Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/R5FrWq-g8tsK1CzCcrxXsesX0Sk.roa
File: R5FrWq-g8tsK1CzCcrxXsesX0Sk.roa (raw, json)
Hash identifier: VDpJ0z3guprojakjDw6tAplNtWJSY6PyttLkylKDFcQ=
Subject key identifier: 47:91:6B:5A:AF:A0:F2:DB:0A:D4:2C:C2:72:BC:57:B1:EB:17:D1:29
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 0191BE1E9BF9B32BFDB3804AC2A9E53C1E7A
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/R5FrWq-g8tsK1CzCcrxXsesX0Sk.roa
Signing time: Wed 04 Sep 2024 17:39:22 +0000
ROA not before: Wed 04 Sep 2024 17:39:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52000
IP address blocks: 45.81.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 20:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:be:1e:9b:f9:b3:2b:fd:b3:80:4a:c2:a9:e5:3c:1e:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Sep 4 17:39:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47916b5aafa0f2db0ad42cc272bc57b1eb17d129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:af:3e:40:35:85:7b:54:0d:4d:7f:53:1e:
90:a1:af:d5:8b:9e:4e:f2:f5:96:ef:76:de:50:0e:
cc:8e:8c:2c:48:4d:10:25:98:6b:e1:b7:66:5d:28:
bb:e3:31:fb:0f:b6:cc:34:2d:60:8e:c2:bd:3f:6c:
6f:75:3a:2d:de:b5:6a:05:d2:05:d7:04:44:16:18:
10:11:9f:5e:d8:21:72:86:04:3b:38:25:b3:29:5e:
bc:2d:a5:91:e4:c9:46:e7:a7:9d:f6:5c:5d:b8:07:
d8:cd:d6:42:eb:ac:c8:b8:19:5a:14:9f:80:ce:e8:
cc:ba:35:ea:30:79:c5:22:57:3f:88:b4:94:c9:e2:
c4:5c:32:3e:f8:2d:cd:c1:96:f4:72:e6:61:8a:48:
49:1f:96:50:02:8a:25:1e:7d:e0:d3:e8:d0:da:11:
fc:3d:0d:5b:de:cf:9a:72:19:61:4d:61:2d:8b:22:
0d:76:3a:a3:d1:f3:a9:e0:d8:75:e5:eb:74:85:7e:
7d:2c:c3:0f:f9:06:9c:0c:60:7c:ec:cb:2f:04:91:
81:37:91:7d:30:53:d2:44:7f:d2:1d:b9:10:1a:02:
ea:25:ec:71:13:21:00:2b:4a:80:83:0f:43:53:f5:
5d:3e:b6:01:d6:8f:b5:66:74:7e:e0:28:90:ca:68:
fa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:91:6B:5A:AF:A0:F2:DB:0A:D4:2C:C2:72:BC:57:B1:EB:17:D1:29
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/R5FrWq-g8tsK1CzCcrxXsesX0Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.35.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ca:3a:b2:70:f6:4c:26:2d:10:dc:3f:25:4c:42:d3:f2:55:
d7:c0:71:8e:a6:ab:19:a9:0d:d2:37:e7:c9:0a:65:7d:b8:0a:
7a:ff:59:60:0f:08:5a:d9:85:69:c2:e4:92:2f:b3:01:06:a5:
b3:bf:0d:f3:5d:a7:cb:2f:4a:84:d1:77:54:05:c2:ed:94:8c:
4e:a3:f1:ec:d8:a2:7a:c0:c3:2f:21:59:ab:da:4d:18:98:6e:
11:74:e2:df:45:6e:9e:0c:fd:d7:ad:5d:04:6d:40:fe:ed:90:
f4:33:2e:07:f0:56:5b:ae:8c:fc:32:c3:f9:c1:4c:fe:72:69:
60:54:dd:05:59:a1:fb:5d:e7:bf:79:b3:0c:74:01:0d:c3:7c:
4d:d9:4e:e8:b2:88:f6:ab:0e:93:6c:b3:6d:13:eb:85:44:99:
bb:4d:c9:43:6a:d7:50:6c:49:b5:63:33:ae:52:2f:4f:a9:e7:
6e:8c:1e:f9:e4:c5:d2:82:0d:dd:38:6b:12:55:cd:8e:ed:41:
8f:11:8d:00:71:a5:1e:17:ed:be:66:94:04:d1:68:c5:db:90:
ee:ed:83:09:35:ef:eb:84:96:dd:b8:8e:b1:7f:4c:4d:54:bc:
99:e8:8a:ec:0c:36:49:21:4b:35:55:51:72:06:a7:7e:10:f9:
ab:da:bf:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 21:53:23 2024 by rpki-client on console-ams.rpki-client.org