Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pGGOyxXDPqtEls1CZuIXYpwlH3I.roa
File: pGGOyxXDPqtEls1CZuIXYpwlH3I.roa (raw, json)
Hash identifier: oiFAAZ/7uVN26lqbfv2FK4jmOWxf2sjnonNO1ypHNQw=
Subject key identifier: A4:61:8E:CB:15:C3:3E:AB:44:96:CD:42:66:E2:17:62:9C:25:1F:72
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A5AD41B772A580DD4094EA7E1FC83A694
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pGGOyxXDPqtEls1CZuIXYpwlH3I.roa
Signing time: Sun 03 Sep 2023 11:36:04 +0000
ROA not before: Sun 03 Sep 2023 11:36:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.88.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 07:45:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:d4:1b:77:2a:58:0d:d4:09:4e:a7:e1:fc:83:a6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 3 11:36:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4618ecb15c33eab4496cd4266e217629c251f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c6:c8:38:5d:93:56:a0:cb:bb:a1:5c:8d:5a:
7f:e0:2c:f6:8d:5b:26:64:52:8f:52:7e:e3:c8:7c:
b5:c2:fb:ac:18:5a:db:59:0b:73:ef:ff:f0:87:91:
2d:83:94:40:7c:f1:ae:03:cf:37:cb:61:2e:81:15:
70:fd:a0:93:89:c2:9b:b4:b9:eb:76:07:e4:ff:23:
70:af:2c:a2:90:df:94:83:07:05:fa:91:3b:64:08:
7a:54:be:a7:ff:5c:3a:43:df:9b:55:d0:11:02:ec:
54:a5:b1:f4:4a:df:7c:2c:be:35:5b:e4:c9:a8:4f:
fc:cc:ec:a6:b9:46:22:16:ee:73:e3:ec:f5:ac:63:
97:98:27:ee:3e:42:8d:bf:34:37:7e:b2:26:78:70:
4e:f0:9d:1a:fb:2f:3b:aa:e5:3e:19:f1:86:f1:1f:
1e:c8:73:e4:89:4c:9b:9a:b3:78:f7:b0:8a:30:d3:
7b:03:71:c5:23:17:a3:45:f5:5b:dd:01:c4:76:a8:
c4:dd:1b:19:79:d3:11:e8:6a:9b:8c:9e:9d:f3:83:
59:bb:d6:f6:ca:46:93:ea:68:3c:d3:1a:ef:c0:79:
d2:c8:4d:a0:00:66:01:26:14:de:18:54:57:ae:99:
36:2d:a0:02:a5:dd:bf:86:32:22:b3:12:bf:0d:5c:
4e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:61:8E:CB:15:C3:3E:AB:44:96:CD:42:66:E2:17:62:9C:25:1F:72
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pGGOyxXDPqtEls1CZuIXYpwlH3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.148.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:95:59:43:f8:f0:9e:59:91:72:94:a1:a8:17:55:28:ad:df:
20:eb:59:77:f9:d6:03:ae:01:72:a8:e2:b5:45:ad:ba:98:04:
cb:d7:91:eb:ee:52:43:0a:92:75:67:ae:7f:7c:36:ec:71:a7:
1e:8a:71:ca:5d:6d:41:19:a5:07:6c:72:c2:39:57:a3:bf:b1:
69:61:05:df:6a:19:b7:84:09:80:11:62:3f:e6:df:54:7f:16:
1c:53:87:c2:ce:e2:e4:c5:8f:61:88:b8:63:4c:8f:26:80:c1:
6c:e3:31:fa:b0:aa:04:bb:52:b3:0d:0d:c3:7b:cd:bc:e2:16:
ce:20:27:2f:be:d7:3c:8e:bb:a0:36:90:c8:13:b6:13:53:9b:
1d:62:c1:32:94:7f:fb:41:e1:94:91:99:3a:b8:3f:83:b2:3f:
c7:dd:23:47:dd:93:60:de:50:83:0c:12:ff:9c:14:7a:65:58:
ed:7a:58:46:04:74:22:8f:00:16:c5:c0:65:cc:24:f1:7b:93:
19:d4:87:1f:3a:c2:7f:43:03:00:e9:35:54:41:1e:4c:dd:a7:
36:9d:f9:fd:0e:55:a9:c8:e9:c4:96:05:3b:55:46:df:10:a0:
eb:48:fe:c8:69:d9:00:d2:83:68:a3:58:b4:00:19:dc:61:7e:
b8:8b:e6:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org