Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/OAfX-tC0NT7movrFyKPJqC9Q_WY.roa
File: OAfX-tC0NT7movrFyKPJqC9Q_WY.roa (raw, json)
Hash identifier: 347wLadcvT+VmTfm0luP7wGBD5JMtWH9ZXdJaBPd7Ik=
Subject key identifier: 38:07:D7:FA:D0:B4:35:3E:E6:A2:FA:C5:C8:A3:C9:A8:2F:50:FD:66
Certificate issuer: /CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Certificate serial: 018F996465F8EF89A6473ED5F03BB0F512F9
Authority key identifier: C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/OAfX-tC0NT7movrFyKPJqC9Q_WY.roa
Signing time: Tue 21 May 2024 04:24:04 +0000
ROA not before: Tue 21 May 2024 04:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 45.144.198.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:64:65:f8:ef:89:a6:47:3e:d5:f0:3b:b0:f5:12:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Validity
Not Before: May 21 04:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3807d7fad0b4353ee6a2fac5c8a3c9a82f50fd66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9a:3a:36:56:f6:06:07:54:9c:66:af:66:b3:
a2:60:a0:18:1e:56:12:5b:70:00:21:79:c4:93:94:
aa:66:31:70:7b:b9:6c:67:e0:46:51:0f:ac:64:e8:
d5:b2:67:34:fb:32:9f:00:ed:1f:77:0e:9c:c9:8c:
3d:01:f1:79:cd:fc:d2:35:a4:d2:01:93:b0:25:96:
4d:4a:3b:4e:8a:86:82:5d:75:14:18:13:16:de:b7:
d9:e0:c6:bc:94:d2:11:a7:08:30:a6:27:65:09:84:
92:cc:b1:63:df:16:75:e2:7c:9f:38:2e:d4:3e:5b:
6d:95:0b:dc:52:0d:7f:ac:ac:67:96:65:52:e0:36:
ec:42:88:33:62:8e:e2:10:d5:60:5c:43:6d:15:15:
a9:48:c9:77:6f:c5:87:43:7c:18:1a:85:2d:09:c9:
bd:95:af:60:6b:dd:60:9a:4d:d3:a6:e4:ee:1e:30:
24:97:fd:ba:a7:03:6a:ba:a5:01:79:b1:04:52:fd:
67:ae:83:ba:1f:c2:7a:d6:cd:f6:c5:4c:a9:94:b5:
a7:b8:e0:b6:1f:d1:ca:01:bf:b9:a9:96:43:f9:56:
4e:77:d9:0d:b8:97:65:14:fa:af:bf:20:b5:2a:53:
0a:cd:1c:fe:7d:2d:f2:c8:4f:98:fb:0e:ed:46:b0:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:07:D7:FA:D0:B4:35:3E:E6:A2:FA:C5:C8:A3:C9:A8:2F:50:FD:66
X509v3 Authority Key Identifier:
keyid:C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/OAfX-tC0NT7movrFyKPJqC9Q_WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/wV59e7ae-ssMc5ApcsdNctKb938.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.198.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:9a:1d:d1:c5:88:f7:b7:da:f7:b8:6f:36:d3:7f:0c:a8:ff:
cc:10:69:0d:de:9b:2f:46:d8:8e:02:c2:59:82:6a:c4:49:51:
48:48:94:3f:05:3d:6b:d7:e6:d1:07:ec:fe:1f:f2:7f:9a:fa:
ce:2d:e0:45:e2:ac:87:65:e3:79:90:11:a2:74:9f:79:10:0a:
af:76:e7:5b:1f:c5:1f:83:43:f4:62:b7:0f:29:a4:a7:da:51:
aa:35:8c:43:d1:c3:e1:89:18:c2:f7:c8:64:41:12:9e:6d:1e:
6b:0f:fe:54:a4:c8:8f:6f:a5:4c:1d:7c:7b:44:03:d6:8f:5e:
41:ee:e1:b2:e7:e5:8d:79:c2:50:e1:9c:e4:66:e0:c3:ff:52:
90:16:37:be:1e:31:17:44:3c:7e:0b:74:1e:5c:c4:54:ca:e5:
e4:22:19:5a:63:d4:42:34:62:39:c6:f0:07:79:9a:a3:aa:79:
34:c2:d0:6e:50:06:da:61:06:1c:37:1a:53:f2:16:20:4c:fc:
38:56:1e:ef:68:a3:95:61:8c:7e:15:c0:90:2f:39:c8:cb:f0:
cd:92:f5:14:6e:1d:11:37:84:ca:c0:dc:63:af:54:d7:36:87:
75:c4:21:da:6b:7c:fb:f8:a9:a0:30:58:1f:0b:a8:59:36:55:
a9:7f:f7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:02 2024 by rpki-client on console-fra.rpki-client.org