Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/_kbOyMxcl1nslSSOEkTF_6vbDEc.roa
File: _kbOyMxcl1nslSSOEkTF_6vbDEc.roa (raw, json)
Hash identifier: EuNnRNRPqOKyabUwuKLvTI1ZDb478+Fetrj0yF0guCo=
Subject key identifier: FE:46:CE:C8:CC:5C:97:59:EC:95:24:8E:12:44:C5:FF:AB:DB:0C:47
Certificate issuer: /CN=b08ace0eb3e2df49fdbb77726716fb65e7777964
Certificate serial: 0187DC8CBA7B283517DC572CCC8C61EF587C
Authority key identifier: B0:8A:CE:0E:B3:E2:DF:49:FD:BB:77:72:67:16:FB:65:E7:77:79:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sIrODrPi30n9u3dyZxb7Zed3eWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/_kbOyMxcl1nslSSOEkTF_6vbDEc.roa
Signing time: Tue 02 May 2023 13:00:22 +0000
ROA not before: Tue 02 May 2023 13:00:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199524
IP address blocks: 45.135.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 08:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:8c:ba:7b:28:35:17:dc:57:2c:cc:8c:61:ef:58:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b08ace0eb3e2df49fdbb77726716fb65e7777964
Validity
Not Before: May 2 13:00:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe46cec8cc5c9759ec95248e1244c5ffabdb0c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7f:fa:98:4a:c7:c0:61:f3:85:0d:8a:11:83:
f2:8d:6d:2e:95:d7:3b:fd:72:41:24:77:1c:df:06:
f9:78:c2:f2:a9:77:e4:ae:03:a0:1a:2a:70:a8:c2:
13:67:72:b4:72:16:42:a9:be:ab:4b:dd:dd:51:b6:
39:17:79:47:2e:04:5b:d7:fe:7b:4f:65:4f:a7:a4:
31:48:3b:83:a6:9c:e2:e5:86:11:77:70:07:60:eb:
0c:f5:2d:eb:43:9e:e2:84:08:db:63:bf:89:a0:a2:
66:ec:c6:6b:93:17:a6:5f:c9:bb:c0:d0:63:49:11:
fa:d6:49:e6:2b:6b:92:ed:b1:c6:fe:ee:65:eb:fe:
36:9c:b4:6a:f9:62:85:a9:a2:b5:b9:cb:c4:de:8a:
25:02:86:3a:70:e2:8e:56:c9:56:80:fc:e6:ce:d0:
3a:78:1f:f6:70:d5:dd:ea:37:b2:9b:25:40:b1:6f:
67:ef:ad:fd:61:5d:d0:d3:d4:54:43:62:de:a9:14:
16:54:97:05:65:99:84:b6:64:1e:fa:3a:47:12:6c:
f4:ac:23:87:16:61:1d:20:2b:8f:49:7b:51:6e:2a:
e3:2c:4a:71:ce:3e:8f:6e:61:05:7f:74:5e:30:a4:
ba:af:d4:f6:97:74:40:a8:f0:4d:e0:37:af:55:35:
eb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:46:CE:C8:CC:5C:97:59:EC:95:24:8E:12:44:C5:FF:AB:DB:0C:47
X509v3 Authority Key Identifier:
keyid:B0:8A:CE:0E:B3:E2:DF:49:FD:BB:77:72:67:16:FB:65:E7:77:79:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sIrODrPi30n9u3dyZxb7Zed3eWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/_kbOyMxcl1nslSSOEkTF_6vbDEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4537dd-78b6-467e-914d-865b4cfbd4cd/1/sIrODrPi30n9u3dyZxb7Zed3eWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.228.0/24
Signature Algorithm: sha256WithRSAEncryption
86:ab:db:ce:ba:55:7a:6a:de:3e:23:9f:dc:8c:93:eb:a8:a5:
13:83:89:a5:61:14:b2:c0:07:0d:6f:1f:f0:4e:b2:5e:0e:1b:
5d:54:a9:c8:e3:a0:e3:77:de:4f:99:e3:11:89:33:2d:b0:45:
24:d9:d7:05:63:57:4a:e8:be:5f:12:3d:40:17:fa:98:51:42:
d8:c2:1b:67:ce:b4:40:a2:d7:e2:17:08:e1:1b:c9:cc:37:ed:
ad:0b:aa:6b:ef:f4:26:28:7e:fc:ff:ba:f8:b9:bc:72:c8:a0:
10:83:bf:27:64:ad:e2:df:67:aa:bc:fe:e2:8c:e9:7d:ba:4d:
3e:13:7d:49:4f:7c:ba:52:af:97:e0:1e:d7:f1:2d:22:f4:f9:
c7:3c:c3:14:ca:dd:96:e8:59:1c:79:69:cc:f0:39:1d:a6:bb:
3a:bc:b5:3c:8b:b5:55:81:40:f8:4c:24:56:7f:f1:81:f3:e2:
ad:72:33:b0:6a:87:68:29:c9:73:ba:b1:3d:02:02:73:e8:c3:
90:e7:c3:e4:71:1e:e7:b0:c5:a7:50:dc:69:a5:9b:3f:4f:30:
65:8b:2b:96:53:8b:25:8e:21:dd:50:c2:18:79:ec:b6:a4:e5:
e0:c0:d0:50:39:02:f0:e0:43:6d:b0:60:4c:3c:14:15:a2:62:
40:6f:e2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org