Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/44o1ni1_BEhbB_6TfjFJbhtZOUE.roa
File: 44o1ni1_BEhbB_6TfjFJbhtZOUE.roa (raw, json)
Hash identifier: Mx4OmwWL4LaJQLsLaVwhHKGPpIG8VUrLsPLTnNcN/Rc=
Subject key identifier: E3:8A:35:9E:2D:7F:04:48:5B:07:FE:93:7E:31:49:6E:1B:59:39:41
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 0189D6E28AC29B967B939BB9A48348CF1A82
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/44o1ni1_BEhbB_6TfjFJbhtZOUE.roa
Signing time: Tue 08 Aug 2023 20:41:58 +0000
ROA not before: Tue 08 Aug 2023 20:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59741
IP address blocks: 185.73.240.0/24 maxlen: 24
185.73.241.0/24 maxlen: 24
45.141.54.0/24 maxlen: 24
45.141.52.0/22 maxlen: 24
2a05:4740::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d6:e2:8a:c2:9b:96:7b:93:9b:b9:a4:83:48:cf:1a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Aug 8 20:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e38a359e2d7f04485b07fe937e31496e1b593941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:01:76:10:cd:41:2b:90:0f:d2:09:53:14:43:
28:97:6e:4a:cd:b1:4c:fc:0d:d4:14:e8:2f:85:73:
0b:dd:27:a4:0f:4c:09:31:a2:13:2a:6c:3a:59:43:
b3:c2:bf:95:16:db:48:cd:b7:50:cd:65:3e:49:2b:
6d:69:4b:63:ff:0f:28:a5:48:a7:48:54:07:17:64:
b7:62:e5:01:4c:b6:b1:c0:f0:d6:17:77:6c:a8:bd:
ba:2a:d5:2c:22:74:c6:40:75:15:c2:24:e2:f7:ca:
58:59:be:51:04:1e:82:8a:6a:85:c9:9b:ec:e0:e7:
10:79:44:79:0a:d9:f7:0f:64:93:10:79:7b:61:dc:
ef:44:e8:ef:7f:a3:ef:d2:0a:44:8c:ed:d2:77:84:
a9:ef:5e:41:4d:db:e6:7e:ee:aa:20:8a:91:fd:41:
cb:c2:d5:05:49:f1:ce:67:de:3e:45:51:ce:13:01:
3c:85:a8:40:61:05:a9:50:61:89:96:d0:8c:73:50:
34:28:81:e0:2d:78:e0:84:d9:da:c4:df:ae:7e:75:
31:fe:d8:de:fe:86:a0:52:4f:05:3c:3f:5d:ce:66:
8b:0f:39:4b:90:66:9e:f9:6f:f6:44:ad:09:a5:a6:
08:18:9a:82:be:bd:8c:7f:a6:44:76:f8:73:41:9a:
09:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8A:35:9E:2D:7F:04:48:5B:07:FE:93:7E:31:49:6E:1B:59:39:41
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/44o1ni1_BEhbB_6TfjFJbhtZOUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.52.0/22
185.73.240.0/23
IPv6:
2a05:4740::/32
Signature Algorithm: sha256WithRSAEncryption
69:b6:46:ae:56:a5:80:8b:b4:e6:e2:c7:17:73:ee:bd:e2:e8:
75:3d:26:4f:7f:cc:ae:b8:a3:79:a4:3b:aa:c6:f5:1c:ec:8f:
58:fa:00:0a:dc:58:5d:42:1f:c0:b4:cd:c6:fe:2a:6d:fb:52:
65:7e:c2:94:2c:b3:f6:00:0e:db:1b:6d:59:e2:a8:de:7a:7d:
91:3d:0f:7f:da:44:06:62:03:57:be:b2:44:70:12:0b:fc:ef:
37:92:ee:0e:17:95:2c:40:1f:b4:65:06:93:2c:be:c6:6a:3d:
64:5f:7a:d9:e9:5c:e4:fc:f7:4c:7a:5a:52:5e:4d:27:f8:08:
ea:4f:14:30:77:35:18:79:0a:35:9a:a8:b2:cf:a5:46:f2:fa:
b5:01:fa:37:48:87:2e:19:32:27:44:bb:5d:97:9d:85:19:a8:
bb:89:24:cc:fb:5f:5f:ea:15:4e:bc:6f:60:5b:3e:9e:bf:cc:
60:50:10:a1:7f:e8:00:04:de:e4:f8:72:0d:4a:9e:c6:79:74:
c0:d7:16:85:d2:cd:d6:87:f3:f6:34:8e:e8:61:a4:d4:ab:e4:
b9:94:f7:0b:fa:34:6d:56:f1:d3:66:68:1f:08:6a:a7:0a:ad:
24:f1:37:c8:3a:40:9f:78:4f:41:2f:9d:76:e4:4a:10:8f:ee:
9e:7e:91:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 09:29:34 2023 by rpki-client on console-fra.rpki-client.org