Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/lX1PcRzAi4BhZMDfpIaCKUhc2o4.roa
File: lX1PcRzAi4BhZMDfpIaCKUhc2o4.roa (raw, json)
Hash identifier: a2otj1HQr2nJrqKC5tTahSUBa82noV59LDs4beZct1s=
Subject key identifier: 95:7D:4F:71:1C:C0:8B:80:61:64:C0:DF:A4:86:82:29:48:5C:DA:8E
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 018571DE82A35F2652DED5F4A12C6C5EDB12
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/lX1PcRzAi4BhZMDfpIaCKUhc2o4.roa
Signing time: Mon 02 Jan 2023 09:44:45 +0000
ROA not before: Mon 02 Jan 2023 09:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134823
IP address blocks: 45.11.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:82:a3:5f:26:52:de:d5:f4:a1:2c:6c:5e:db:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Jan 2 09:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=957d4f711cc08b806164c0dfa4868229485cda8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1b:93:3a:6e:fc:c1:de:36:bb:d8:2c:8c:9c:
9e:f2:3e:a0:d9:c3:d2:4b:2a:69:37:82:14:aa:cf:
81:77:75:86:e6:90:41:9c:c7:d5:66:2e:34:1e:c1:
81:41:3d:16:03:89:7d:4d:39:e1:09:a2:ce:71:58:
d6:f7:f1:a5:8f:b9:d3:3c:fe:b8:97:9e:3c:97:a3:
00:0f:d5:5e:7a:a4:09:56:f9:be:8c:ea:b0:f2:10:
cc:52:ad:46:84:d1:04:8d:9f:92:c1:17:93:36:84:
54:db:7d:bd:aa:1e:e5:0c:a3:cd:9f:b9:e6:db:56:
88:97:62:63:a7:6a:ca:b5:fe:b1:07:f9:2a:3d:df:
60:35:77:89:8f:13:6e:22:03:66:ad:31:30:7f:18:
a1:f1:6e:00:23:94:97:1a:7c:9b:07:ab:23:91:c9:
78:b0:a6:67:d7:de:b5:82:0d:3a:12:4c:8a:79:5d:
71:7a:67:83:e1:ad:44:5a:4c:dd:60:19:18:a7:3a:
65:09:d5:8d:f8:df:93:ac:f4:ae:fe:34:4f:59:e7:
bd:e3:16:ab:b8:c8:3e:b0:fa:cb:49:a5:c5:14:b3:
92:ce:b2:36:1b:67:d2:b3:52:3c:6e:f1:1a:94:8a:
4b:b2:75:c0:dc:72:86:03:ec:6a:47:82:1c:1a:7a:
d0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:4F:71:1C:C0:8B:80:61:64:C0:DF:A4:86:82:29:48:5C:DA:8E
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/lX1PcRzAi4BhZMDfpIaCKUhc2o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.78.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:16:2b:77:9a:80:fb:a9:f7:58:cb:a3:8b:d1:fb:f5:e7:a5:
3c:71:f7:95:d4:72:f6:9f:ce:06:fb:79:b6:1f:aa:cf:ee:e4:
59:37:82:bb:a5:e9:e0:63:73:8c:f6:3e:5d:27:25:e3:6a:90:
be:54:0b:13:ac:46:5b:14:06:fb:6e:28:9a:c3:8a:71:5b:cc:
5d:45:03:bd:7c:d3:b6:17:9c:5d:eb:c0:f5:bc:26:15:48:9a:
3b:31:b2:09:da:57:25:e6:4f:0d:0c:de:c2:21:29:d2:b6:9a:
81:2e:b6:21:88:e3:7d:ea:cc:1e:1c:93:e0:76:52:7a:43:40:
05:46:66:07:56:3b:fd:77:11:2d:77:95:1e:14:65:8b:f8:59:
e6:9a:cf:a4:4e:47:e9:be:dd:da:72:75:b8:75:25:60:74:07:
6b:4d:35:b6:81:84:cf:ac:a2:0b:34:3d:cd:43:c1:3f:cb:3c:
8d:53:0b:2b:8a:73:79:ab:5a:97:1b:f1:a9:cc:4a:d1:60:ec:
01:62:4b:49:26:4c:f2:48:dc:9b:42:c5:cc:c8:27:81:53:50:
77:cc:a4:bc:76:3b:7f:b7:80:85:53:28:cd:76:35:cd:d1:d7:
08:bb:e2:29:1c:8a:12:b2:57:d6:38:ca:26:b9:d0:a9:d8:48:
3d:22:65:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:26 2024 by rpki-client on console-fra.rpki-client.org