Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/AIVlq-g3DQ658gLGZ2zlbGWlLY8.roa
File: AIVlq-g3DQ658gLGZ2zlbGWlLY8.roa (raw, json)
Hash identifier: 8SrQOfIbMaGtFuCz+F/xeN9mcgQojtM9yYuvmpxclFE=
Subject key identifier: 00:85:65:AB:E8:37:0D:0E:B9:F2:02:C6:67:6C:E5:6C:65:A5:2D:8F
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01857139CEF9B2E85C26F5F51CBF9871EF68
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/AIVlq-g3DQ658gLGZ2zlbGWlLY8.roa
Signing time: Mon 02 Jan 2023 06:44:52 +0000
ROA not before: Mon 02 Jan 2023 06:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204397
IP address blocks: 45.86.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ce:f9:b2:e8:5c:26:f5:f5:1c:bf:98:71:ef:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 2 06:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=008565abe8370d0eb9f202c6676ce56c65a52d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c4:7b:33:a8:4e:7f:d1:93:9c:23:c0:52:a9:
b6:fc:d5:9d:ca:27:28:77:f7:03:3a:dd:e5:fc:06:
1e:a8:4f:ca:fd:f6:6a:4e:cd:fd:2d:7e:e0:bb:cd:
62:b9:e0:8d:6e:09:d3:77:7c:8d:c7:fe:e5:74:ce:
36:7b:49:0d:67:ac:61:b3:cb:c8:51:1e:c5:0d:cb:
15:4d:34:e9:d9:11:39:51:d1:8a:a1:01:b6:41:a2:
ec:3c:0a:75:f6:42:32:29:17:91:df:38:97:cf:5d:
e3:9a:70:96:81:e9:70:9e:d6:4e:a0:13:b0:73:01:
7c:c6:cc:d4:14:49:f6:b8:7f:2b:55:a8:70:9e:2a:
d4:97:39:15:62:3d:6b:a9:d9:ae:f3:fe:ff:5d:e3:
90:de:5c:d9:71:9a:ec:b0:ba:8e:7b:1e:e7:aa:ae:
5e:00:6c:3b:ff:71:b9:2d:a8:32:c3:f5:3a:9e:25:
96:0d:04:41:2c:47:07:5c:f4:34:3f:01:49:d6:db:
34:19:e0:41:09:84:e8:44:fc:0f:1a:ba:ff:51:0d:
f0:8f:a3:cc:e2:14:89:6f:1e:55:c1:9f:00:0f:1c:
9f:3c:d1:9e:d3:58:35:e4:72:23:d1:da:e0:3b:bb:
64:7f:0c:6c:8d:61:36:3d:08:64:d0:30:85:95:9f:
78:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:85:65:AB:E8:37:0D:0E:B9:F2:02:C6:67:6C:E5:6C:65:A5:2D:8F
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/AIVlq-g3DQ658gLGZ2zlbGWlLY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.35.0/24
Signature Algorithm: sha256WithRSAEncryption
93:0d:6d:46:d6:ec:ad:11:43:47:50:b5:00:c3:fa:9a:f5:53:
37:6c:39:47:44:3c:0e:b4:36:47:4d:46:bd:ae:d8:95:8c:82:
fd:04:7d:20:6d:b6:c5:c6:82:e2:72:0b:08:81:7e:1d:fc:0d:
d4:87:7d:85:83:75:cd:9c:14:90:09:1a:c3:91:6e:46:94:01:
88:01:4e:db:ed:bf:6c:18:35:c6:86:f9:6d:6d:02:be:94:13:
48:35:4e:87:b7:56:be:8f:51:c3:70:da:b1:60:b4:93:44:83:
69:14:54:a8:f4:3a:ce:d5:84:f0:fe:7b:b1:22:01:79:6b:ab:
40:25:d3:42:7f:c8:63:72:d7:06:0b:04:cf:ce:14:d1:50:26:
8d:54:36:4f:b1:c5:79:92:9c:c8:55:bb:c5:86:ad:12:79:87:
17:11:81:e2:c3:2a:09:76:37:ef:9b:3b:91:72:be:53:f1:4c:
cd:82:38:01:66:9a:d8:e9:15:cc:60:9b:77:ce:82:5e:e9:90:
06:f5:12:3e:08:61:40:de:da:c6:f8:dc:ed:5a:5a:f8:02:93:
96:36:18:9a:1d:6e:7e:0a:3b:cb:e1:ff:21:aa:4c:b4:06:fa:
45:4c:60:a9:b2:13:b3:c2:d4:e1:69:48:3e:97:1e:a0:85:ec:
55:fe:b7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org