Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/IobyAhEHLxT3RhtHOvuCLKV0XnM.roa
File: IobyAhEHLxT3RhtHOvuCLKV0XnM.roa (raw, json)
Hash identifier: 8qlNhERKstTbzlCwYZ0wJCM/AVa7d7iRx427cE0OJ0c=
Subject key identifier: 22:86:F2:02:11:07:2F:14:F7:46:1B:47:3A:FB:82:2C:A5:74:5E:73
Certificate issuer: /CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Certificate serial: 018CC56E422540C7E4F48E051AAEB013D5CE
Authority key identifier: E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/IobyAhEHLxT3RhtHOvuCLKV0XnM.roa
Signing time: Mon 01 Jan 2024 14:29:46 +0000
ROA not before: Mon 01 Jan 2024 14:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51809
IP address blocks: 45.157.124.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 19 Feb 2024 09:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:42:25:40:c7:e4:f4:8e:05:1a:ae:b0:13:d5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Validity
Not Before: Jan 1 14:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2286f20211072f14f7461b473afb822ca5745e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:87:94:45:83:d2:26:d1:8f:8b:e8:f8:51:c9:
b9:12:53:0c:2e:da:53:00:b2:de:f2:26:f7:65:d6:
ab:bc:30:3b:89:7d:14:d1:a3:94:47:85:6e:95:c7:
4d:0d:61:ac:ad:c1:fa:cc:33:dd:f1:db:24:fb:8e:
57:27:97:97:53:e6:9d:08:22:8d:1b:cc:ba:96:4f:
8d:f3:72:f8:41:ef:0f:69:75:1b:bc:0a:51:56:46:
f6:b4:b2:2c:22:55:79:96:e6:b9:1e:5c:5e:48:87:
14:a2:87:bb:b8:61:34:8a:cc:d3:02:78:fa:d9:f6:
19:f0:c0:f0:31:f6:ec:72:40:ae:94:17:e4:b7:d6:
a4:89:15:eb:26:a3:f3:ad:75:23:f3:52:50:b4:9c:
25:c4:20:fb:38:0f:de:69:14:ae:6b:ce:87:83:8f:
24:85:8b:91:c6:5f:86:7e:12:ca:4d:8a:f9:74:b2:
ee:ff:08:09:d6:6a:74:f1:bc:b5:b6:70:7b:ff:03:
48:9a:b9:67:fa:f3:a7:6d:81:30:e2:7d:6b:df:e5:
ff:ba:27:29:e4:70:84:42:fb:03:e9:ec:3d:64:1d:
34:b4:b8:00:dd:78:f0:c9:84:3c:4e:3b:f9:bd:a2:
61:f2:d7:73:cb:a3:5f:b5:7e:87:03:00:24:f8:91:
50:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:86:F2:02:11:07:2F:14:F7:46:1B:47:3A:FB:82:2C:A5:74:5E:73
X509v3 Authority Key Identifier:
keyid:E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/IobyAhEHLxT3RhtHOvuCLKV0XnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:5a:21:7c:e6:7f:3d:a8:8a:1c:ff:0f:60:63:39:25:71:20:
4c:60:bb:b4:9f:a9:26:bd:ac:3f:c3:9f:6c:86:25:e3:e3:5b:
18:f4:d7:01:cb:c5:52:3d:e5:6b:a9:63:83:e8:26:9d:21:72:
df:e8:e9:c3:2c:54:1d:ec:eb:51:af:a4:c1:7b:70:99:6e:62:
44:df:1a:9c:f9:31:8d:07:75:30:bf:50:7b:3d:70:03:d2:5d:
8b:e5:b4:82:35:73:4c:b7:9c:46:b2:20:e2:64:4f:35:81:b7:
cc:79:9e:4b:11:e1:ce:07:89:f1:b7:b8:31:fd:8c:08:e3:3d:
41:fe:35:ca:50:aa:90:3c:7d:73:83:02:ed:36:af:47:cd:1c:
ae:6b:ea:c7:49:1c:b6:4c:00:76:7d:6f:db:45:b7:2f:f3:b1:
38:96:61:2d:cc:83:18:dd:45:3c:12:7c:43:18:9e:4c:d0:69:
a1:b6:dc:6a:05:de:e5:25:44:df:55:83:19:97:a0:ba:4d:ce:
85:29:04:e1:b8:e3:a5:d8:21:b7:48:0f:b9:73:72:06:db:a2:
06:fb:4d:ce:12:7c:64:8e:7b:a0:4a:58:cd:69:04:79:1a:e1:
bc:d3:5b:4a:fa:45:80:ab:55:bc:00:6b:7c:79:13:b2:b2:c8:
24:b0:c7:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 12:16:57 2024 by rpki-client on console-ams.rpki-client.org