Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/oP53y3c597tPutCpGMCEfuB1KLU.roa
File: oP53y3c597tPutCpGMCEfuB1KLU.roa (raw, json)
Hash identifier: s0cHBtU8NfFCOUjc12R6vAiyAC4FVxPJ+uywuLSH4Ec=
Subject key identifier: A0:FE:77:CB:77:39:F7:BB:4F:BA:D0:A9:18:C0:84:7E:E0:75:28:B5
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 01856B00BFBD176E0A967333821BC89FB7AE
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/oP53y3c597tPutCpGMCEfuB1KLU.roa
Signing time: Sun 01 Jan 2023 01:44:49 +0000
ROA not before: Sun 01 Jan 2023 01:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206607
IP address blocks: 45.147.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 23:33:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:bf:bd:17:6e:0a:96:73:33:82:1b:c8:9f:b7:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Jan 1 01:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0fe77cb7739f7bb4fbad0a918c0847ee07528b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:a2:9b:a6:9c:45:63:5b:e4:d1:72:18:7b:
6d:fd:8f:3d:96:aa:47:9c:48:36:d8:14:c4:03:af:
ff:67:f3:2d:21:c3:81:60:d6:63:93:ba:ad:49:66:
9d:96:52:0a:12:37:3d:4c:da:df:8a:10:95:d5:42:
bc:92:8e:4d:bc:7e:1a:bd:a5:85:09:98:f5:6e:bd:
30:82:8f:77:0b:87:20:b5:24:7f:79:3c:80:b5:70:
11:75:91:96:7c:d2:6e:30:94:14:d0:ec:f1:db:68:
d2:06:0e:8b:4d:a4:b9:bc:08:73:ac:91:54:e1:c8:
00:4d:29:87:b1:cb:1f:54:70:1b:05:fd:53:3a:0d:
99:01:48:d2:18:a7:2b:6f:09:03:c2:82:e2:6b:16:
a9:d3:9d:67:35:5d:d4:da:f3:ae:cd:2f:7f:24:4a:
3a:47:c8:99:cd:79:91:29:0a:e5:0c:8b:45:12:f8:
59:41:15:51:f5:37:df:f3:ce:12:cc:d1:8c:b8:a4:
87:0f:b5:78:97:bd:9e:fc:6b:a8:3c:c2:8c:d8:d0:
ab:a7:63:4e:7c:63:e4:d4:df:ca:61:09:13:11:a7:
e8:47:ab:92:f7:79:6c:68:b1:3a:b3:2f:22:75:27:
82:4a:af:55:21:df:58:94:33:a7:3f:39:19:e9:8d:
71:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:77:CB:77:39:F7:BB:4F:BA:D0:A9:18:C0:84:7E:E0:75:28:B5
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/oP53y3c597tPutCpGMCEfuB1KLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.54.0/24
Signature Algorithm: sha256WithRSAEncryption
51:66:b6:34:14:4e:99:1f:1b:87:29:3e:05:ea:13:15:49:71:
94:b6:0b:2f:88:df:86:2d:f4:04:71:d3:54:ca:be:e4:e3:88:
1a:d8:39:b7:55:5e:9a:cc:a0:e5:33:ff:b9:a6:8c:d4:df:96:
6c:bc:b4:07:5d:4c:26:4b:b2:75:e9:ee:f8:73:dd:af:9c:29:
33:96:dc:bb:36:b6:fe:76:32:c6:e7:97:d3:ce:c5:98:b5:77:
ca:17:b9:51:7b:e4:8b:77:40:18:42:93:13:a2:77:90:1a:79:
1c:f4:ea:be:09:5e:08:3e:f5:df:e5:40:39:ca:dd:5f:0d:b7:
a4:c3:fd:a1:12:c0:47:d8:8e:74:47:67:13:90:7a:34:be:a4:
a0:de:4d:60:0f:44:c5:d7:65:f7:1e:c8:2d:01:8b:27:4b:2d:
dd:8a:30:94:c5:4e:e6:19:89:a1:54:42:f1:57:47:a6:16:1c:
c5:45:21:ce:43:05:29:15:2e:e6:1f:ef:b1:73:9a:f0:12:f3:
b5:f3:4a:dc:af:05:e5:c4:8b:24:b3:b6:fc:c6:87:9e:98:c8:
93:ac:a8:1c:96:36:55:a3:e7:8a:37:2a:89:8b:3a:c9:b2:bc:
72:a1:54:58:ec:bb:a3:cc:49:d8:15:a1:4b:b2:6d:37:bd:90:
ae:73:49:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:57 2024 by rpki-client on console-ams.rpki-client.org