Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PNL62NsthwPX8_gyJgGHT-2wAyo.roa
File: PNL62NsthwPX8_gyJgGHT-2wAyo.roa (raw, json)
Hash identifier: IbfDDS59zRx2HkrUSjaLjMShOo+VCcUgtHtD8lCwnbU=
Subject key identifier: 3C:D2:FA:D8:DB:2D:87:03:D7:F3:F8:32:26:01:87:4F:ED:B0:03:2A
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 019121571D66A40B9B360A87EC5179E66C2D
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PNL62NsthwPX8_gyJgGHT-2wAyo.roa
Signing time: Mon 05 Aug 2024 07:00:42 +0000
ROA not before: Mon 05 Aug 2024 07:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 45.155.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 12:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:21:57:1d:66:a4:0b:9b:36:0a:87:ec:51:79:e6:6c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Aug 5 07:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cd2fad8db2d8703d7f3f8322601874fedb0032a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:f8:07:c4:ba:36:99:7e:0b:93:9d:6c:cc:
3b:1a:75:3a:7d:9a:cf:43:da:6c:25:b3:63:24:97:
a2:33:7e:7e:94:bf:f3:68:c6:26:62:16:9d:ea:97:
2e:c9:bc:ef:01:5a:2e:4b:06:13:37:72:e2:97:54:
0d:c7:7c:60:94:16:58:83:8e:1b:89:5f:93:d3:36:
2f:93:32:65:a9:fb:e7:aa:e6:e9:b9:e6:26:30:5f:
4d:fb:e3:25:89:28:b3:02:9c:0c:53:7d:5c:1b:a2:
d4:69:d2:98:9f:93:05:06:6f:70:c1:c8:9d:7d:7d:
e0:a5:ac:81:02:f4:b6:a0:fa:27:09:8a:ec:02:ed:
f0:27:f0:79:4d:82:d2:87:0d:80:74:3c:c2:ed:ee:
53:7d:0a:35:51:f0:b9:e6:1d:8d:e6:e1:ea:dc:0b:
32:ae:eb:29:8e:21:01:7a:99:7e:69:1c:ea:c2:48:
92:c0:82:45:3c:72:22:68:a6:4c:b5:97:74:4d:d0:
38:23:d4:3c:6a:ba:d8:c4:83:52:6e:83:bc:f7:f7:
06:ae:86:66:94:07:d9:bd:de:bd:aa:a3:c5:4e:79:
f7:28:2f:fc:b6:ee:c0:98:0a:da:46:d5:1b:b5:f8:
d8:40:b1:91:ca:b4:61:93:a5:93:46:d0:3a:2d:f4:
3b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D2:FA:D8:DB:2D:87:03:D7:F3:F8:32:26:01:87:4F:ED:B0:03:2A
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PNL62NsthwPX8_gyJgGHT-2wAyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.241.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ab:1b:ec:ab:63:7c:9a:d2:f5:f8:dd:cd:ae:69:21:d2:d3:
00:50:96:d7:60:d5:4f:28:fd:a7:11:e9:9f:51:46:94:4f:f5:
e9:ce:f8:01:d1:95:e5:c0:6c:b9:84:e9:08:15:53:d4:ef:83:
62:ff:33:11:e9:18:23:bb:12:b3:5b:63:48:32:0d:49:7e:09:
a7:1c:1e:fc:2d:56:89:7c:47:ea:dc:8e:a2:10:92:ad:34:3a:
9a:fb:c6:ba:9f:0c:ef:63:2f:cf:d4:bb:46:9f:ee:10:79:db:
2f:bb:76:eb:39:02:6c:22:51:20:5f:98:8f:d7:4c:f5:e1:a8:
78:f2:98:08:9e:6f:4e:79:65:8b:94:b4:8b:81:c2:20:66:c7:
53:24:81:be:7e:cf:b2:a3:25:f9:d9:de:fa:7b:c1:db:af:60:
5a:c4:4f:7e:86:49:e7:07:47:aa:4a:74:5e:3c:cb:4c:49:b9:
3f:3b:40:25:ec:cb:ea:a0:20:c4:72:96:2a:93:fa:30:5f:28:
bc:e2:ee:4c:a6:47:2f:68:26:0d:35:8f:2e:cf:f9:a5:b7:8a:
c6:ef:51:55:6a:33:5c:5f:49:89:af:b3:1d:b3:85:a9:29:8a:
f3:28:62:55:a5:4a:4c:36:f3:da:b4:8e:26:fd:33:81:3a:83:
9f:a0:df:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 16:07:25 2024 by rpki-client on console-fra.rpki-client.org