Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/T0vn3hDQovU332pQlvhSj3L4EVg.roa
File: T0vn3hDQovU332pQlvhSj3L4EVg.roa (raw, json)
Hash identifier: 3zPFalzIdmCrt+RHV9rUDFm1Lp6Ysj/6t1e2bhL2YSo=
Subject key identifier: 4F:4B:E7:DE:10:D0:A2:F5:37:DF:6A:50:96:F8:52:8F:72:F8:11:58
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 018CCA2B32F02CC450376A7A3E1EF0A3AF61
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/T0vn3hDQovU332pQlvhSj3L4EVg.roa
Signing time: Tue 02 Jan 2024 12:34:37 +0000
ROA not before: Tue 02 Jan 2024 12:34:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 45.129.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 18:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:32:f0:2c:c4:50:37:6a:7a:3e:1e:f0:a3:af:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jan 2 12:34:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f4be7de10d0a2f537df6a5096f8528f72f81158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0b:85:8c:f2:9e:38:79:21:14:9c:6f:b0:ca:
b7:49:64:58:70:50:b5:f6:bd:56:fa:21:ef:36:77:
f9:2b:8e:58:49:d8:2d:32:eb:32:17:0b:b0:a9:09:
db:a9:85:a1:f1:e2:3c:7b:32:f6:11:b4:be:5e:cb:
ea:d3:e4:29:87:8c:37:49:b4:26:3e:d7:0e:14:22:
71:38:47:ae:97:e0:1a:05:9c:2f:93:b2:e7:6b:40:
df:70:fc:9c:e4:61:67:d6:0a:9f:b0:48:93:b3:33:
74:1f:ea:bf:61:6b:2d:54:3e:d3:c2:0d:ed:f1:25:
6a:b3:af:c9:7b:d6:51:d6:77:97:24:0b:c9:cc:6e:
67:b0:bd:0d:4f:19:f9:76:05:c8:8e:8b:e6:83:a0:
b3:cd:09:60:ce:72:28:b8:01:2f:d0:46:cd:e3:43:
8e:e4:9d:80:47:24:85:91:bd:f2:aa:08:60:f8:05:
fb:59:44:14:b8:8e:af:9d:ce:bb:33:fc:de:cb:6c:
a6:98:d4:7a:06:10:3f:79:85:b7:4d:68:9e:0b:78:
70:39:c0:a6:34:72:b9:40:67:5f:09:22:4b:88:48:
c1:40:4b:15:3d:12:88:8b:48:55:ee:a6:85:60:a9:
4c:2e:60:36:d2:25:c6:20:bc:9f:12:1d:d5:46:e1:
1d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4B:E7:DE:10:D0:A2:F5:37:DF:6A:50:96:F8:52:8F:72:F8:11:58
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/T0vn3hDQovU332pQlvhSj3L4EVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.92.0/24
Signature Algorithm: sha256WithRSAEncryption
58:fc:24:3d:c6:92:76:f7:aa:83:3a:ea:48:d5:98:ca:ed:16:
b1:8b:9c:20:5a:d0:a0:88:42:40:d9:4a:42:4d:79:5e:d8:b9:
71:6b:38:d6:4b:73:14:4a:e9:99:48:59:ec:84:90:ad:df:d2:
ce:99:b2:c1:35:a5:0b:63:fb:43:eb:7b:6a:ec:3e:8c:91:49:
3c:e7:3b:15:fb:1a:bd:ef:8c:39:0a:39:5a:8a:3f:1f:d3:81:
c5:52:5c:ae:86:6e:fb:cc:60:d5:15:13:a3:71:8e:fe:b3:b9:
f5:6e:16:df:5b:23:fe:98:d4:4e:7b:81:72:48:8d:06:d4:cc:
4d:c7:82:45:0e:7d:84:bc:1d:a4:42:39:51:2f:8c:74:04:d1:
eb:e6:c9:6d:c1:f8:8c:37:57:1d:3a:aa:9d:0b:0e:30:e8:5d:
14:6f:4b:6c:0a:88:0a:42:9f:67:01:0b:10:ad:4d:b5:b2:8b:
98:ae:f7:2f:6e:71:e4:9a:49:74:c1:3b:d5:97:4e:4b:90:d1:
42:6b:a5:70:7a:54:3c:51:8c:d5:a5:48:7b:6d:a0:82:cb:55:
5e:9a:0a:a3:3b:92:81:05:07:2b:68:cf:7b:12:c6:2e:d9:06:
ff:1a:73:6a:ac:18:6d:56:1e:94:2c:32:7d:ae:02:16:d0:5e:
bf:21:c4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 20:54:52 2024 by rpki-client on console-ams.rpki-client.org