d:0a:0f:
00:22:28:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:24 2024 by rpki-client on console-ams.rpki-client.org