Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cRY28QSjU0bXGCUESgs6NShfmEA.roa
File: cRY28QSjU0bXGCUESgs6NShfmEA.roa (raw, json)
Hash identifier: OHCZg43yRu6iSSzAv38Gml/Bv+oTpUfKaaYlSbrZ0NU=
Subject key identifier: 71:16:36:F1:04:A3:53:46:D7:18:25:04:4A:0B:3A:35:28:5F:98:40
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01890D8F3D0D231BFDE16E187903D7CC73A0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cRY28QSjU0bXGCUESgs6NShfmEA.roa
Signing time: Fri 30 Jun 2023 18:27:18 +0000
ROA not before: Fri 30 Jun 2023 18:27:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 267121
IP address blocks: 45.147.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0d:8f:3d:0d:23:1b:fd:e1:6e:18:79:03:d7:cc:73:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 30 18:27:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=711636f104a35346d71825044a0b3a35285f9840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:af:ec:71:e9:ba:2d:39:33:ec:0a:9c:60:0a:
a9:c2:7a:08:c4:1b:f8:a7:4f:fd:4c:6f:f0:e3:63:
ca:0b:99:5d:fb:21:15:86:50:e1:0a:fe:c8:30:25:
87:f5:b4:ac:d0:4b:f7:02:c6:98:8a:7a:1b:91:c2:
24:68:2a:e8:4f:d4:eb:ee:0d:39:da:17:b0:8e:a9:
09:de:2d:56:92:2c:61:e3:f9:71:0d:19:90:e6:c3:
c9:78:3c:80:5c:ae:66:5e:56:d5:d6:e3:82:f7:d0:
0c:52:51:3b:ec:33:36:6e:43:be:c4:dd:42:71:7e:
f0:ce:a3:77:fb:ff:d7:65:b8:a2:da:06:c0:20:13:
c7:ab:3b:0e:ea:88:54:b4:10:0f:a8:9f:78:0b:41:
8c:cd:36:e8:5a:2e:5d:ef:5b:3b:40:a1:5e:9a:7a:
f1:23:7a:b3:fa:3b:2e:b3:41:3b:a5:69:ac:e7:a2:
88:40:38:8b:d9:88:06:2b:c5:b8:45:32:0e:44:27:
f0:7c:c6:47:b4:a4:32:13:17:40:9a:2a:4c:47:e6:
7c:4f:f5:a8:0d:8f:cb:c6:02:04:d6:24:48:62:49:
af:3d:51:18:b5:0c:11:95:47:1a:c8:5c:0c:c6:7d:
a8:e6:aa:51:47:74:a4:1e:b7:2f:db:9c:0c:a9:90:
89:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:16:36:F1:04:A3:53:46:D7:18:25:04:4A:0B:3A:35:28:5F:98:40
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cRY28QSjU0bXGCUESgs6NShfmEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.226.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:6f:71:5f:d1:fa:7e:f4:c0:94:8d:9e:ad:2a:a8:be:94:a0:
63:40:46:17:31:4c:9f:a8:b7:56:2c:a0:50:b2:13:b1:8a:ff:
47:d6:c9:f3:eb:0a:73:49:65:d9:dd:86:5d:82:e1:8f:66:f1:
6d:62:7c:dc:98:13:a1:4d:94:87:eb:c9:f3:f4:b5:5b:a6:35:
a9:9f:16:f9:62:2a:3a:7c:10:75:98:3f:fc:9f:67:6e:1e:f8:
12:d3:ec:dc:ab:fa:e4:e3:cb:c1:3f:4d:f4:16:71:77:44:7b:
91:11:0e:38:a7:98:da:86:d2:2e:94:1f:39:40:a5:b3:13:c3:
fd:60:f7:d9:30:7d:8d:df:91:f4:1a:2c:73:6c:12:68:52:7b:
1e:26:4a:63:20:2e:b8:93:84:5b:e7:34:82:21:a6:22:25:b4:
78:6f:ab:de:2c:00:7b:85:4b:06:f2:33:63:8b:3e:ff:f0:3b:
a6:81:98:2e:ca:84:5c:27:01:2d:9d:53:d1:c2:d0:8c:f6:e3:
cb:d3:0d:13:06:9e:65:79:90:39:b1:db:de:ba:c3:2e:ab:1c:
bc:9b:8a:6b:2e:1c:34:35:9c:b6:fd:ab:a3:e1:98:d5:42:35:
cc:5b:50:83:64:77:24:e0:dd:b3:20:ff:d3:48:31:49:6b:ef:
1a:4f:8d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org