Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/0EvSFreksu_GIr4rNjuMjUj2o1I.roa
File: 0EvSFreksu_GIr4rNjuMjUj2o1I.roa (raw, json)
Hash identifier: cmhITTfDl3J7aUEvl6qE5GahNOUAImUXyVpNGOQwaXg=
Subject key identifier: D0:4B:D2:16:B7:A4:B2:EF:C6:22:BE:2B:36:3B:8C:8D:48:F6:A3:52
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018CC500AF630B23A40950DB9EF9F37EAB4F
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/0EvSFreksu_GIr4rNjuMjUj2o1I.roa
Signing time: Mon 01 Jan 2024 12:30:05 +0000
ROA not before: Mon 01 Jan 2024 12:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 45.147.159.0/24 maxlen: 24
45.147.157.0/24 maxlen: 24
92.61.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 May 2024 10:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:af:63:0b:23:a4:09:50:db:9e:f9:f3:7e:ab:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jan 1 12:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d04bd216b7a4b2efc622be2b363b8c8d48f6a352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5c:7e:b7:28:0d:81:23:85:f3:9a:d9:bf:85:
db:69:f9:c6:47:9d:7b:6a:72:aa:76:f0:8f:97:65:
24:06:f9:a0:96:d1:85:70:7e:69:4c:b1:51:c7:40:
9c:a6:a9:5d:38:63:ba:34:40:0f:83:bd:5e:3e:26:
f6:12:77:d1:b4:29:07:b8:55:02:e7:66:9a:62:52:
be:0f:b8:8b:77:57:a2:0a:5f:00:db:17:f1:75:05:
9b:a4:1d:02:41:c0:aa:5e:fb:a6:d7:f0:b8:d7:71:
82:4b:21:a6:10:b7:4d:66:c5:86:34:95:62:78:03:
b4:50:d4:35:1d:9b:cb:88:2c:5b:15:13:36:6c:e8:
56:df:ca:a3:d4:a3:ee:a8:ea:a3:a1:3a:3b:c9:b8:
5e:f9:28:e3:f3:13:c0:50:ab:1a:36:0f:21:10:1f:
ee:a5:3d:3c:21:15:68:ba:3a:8e:12:f3:8d:f0:89:
9b:c5:18:97:f8:d3:b9:99:f8:21:a4:84:1a:4d:ee:
44:b0:5d:f4:be:c9:5f:2f:0b:6c:1e:2d:8d:c0:4f:
d3:dd:cd:54:68:85:e6:48:e9:47:27:fc:ae:66:12:
f2:53:fb:a0:1f:42:17:63:ce:0a:7b:c3:1d:df:14:
3c:d3:84:cf:f0:ae:e1:17:39:27:d7:d9:d2:67:c1:
e1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4B:D2:16:B7:A4:B2:EF:C6:22:BE:2B:36:3B:8C:8D:48:F6:A3:52
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/0EvSFreksu_GIr4rNjuMjUj2o1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.157.0/24
45.147.159.0/24
92.61.103.0/24
Signature Algorithm: sha256WithRSAEncryption
03:8a:84:5b:86:1e:34:d3:ec:eb:62:da:80:2f:31:0f:32:0f:
11:60:08:d3:10:61:76:26:d8:c9:19:63:91:95:7b:fa:22:16:
d7:8b:9e:a6:ce:83:40:56:3b:a4:22:57:bd:3e:2c:a2:9c:53:
b8:96:5d:42:79:62:0f:6d:00:73:26:65:d8:6f:ac:84:b2:33:
b5:74:4b:33:e9:6a:61:d1:47:a3:99:3b:89:73:d5:6d:ca:ee:
60:03:79:a5:90:a9:6e:07:0c:1d:74:07:b4:a8:76:09:75:c8:
ff:b7:1c:b1:cf:c0:e2:86:81:38:e4:2d:15:68:0a:3d:d1:ed:
bc:c4:c1:55:4e:64:7f:07:d3:c1:25:d3:de:83:00:91:2f:8d:
77:3b:98:39:10:9f:c3:cb:58:70:11:21:2a:d2:b2:05:af:e9:
cd:10:16:3c:1b:7c:31:32:ed:13:e3:e0:29:d3:15:6f:58:ac:
e6:42:71:fe:ac:a9:ab:9a:89:f9:cd:bc:02:4e:79:5c:5d:79:
43:3a:96:a3:0d:63:f8:c1:d7:46:3e:b7:4d:cc:4c:74:48:be:
64:53:eb:d7:c7:2f:ef:1d:57:c9:e7:5c:11:e5:8e:40:8f:ad:
6a:47:d9:67:8a:f6:45:4a:92:c6:97:2c:b1:a7:c7:c2:6a:d4:
8c:f2:d6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org