Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/LFbGyVt2xrY2P7KfBvxFn8yfTsA.roa
File: LFbGyVt2xrY2P7KfBvxFn8yfTsA.roa (raw, json)
Hash identifier: UjhdxEsfAz4pHH04wf/qOKhWdQh8ObwnlNwQkf94RfQ=
Subject key identifier: 2C:56:C6:C9:5B:76:C6:B6:36:3F:B2:9F:06:FC:45:9F:CC:9F:4E:C0
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 018570797609FFF209C5C7D42261650D4F24
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/LFbGyVt2xrY2P7KfBvxFn8yfTsA.roa
Signing time: Mon 02 Jan 2023 03:14:46 +0000
ROA not before: Mon 02 Jan 2023 03:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208393
IP address blocks: 45.141.52.0/24 maxlen: 24
2a05:4741:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:76:09:ff:f2:09:c5:c7:d4:22:61:65:0d:4f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c56c6c95b76c6b6363fb29f06fc459fcc9f4ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:bc:44:0d:77:5f:44:18:33:38:b9:99:1e:2e:
2a:19:63:92:1a:5b:ca:20:95:00:2b:ee:02:15:21:
45:51:09:e3:da:79:ac:60:06:99:53:8b:b0:b3:36:
10:9d:48:da:b4:6f:64:07:fe:91:8f:4f:9b:be:ca:
98:8a:22:63:da:b5:d6:93:27:bc:10:1d:7a:1b:28:
df:ae:86:cb:42:3e:c5:d6:8b:b2:68:c4:9b:46:cb:
a6:c4:9e:38:df:87:cc:ce:17:89:b3:16:a2:32:4f:
4d:2f:9f:e6:8d:9e:fb:9f:f2:06:e2:72:73:63:12:
de:c2:0d:f4:3d:ed:67:ee:d4:36:e6:32:52:5d:3f:
87:21:33:25:39:91:88:a1:b2:08:3e:fc:59:9d:36:
c0:91:7e:89:96:0e:93:79:a1:f6:8b:c4:ba:5a:55:
69:34:0d:b2:46:4c:d1:48:d6:39:c0:1d:ef:88:6a:
01:c4:74:53:c5:49:07:f8:24:5a:4c:77:a1:10:d9:
fc:28:76:4e:66:84:1a:cb:fa:a3:58:25:36:33:63:
af:12:03:ed:78:76:83:79:79:6d:d4:53:cd:b7:98:
a8:fe:f2:3f:a6:27:92:f9:51:de:eb:26:38:c5:b4:
42:0c:09:f9:72:f6:b8:bb:3f:5b:78:23:3e:8b:09:
d1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:56:C6:C9:5B:76:C6:B6:36:3F:B2:9F:06:FC:45:9F:CC:9F:4E:C0
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/LFbGyVt2xrY2P7KfBvxFn8yfTsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.52.0/24
IPv6:
2a05:4741:f::/48
Signature Algorithm: sha256WithRSAEncryption
41:25:49:46:88:a1:12:0b:4d:c8:53:c8:ef:46:c4:38:af:c3:
c3:da:05:d0:8e:b4:74:9d:40:05:cc:c8:bf:8c:49:2e:d5:ee:
54:8e:e6:41:8d:c2:6b:be:dc:5b:80:c9:f9:38:53:3b:86:6e:
b3:14:a3:85:75:cc:c0:a3:2b:26:ce:9d:05:45:40:b3:61:ed:
ff:3a:ce:63:36:76:d7:06:2b:84:94:9f:98:2a:09:db:ec:74:
d0:f6:e5:a4:a7:ef:e3:f0:ef:b5:1b:68:c3:1d:6d:39:a5:f3:
81:82:c8:cd:ad:48:aa:3d:c7:48:60:76:b7:e7:5c:26:c8:4e:
e0:03:11:d4:3f:d6:3f:36:d9:97:76:4f:8d:c2:ce:58:e4:b1:
ff:6b:65:c1:35:4d:12:53:c4:a3:ef:32:8d:cb:8d:60:66:53:
85:cd:8d:d3:a6:98:a0:de:26:29:c9:82:c3:a5:3f:92:90:2d:
a8:af:96:84:68:ac:0a:92:53:e8:39:7a:30:4b:b8:31:2e:13:
31:5d:f7:51:6f:d4:d7:64:42:ca:0e:36:24:fd:f8:89:22:68:
b4:70:d8:9f:83:d8:9b:c4:33:fe:79:87:94:26:93:74:c3:4e:
bd:33:f9:ad:1c:35:d5:ba:5e:4a:15:9b:de:76:85:d3:8e:f8:
ba:f3:a8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org