Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/2ocEhhg0DpTdWbsITEi7nANslfg.roa
File: 2ocEhhg0DpTdWbsITEi7nANslfg.roa (raw, json)
Hash identifier: 9gJsf1vXRzaDLakvozs02bDxDehp4wBxZL68/GazLXo=
Subject key identifier: DA:87:04:86:18:34:0E:94:DD:59:BB:08:4C:48:BB:9C:03:6C:95:F8
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0187993FB2DB8801CBC137FF3538C1FD5C22
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/2ocEhhg0DpTdWbsITEi7nANslfg.roa
Signing time: Wed 19 Apr 2023 11:21:41 +0000
ROA not before: Wed 19 Apr 2023 11:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133199
IP address blocks: 45.145.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 06:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:99:3f:b2:db:88:01:cb:c1:37:ff:35:38:c1:fd:5c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Apr 19 11:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da87048618340e94dd59bb084c48bb9c036c95f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4b:b5:de:76:55:50:20:63:12:48:9d:2d:53:
16:d2:fd:ca:fb:f0:a6:a2:f5:5c:35:4e:8d:47:0b:
79:e9:f3:6c:5d:86:48:40:b0:64:0e:42:bd:bb:01:
90:86:53:83:05:4a:ca:7b:5a:51:c9:2c:8f:da:57:
43:00:20:1f:34:0e:6a:6c:e6:b5:e0:dc:68:b3:34:
19:3b:24:9a:c8:3a:73:d3:99:a8:33:8a:e3:73:54:
f4:da:69:c6:fa:50:23:21:4b:01:df:25:cb:9b:55:
2f:04:92:db:19:f7:39:71:51:46:e7:01:30:bd:4d:
05:7b:ff:75:c9:15:65:cc:c3:9d:ad:d3:9e:20:71:
30:b9:6b:0b:41:19:0f:ed:98:b6:c8:0c:dc:56:53:
c9:60:64:dc:49:a3:73:c9:d9:23:9e:1d:ae:2a:5f:
24:7a:3b:62:07:d0:b4:cf:1d:4e:72:2e:0d:89:a2:
28:2a:13:dd:fd:03:6e:0a:36:a3:e7:ee:5a:33:e8:
0d:d7:5a:61:cc:17:e4:98:f2:66:9c:9a:c5:19:ca:
b6:88:98:47:d4:73:7c:74:0a:e6:1e:0d:c7:38:c0:
14:8c:d6:3b:5b:d0:1f:fd:cb:77:65:59:52:8c:d6:
1a:9e:6d:e4:e0:e1:fb:8b:0d:ae:d5:7e:7c:91:33:
f0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:87:04:86:18:34:0E:94:DD:59:BB:08:4C:48:BB:9C:03:6C:95:F8
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/2ocEhhg0DpTdWbsITEi7nANslfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.229.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5e:55:36:31:49:55:5b:32:b1:28:54:bb:30:06:91:a1:e3:
a4:dc:11:5c:55:1d:b2:40:37:44:b7:23:20:02:92:44:29:d9:
fe:a0:77:5b:c4:1a:a1:2c:6d:e4:3d:26:20:73:9d:d9:17:75:
53:30:de:76:c9:82:01:0e:82:32:dc:82:43:60:71:15:a5:04:
09:95:e8:35:af:f3:6c:e1:4d:84:0e:34:36:0e:a3:9c:fa:e8:
97:a4:11:9a:b6:d4:2f:31:02:f3:17:64:83:d7:50:47:df:95:
c6:84:48:5e:6b:2a:ae:74:20:70:e8:77:ad:fc:4f:34:56:75:
a6:f7:5a:60:63:34:e2:56:f6:d8:df:9f:6a:58:d5:d6:c3:99:
3e:75:65:81:b4:b3:5b:53:d5:4d:9c:d1:2f:dd:97:cb:16:46:
b1:22:0e:f7:6e:3f:37:53:21:22:7c:7b:60:13:e2:2d:71:89:
bf:fa:8a:58:05:0e:b6:c0:44:54:c0:c7:ad:2c:c7:3d:bf:56:
83:46:ad:b0:43:e4:5d:a1:47:9c:1a:21:84:bd:87:c2:38:94:
b2:90:a8:f6:6d:e3:3d:9e:0d:f2:11:ca:05:ee:b7:bf:c4:0a:
33:e9:2f:28:83:fa:4e:08:e8:59:8f:61:7e:3f:82:57:c2:68:
5f:33:53:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:56 2024 by rpki-client on console-fra.rpki-client.org