Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/81ltJB8U8sXSu2vt-nsvsHpzFc4.roa
File: 81ltJB8U8sXSu2vt-nsvsHpzFc4.roa (raw, json)
Hash identifier: mGB7n/v+MFeAukmyCF2qZSfG4mY5Azzl3GV2RCiLi6g=
Subject key identifier: F3:59:6D:24:1F:14:F2:C5:D2:BB:6B:ED:FA:7B:2F:B0:7A:73:15:CE
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 018BAA576C7258DACFAF8EB4CCA6EF7814AC
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/81ltJB8U8sXSu2vt-nsvsHpzFc4.roa
Signing time: Tue 07 Nov 2023 15:12:17 +0000
ROA not before: Tue 07 Nov 2023 15:12:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133499
IP address blocks: 45.133.136.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 Nov 2023 17:08:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:57:6c:72:58:da:cf:af:8e:b4:cc:a6:ef:78:14:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Nov 7 15:12:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3596d241f14f2c5d2bb6bedfa7b2fb07a7315ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9a:dd:6e:17:dd:14:c6:b7:e7:c6:fd:8d:4a:
b0:13:11:92:e0:08:fa:66:1e:83:35:97:03:00:b9:
74:96:52:b0:f1:44:fb:2b:7a:14:14:0a:f4:4f:cc:
c1:10:95:81:4e:c2:aa:fb:62:c3:bb:d6:9f:05:da:
9c:48:14:82:43:53:2b:f1:7c:f7:26:07:65:f4:38:
08:84:6f:cd:a5:c7:57:b7:55:f3:8d:b2:01:47:b9:
be:a6:08:80:8b:e0:e2:b0:cb:9a:f7:2f:b2:0f:b6:
a8:67:12:b1:93:3b:08:33:fc:92:9d:9e:58:9f:75:
7a:91:7b:da:2b:cc:2e:b5:89:d3:48:ba:ea:ae:31:
3a:4c:6e:d0:bf:cc:e4:36:d8:fa:1b:7a:e7:1a:26:
ba:7d:35:70:71:a1:f4:83:6b:d7:56:dd:ef:aa:3d:
40:20:12:9b:7c:34:45:d3:b7:ce:e0:8a:1a:a6:52:
e9:a1:be:8b:c0:32:48:a1:52:6f:19:17:d2:f8:fd:
18:7f:d1:d0:02:bb:97:a4:50:eb:d3:b1:54:b6:b8:
0f:87:0e:2f:b0:47:d1:d9:56:24:cd:87:78:b3:22:
37:b9:af:77:51:e9:0a:f1:09:08:88:b2:14:ad:78:
34:ba:ad:66:e2:3d:24:f8:a9:2a:41:29:66:af:90:
ac:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:59:6D:24:1F:14:F2:C5:D2:BB:6B:ED:FA:7B:2F:B0:7A:73:15:CE
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/81ltJB8U8sXSu2vt-nsvsHpzFc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.136.0/24
Signature Algorithm: sha256WithRSAEncryption
54:96:d9:9e:2b:2c:1e:59:68:54:ef:fa:48:65:19:93:52:f0:
09:eb:0a:f6:5d:5a:40:a8:ea:ae:72:e3:d6:5d:38:b1:d9:44:
1c:30:4d:b9:ed:02:6e:35:8e:0b:4e:cd:ec:5c:b1:13:e2:75:
3e:2e:a6:5c:80:03:5b:02:d7:b5:06:b4:d5:92:46:5f:23:d8:
a6:2e:41:14:e2:b1:ac:35:ba:2c:41:69:cd:f4:24:ea:57:5e:
9a:5a:6e:6b:5b:45:08:c3:6c:7b:64:fa:e3:df:7a:0c:af:00:
d9:9c:a1:a9:92:81:bd:44:ca:05:8b:0e:5e:7e:fc:35:29:80:
3b:2f:95:29:c4:53:d0:ed:54:4d:c3:5e:fb:2c:80:88:8a:25:
cf:76:d0:d6:05:0d:bc:6c:d7:5e:7a:d1:f9:be:63:f9:3f:2e:
b0:20:63:bb:4f:2a:29:3b:56:46:11:5d:df:cc:d3:d2:94:f1:
83:d0:f4:06:84:99:c0:74:58:42:68:98:17:5c:75:1b:1a:c7:
04:e4:e9:c4:91:e3:c4:2d:c2:d1:80:c9:08:87:67:9c:23:f2:
26:a7:ff:78:04:c0:0a:80:3b:37:05:0e:2c:6a:e2:07:e8:be:
82:27:ef:c9:db:71:08:45:3c:ad:c0:f8:df:ee:71:38:27:d7:
23:ed:21:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:32 2024 by rpki-client on console-fra.rpki-client.org