Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S1kTCo6lBIAoOd_mzjGNP-jWzQQ.roa
File: S1kTCo6lBIAoOd_mzjGNP-jWzQQ.roa (raw, json)
Hash identifier: OFfZFODcPtx3xUnVsIYPLPUVDMltAbDUt7ycJyuZpLI=
Subject key identifier: 4B:59:13:0A:8E:A5:04:80:28:39:DF:E6:CE:31:8D:3F:E8:D6:CD:04
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B64B102B090C2907E549D340111B9A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S1kTCo6lBIAoOd_mzjGNP-jWzQQ.roa
Signing time: Mon 02 Jan 2023 09:00:50 +0000
ROA not before: Mon 02 Jan 2023 09:00:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 194.5.66.0/24 maxlen: 24
45.147.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 09:23:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:4b:10:2b:09:0c:29:07:e5:49:d3:40:11:1b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b59130a8ea504802839dfe6ce318d3fe8d6cd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:bd:15:78:9c:47:5c:80:96:a2:bb:27:09:
b5:d0:bd:a2:22:ed:fd:2c:26:9b:34:66:55:9c:6a:
dc:48:65:b7:24:e2:de:ef:80:e3:db:ef:ba:93:25:
d1:1a:00:93:d5:5e:9d:d4:8e:d3:ce:64:bf:15:bc:
79:b5:b8:d0:3c:b2:00:f9:bb:4d:a5:ff:83:de:1f:
bf:60:9b:ce:27:c2:67:d4:ca:0c:2e:d2:57:23:21:
3a:c8:1a:db:b8:41:09:0f:e8:cb:d8:9e:ae:cd:b4:
c3:bc:ef:dd:97:70:fb:0f:9f:fd:32:e1:c0:8d:b6:
4f:50:f3:0f:58:d9:4d:2c:c0:b9:ce:1f:46:ca:c5:
71:01:22:8f:39:4f:25:9c:8e:34:eb:ea:40:ec:06:
82:02:62:2e:a9:d1:41:52:21:da:5c:65:43:5b:af:
2e:a2:d8:ce:57:be:86:c7:77:92:e4:90:a2:12:80:
a4:bd:3d:03:b0:39:5f:91:f4:7c:d7:9f:aa:21:3a:
b7:04:5d:62:68:8e:00:51:ea:e8:4f:26:ef:4b:eb:
c2:5a:21:e3:df:b8:7e:ff:43:09:3e:09:a8:db:5c:
eb:40:88:04:ae:62:61:a5:22:fe:85:1a:29:62:ee:
ef:9c:48:aa:14:8f:4f:63:05:ff:73:95:71:22:9e:
70:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:59:13:0A:8E:A5:04:80:28:39:DF:E6:CE:31:8D:3F:E8:D6:CD:04
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S1kTCo6lBIAoOd_mzjGNP-jWzQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.225.0/24
194.5.66.0/24
Signature Algorithm: sha256WithRSAEncryption
95:32:74:38:e8:81:37:71:88:c1:67:7f:d5:f4:a0:10:91:e4:
4a:dc:7c:10:be:75:68:4f:e8:4a:73:fc:5e:04:ee:23:98:14:
dd:5d:ef:b0:cc:98:e0:d0:d6:32:83:bb:de:60:b6:f4:1d:a9:
fe:19:a0:1e:12:f4:fb:86:81:f7:ac:fc:99:1a:b0:e3:e0:33:
21:0a:69:3c:bf:67:50:f5:8e:b9:d2:1e:37:38:b6:66:c3:f7:
32:ae:a8:e8:d6:1c:dc:0f:ec:7c:a5:96:04:08:fa:34:31:28:
bf:5e:a4:8e:71:62:1b:ac:f7:0a:fe:a0:4c:86:c3:dc:ca:2f:
f6:86:f7:b1:05:7c:76:10:25:11:e5:73:21:2c:8f:44:7b:84:
82:c9:b3:3b:3f:c5:13:65:67:a0:85:05:d3:53:21:81:3c:01:
e5:15:fa:e8:63:7f:79:84:b7:71:a9:f3:c0:66:e2:ef:22:56:
9f:6d:b5:fa:f0:42:ec:3e:f8:15:81:3d:00:ec:f0:ff:de:24:
7a:58:37:69:10:3a:a3:92:4b:50:e1:68:e6:48:62:e0:d3:17:
d3:8c:e5:36:ad:0d:1a:8e:cb:b4:e6:ec:43:56:04:e7:ab:4e:
85:a5:e2:6b:fb:4e:74:00:59:65:88:40:6b:79:e3:13:35:45:
0e:11:a9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org