Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/g-yqF5TXPPV_uW7brEgZ79Y411g.roa
File: g-yqF5TXPPV_uW7brEgZ79Y411g.roa (raw, json)
Hash identifier: mxoCTg0Ps3w6ctc1fw9NMssvWv9kC9tnzUf1VLcAk+0=
Subject key identifier: 83:EC:AA:17:94:D7:3C:F5:7F:B9:6E:DB:AC:48:19:EF:D6:38:D7:58
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 018BFBB1E525CF8D54D2651622ED3C81762D
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/g-yqF5TXPPV_uW7brEgZ79Y411g.roa
Signing time: Thu 23 Nov 2023 10:20:21 +0000
ROA not before: Thu 23 Nov 2023 10:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 145.46.168.0/24 maxlen: 24
145.46.170.0/24 maxlen: 24
145.46.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fb:b1:e5:25:cf:8d:54:d2:65:16:22:ed:3c:81:76:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Nov 23 10:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83ecaa1794d73cf57fb96edbac4819efd638d758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cb:6f:21:1d:1c:8d:cd:ed:82:80:6f:ed:e1:
89:00:52:7a:a9:24:fe:29:dd:89:04:9d:97:8e:9e:
c7:84:4a:e8:84:17:ec:32:21:e1:90:b4:4b:48:df:
42:29:97:09:18:0f:b7:31:72:22:a5:8c:99:c3:fd:
7e:00:14:78:6b:10:d9:e8:b7:15:65:a6:67:bc:f7:
5f:2a:b8:40:e5:ff:d3:8f:9b:19:e5:c0:9e:c6:73:
45:9b:df:ce:ec:df:80:ac:6f:a4:33:6c:aa:41:3f:
9c:4d:b7:8d:0a:d7:2a:9c:55:93:25:2b:8c:79:76:
60:3e:fc:0e:e2:3e:85:a9:1b:39:84:4e:78:a9:54:
09:93:60:73:7a:0e:06:d9:fb:ee:d9:68:85:be:79:
2f:bb:bf:68:3c:f3:11:24:93:00:91:06:22:a2:90:
3c:34:5e:a8:13:b4:f5:73:3c:5b:3e:23:fd:76:e9:
3f:04:76:13:04:47:f0:90:d8:2c:fb:a5:e6:eb:8b:
29:fe:08:33:c1:fc:e8:ae:0b:19:f4:e3:f5:d6:5f:
f5:8e:fd:e2:47:28:b2:61:46:cb:77:90:a4:37:ff:
41:c1:69:5f:ab:97:68:a4:97:ee:57:1d:82:9a:6e:
7b:cb:dc:dc:c4:76:bc:27:8d:db:32:a4:62:1d:aa:
ea:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EC:AA:17:94:D7:3C:F5:7F:B9:6E:DB:AC:48:19:EF:D6:38:D7:58
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/g-yqF5TXPPV_uW7brEgZ79Y411g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.46.168.0-145.46.170.255
Signature Algorithm: sha256WithRSAEncryption
7f:80:a5:e0:4d:aa:0c:04:aa:9a:89:42:b4:7f:81:5d:72:09:
90:ae:eb:25:de:87:47:57:d9:93:f9:9e:6e:b8:45:65:5e:35:
f4:43:b2:a1:86:e3:a6:9f:73:aa:6c:3b:cf:61:75:63:58:fd:
f6:c8:b6:89:10:74:9b:eb:3e:70:9b:5b:4f:c3:da:ce:ab:83:
ce:6b:e3:d8:4b:1b:40:ca:30:36:fb:b8:f3:ec:1f:fa:72:a1:
ad:0a:78:72:49:75:84:df:05:31:c8:66:25:2f:c3:e8:2d:a2:
66:28:22:e0:f0:ef:5f:ce:62:8c:a5:56:eb:35:1a:6e:af:07:
fb:ab:8f:7b:4e:d3:80:5a:c6:fd:13:4a:81:34:9e:4b:c8:73:
7c:a9:48:4f:02:35:a3:e7:74:33:ad:ab:f3:e1:5a:5f:0b:d5:
78:ea:1f:97:5f:6d:f8:92:66:18:f6:ad:8c:f6:af:7f:15:2b:
31:de:d8:1a:1a:bb:b3:af:89:d6:4f:c2:3c:2f:8f:61:e1:97:
fe:9b:5f:43:b7:67:3e:d8:ce:a8:06:84:1c:34:03:25:ac:b8:
21:20:2d:e9:9b:af:60:ea:c8:10:90:b8:70:95:ec:eb:63:17:
96:30:df:3a:26:f3:3f:85:87:ee:7e:9a:c6:c6:5a:a5:e5:7d:
f0:62:91:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:20 2024 by rpki-client on console-fra.rpki-client.org