Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/r5_8Gan44zAOa-JVSPHEXXrdaHU.roa
File: r5_8Gan44zAOa-JVSPHEXXrdaHU.roa (raw, json)
Hash identifier: muGu3mreWj1TenRpQJOADySf5iYkUpwS/kkCKXPXNE4=
Subject key identifier: AF:9F:FC:19:A9:F8:E3:30:0E:6B:E2:55:48:F1:C4:5D:7A:DD:68:75
Certificate issuer: /CN=6aca71f2d9fe2b49c6762f3d9a0e8bf332dfded1
Certificate serial: 01856B256F4E90B266AF3C48865F004F276E
Authority key identifier: 6A:CA:71:F2:D9:FE:2B:49:C6:76:2F:3D:9A:0E:8B:F3:32:DF:DE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aspx8tn-K0nGdi89mg6L8zLf3tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/r5_8Gan44zAOa-JVSPHEXXrdaHU.roa
Signing time: Sun 01 Jan 2023 02:24:53 +0000
ROA not before: Sun 01 Jan 2023 02:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31276
IP address blocks: 45.91.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:6f:4e:90:b2:66:af:3c:48:86:5f:00:4f:27:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aca71f2d9fe2b49c6762f3d9a0e8bf332dfded1
Validity
Not Before: Jan 1 02:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af9ffc19a9f8e3300e6be25548f1c45d7add6875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:ce:65:8a:ca:87:c2:36:42:61:61:e9:8c:
2d:fa:d2:cb:f9:bc:ff:95:a0:a0:20:d7:e3:53:1c:
f8:9e:2b:be:85:48:a8:80:a8:60:53:fd:28:80:5b:
1d:6d:51:77:3e:38:7b:6e:c8:61:3d:f2:34:a4:39:
b8:65:c8:e2:77:cb:a3:85:e1:bd:5a:67:30:be:f9:
e4:70:95:17:4c:90:4a:f8:15:23:79:bf:8a:e7:09:
b9:8d:55:80:5b:9e:b5:58:20:a6:e3:1f:e4:79:3f:
57:59:5d:c1:02:f9:f7:39:d9:02:61:3d:bd:19:54:
5b:77:d7:84:ec:2e:5c:d6:5c:f2:aa:a7:23:13:ab:
31:a3:fd:71:96:eb:da:03:1c:e4:3f:e8:fb:fd:b2:
02:f0:a9:76:9c:b2:75:27:d3:48:3d:1b:34:a1:f9:
96:7e:45:ee:5e:6b:4b:72:61:9b:a0:3f:66:d8:d3:
bb:c8:11:10:74:0d:07:eb:e0:d8:1c:23:fe:12:0d:
b0:2e:03:22:5f:44:c2:3f:26:a2:30:55:a4:1b:9f:
79:7e:d6:b5:49:f8:98:22:4d:f1:d7:8e:fe:bc:d0:
34:d0:c7:30:56:0c:ed:0c:ac:c4:01:56:e4:17:af:
dd:3c:e3:68:9f:f6:25:79:81:bf:62:dc:13:4c:fd:
1d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9F:FC:19:A9:F8:E3:30:0E:6B:E2:55:48:F1:C4:5D:7A:DD:68:75
X509v3 Authority Key Identifier:
keyid:6A:CA:71:F2:D9:FE:2B:49:C6:76:2F:3D:9A:0E:8B:F3:32:DF:DE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aspx8tn-K0nGdi89mg6L8zLf3tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/r5_8Gan44zAOa-JVSPHEXXrdaHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/aspx8tn-K0nGdi89mg6L8zLf3tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.212.0/22
Signature Algorithm: sha256WithRSAEncryption
49:b5:68:c2:90:1d:5d:66:77:e4:fd:6c:67:f7:fa:9f:b0:c0:
13:5a:99:ed:43:43:d2:21:00:77:56:94:ef:14:0b:bc:3b:62:
22:06:f5:ca:b6:2e:69:c9:6e:4b:51:e9:a6:53:9e:8b:c1:ec:
47:43:e6:b0:02:ad:d6:47:6a:fe:c9:37:04:a2:50:76:21:d4:
48:13:42:d8:16:fd:80:1b:44:a4:66:19:e7:ae:63:e8:ab:0a:
36:b7:c8:e9:48:2a:ef:9b:b8:01:14:6b:e4:8e:65:4f:15:ac:
3d:66:a7:54:43:8d:6c:e2:ac:39:32:a4:4f:3b:1b:e0:00:69:
b6:4d:e1:7f:20:34:6d:a0:49:67:d7:96:7a:48:c3:50:14:f4:
c5:0e:4e:5c:13:a8:15:79:9a:26:3b:62:04:6a:32:e1:6b:97:
76:19:e4:67:d6:bc:40:cc:f8:d2:e6:26:3c:a7:01:95:6c:4e:
b7:f3:92:e1:bb:ce:ca:cc:51:7f:e2:d6:ea:39:25:5a:42:0a:
5c:87:88:31:eb:a0:1e:75:6f:95:27:2e:97:f2:1d:8c:55:df:
03:d5:77:1d:e1:dd:bd:b0:3e:84:42:a7:91:ca:ce:ef:f7:0a:
f7:9f:18:cc:cc:2f:45:39:85:96:5d:60:63:bb:4e:19:e0:9c:
eb:d7:ee:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:33 2024 by rpki-client on console-ams.rpki-client.org