Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/PIW5HC1TB8XVypBAkXdaWtIkTLE.roa
File: PIW5HC1TB8XVypBAkXdaWtIkTLE.roa (raw, json)
Hash identifier: mkhIVHvWPvl2/5Twog7dPHOASZj1h4QJZIPtoQoT2rQ=
Subject key identifier: 3C:85:B9:1C:2D:53:07:C5:D5:CA:90:40:91:77:5A:5A:D2:24:4C:B1
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01856CE63E6F8AC50134CA262A409B5883CF
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/PIW5HC1TB8XVypBAkXdaWtIkTLE.roa
Signing time: Sun 01 Jan 2023 10:35:06 +0000
ROA not before: Sun 01 Jan 2023 10:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 45.156.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:3e:6f:8a:c5:01:34:ca:26:2a:40:9b:58:83:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 10:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c85b91c2d5307c5d5ca904091775a5ad2244cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5c:40:99:8b:b9:01:2a:e9:53:15:16:57:a8:
01:5d:ba:c0:76:0b:cc:8e:ab:73:00:1e:68:37:5a:
f6:5a:c1:1c:f6:4b:25:bd:86:da:2c:e3:a8:1e:42:
20:28:ea:f5:df:75:69:0e:3f:c5:d9:c2:a6:5f:43:
6e:63:b4:66:27:ec:59:29:03:5d:cd:6f:a6:b3:c5:
73:90:d5:69:27:1c:8a:f4:46:c2:2c:fe:ce:c7:47:
c4:51:fa:bd:1f:8d:cd:17:f8:f2:c4:03:51:94:9c:
e5:81:5a:02:e9:64:c9:10:3b:09:0b:b0:be:f6:e5:
3d:30:38:5c:81:d5:39:ae:04:85:07:19:77:db:18:
5c:d9:f8:7e:dd:a3:d3:dc:b7:15:42:46:11:31:f6:
5c:0a:44:1e:f4:83:89:c1:90:6f:85:05:74:03:09:
0c:16:95:6e:5c:ba:f5:18:70:85:0f:49:78:33:b8:
05:bf:98:58:14:f5:67:f6:cf:3c:31:cc:ba:77:66:
56:3d:52:ad:fc:3f:d4:bf:4d:b2:0a:ee:05:85:e3:
78:96:35:b7:d3:fa:50:a3:3c:4a:b8:c4:14:fd:d8:
d1:1d:99:54:94:30:7f:7a:77:e6:b3:9f:52:29:8f:
47:f5:68:1a:93:2a:20:cc:a3:70:48:30:42:ae:b3:
09:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:85:B9:1C:2D:53:07:C5:D5:CA:90:40:91:77:5A:5A:D2:24:4C:B1
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/PIW5HC1TB8XVypBAkXdaWtIkTLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.56.0/23
Signature Algorithm: sha256WithRSAEncryption
07:6a:9f:22:2a:11:fc:02:f1:13:a4:ad:a9:75:03:2c:14:0b:
b0:f2:56:dd:1a:26:77:e1:c0:44:be:66:04:88:30:36:e7:4d:
d3:d8:70:33:9d:50:b3:40:7c:f6:07:af:5a:06:96:ee:f5:ed:
20:35:61:7a:26:cc:c2:bb:2e:ff:8d:6b:72:2a:41:2a:37:4a:
00:b8:bf:44:c1:28:87:a4:0d:79:d2:7e:33:d2:e4:f8:7d:b8:
1d:fb:53:df:f3:bb:25:3a:ae:f0:4f:9b:85:03:5d:29:e3:18:
49:4d:46:94:b8:5b:1c:23:8e:39:8d:49:80:1a:87:8a:39:12:
53:7a:c9:d1:17:cc:bf:e3:eb:d9:ee:96:92:bc:b0:c3:8d:c5:
80:22:b3:9f:0e:0e:22:3e:37:ea:18:e9:ab:79:56:e4:4e:c6:
e1:95:36:22:a0:9b:18:06:05:fa:f6:31:b1:fb:9a:d0:ff:41:
45:63:bf:26:a8:91:ad:ba:2c:17:09:1b:f4:7b:fa:44:76:78:
85:31:1f:5c:8a:dd:40:a1:e5:f3:3f:37:8c:70:1f:e1:c1:4c:
b2:71:49:fa:ec:bb:17:46:99:06:ef:4e:c0:ef:72:8f:cb:59:
f6:77:f8:32:f4:e0:a7:9c:68:8b:ce:9e:a2:b7:86:c4:f9:53:
ab:f1:4d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org