Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/RkQkpU_6JMXNqxwO2HRaOT6bkVc.roa
File: RkQkpU_6JMXNqxwO2HRaOT6bkVc.roa (raw, json)
Hash identifier: 31Sn5Lh1mfUA9oP0WR8me6U5nQzOeNmeABYqUWWtZSk=
Subject key identifier: 46:44:24:A5:4F:FA:24:C5:CD:AB:1C:0E:D8:74:5A:39:3E:9B:91:57
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 018CC8DE9DC5D19FDA01A1E3C3A58AD68EFC
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/RkQkpU_6JMXNqxwO2HRaOT6bkVc.roa
Signing time: Tue 02 Jan 2024 06:31:21 +0000
ROA not before: Tue 02 Jan 2024 06:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41633
IP address blocks: 45.67.157.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 08 May 2024 14:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:9d:c5:d1:9f:da:01:a1:e3:c3:a5:8a:d6:8e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Jan 2 06:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=464424a54ffa24c5cdab1c0ed8745a393e9b9157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:8e:dc:b1:27:53:a3:a6:98:f6:d6:dc:b2:
fd:da:ca:0b:dc:b5:7c:a4:e1:32:c0:44:b9:60:39:
d0:ea:4c:8f:a8:78:74:80:f4:f5:6c:fe:09:b9:90:
c9:c3:33:f1:7b:04:c1:53:26:a8:c0:07:18:82:fd:
44:cd:3b:d7:b2:78:5a:30:3e:d9:b8:ea:1d:b2:e6:
70:ff:6c:84:7c:7e:93:c9:7a:44:c6:58:52:05:0b:
78:77:19:3a:dd:5a:94:4e:be:fc:2e:55:ed:d5:4f:
4f:44:4e:52:3a:78:b6:98:06:7a:a9:41:f7:a4:04:
a1:f9:bf:62:5e:ff:64:ad:e9:d2:b5:0b:aa:48:8b:
3e:b4:76:38:02:fc:c9:0a:76:a0:2d:7c:e2:45:1d:
ff:14:c0:50:47:53:88:d2:aa:a1:93:07:7c:dd:2f:
e7:72:f1:c8:06:84:dd:e4:b3:26:1b:0c:62:e6:32:
6a:95:ab:49:92:13:1b:ed:91:78:e5:27:aa:66:e7:
89:db:74:77:40:0e:a5:f7:1a:89:3e:72:d3:28:62:
f8:5d:f0:76:47:4c:6a:ea:2d:b6:e9:ec:8d:38:a6:
19:24:84:09:7e:c6:d1:fa:ab:42:f8:80:d0:49:b1:
ae:af:54:58:ae:c3:cc:6c:d1:58:5f:26:e7:58:cf:
14:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:44:24:A5:4F:FA:24:C5:CD:AB:1C:0E:D8:74:5A:39:3E:9B:91:57
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/RkQkpU_6JMXNqxwO2HRaOT6bkVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.157.0/24
Signature Algorithm: sha256WithRSAEncryption
34:cc:4d:9f:27:78:17:1e:10:ea:ac:7f:46:cb:ab:5f:6e:6c:
6c:e6:09:9c:07:e2:33:b2:1b:11:c8:2b:f2:71:04:cb:e7:5a:
0a:1c:f1:5b:db:22:5b:6f:c1:d3:b5:ac:5d:a1:4b:74:83:f6:
68:d6:5b:c4:bb:0b:0a:3f:3b:65:0b:c3:36:2c:77:aa:52:c6:
14:24:7e:ce:88:b3:a9:0a:26:74:9a:47:dd:b3:ce:55:02:6b:
0e:26:15:9b:54:39:b4:d7:0c:12:62:c7:d6:2e:3d:6c:c3:e7:
11:a9:20:e7:8e:2e:ad:5e:48:d7:49:33:c7:a5:dd:55:e2:ca:
13:1b:3a:be:6b:e1:81:35:c4:75:2d:07:06:d9:ee:50:15:00:
bd:73:8c:64:43:4f:8e:ee:a5:28:12:94:01:27:8e:84:91:f3:
24:0c:5f:9e:58:c5:74:fe:d1:75:fc:ab:1d:fe:aa:f4:fe:4d:
8e:52:cb:ab:f9:19:04:a1:d3:ab:d0:ad:1a:43:70:94:9a:2f:
00:af:7f:b0:3c:40:c2:6e:6e:cf:ba:b3:45:77:56:51:90:f7:
bd:3f:22:e9:99:e4:c6:4a:02:6c:1b:dc:4a:16:cc:0c:46:89:
c5:b2:18:33:8c:74:29:35:b5:34:4d:bb:0e:e6:a0:92:70:6b:
6c:11:77:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 17:33:11 2024 by rpki-client on console-fra.rpki-client.org