Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/gp3cl5YO0-YJldCzlSpronq-vfg.roa
File: gp3cl5YO0-YJldCzlSpronq-vfg.roa (raw, json)
Hash identifier: pn60jwfeEqGAtx60plsL+RoG319U1q2Y1oHxkYxifrc=
Subject key identifier: 82:9D:DC:97:96:0E:D3:E6:09:95:D0:B3:95:2A:6B:A2:7A:BE:BD:F8
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 01856CEF38104343E643AB0005AA67A1AE1F
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/gp3cl5YO0-YJldCzlSpronq-vfg.roa
Signing time: Sun 01 Jan 2023 10:44:54 +0000
ROA not before: Sun 01 Jan 2023 10:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139659
IP address blocks: 45.152.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Apr 2023 11:20:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:38:10:43:43:e6:43:ab:00:05:aa:67:a1:ae:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Jan 1 10:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=829ddc97960ed3e60995d0b3952a6ba27abebdf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:fe:8a:f0:8b:af:c2:1d:62:36:c7:8e:a2:
98:da:ce:dc:5f:e6:ec:26:39:d7:0d:ab:d7:ed:35:
e4:6a:1d:60:50:3a:c1:c0:81:8a:41:8a:aa:85:8a:
c6:ab:88:55:90:b2:26:76:cc:bd:f3:3b:39:dd:25:
e2:19:4f:40:6f:37:77:7c:65:69:ae:f5:94:02:70:
2e:71:67:57:50:ad:11:ca:da:ee:4f:15:9a:b0:9f:
d0:44:4f:af:09:17:dd:9e:34:1f:91:f9:82:96:6d:
44:1c:6a:9b:fd:3c:ca:86:4a:4a:59:6c:b3:62:8f:
5b:47:05:14:21:1f:c1:89:9f:19:21:9e:e1:96:3b:
51:be:df:c9:bd:dd:e9:43:42:91:a2:0b:6a:a4:89:
16:f1:0e:d7:77:36:85:3e:e9:63:63:f2:c6:8b:f1:
1e:af:2e:ed:40:55:97:52:09:b7:8a:4b:b0:0f:81:
89:80:53:4b:33:3a:34:c5:5d:d0:9c:2b:4a:61:db:
4c:db:f0:9f:bd:fa:8d:7f:4e:d1:96:ff:13:7f:37:
a9:5a:fa:8b:d0:11:9c:9c:6f:68:b6:e1:bd:79:9b:
e3:db:74:bf:b6:59:8d:6d:fb:1a:7b:e0:db:aa:0b:
af:18:f5:05:05:55:37:c0:c9:7c:14:29:a9:9f:a2:
86:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9D:DC:97:96:0E:D3:E6:09:95:D0:B3:95:2A:6B:A2:7A:BE:BD:F8
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/gp3cl5YO0-YJldCzlSpronq-vfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:eb:83:e6:5c:fe:ab:75:0a:d5:9e:15:1f:7c:12:de:6d:2d:
a9:a1:32:58:94:48:49:4f:89:51:70:64:17:19:69:78:e8:7d:
44:81:62:97:bf:fe:ac:52:a5:3c:a5:6a:08:39:9a:91:51:94:
a2:93:b8:c0:e6:95:f4:53:4d:02:1d:26:c5:a3:6f:09:56:d7:
44:08:47:1c:e5:2b:d8:89:0e:9b:b8:d2:0a:69:50:af:dc:40:
ff:06:83:9e:fd:2f:df:c0:00:0a:52:51:f1:31:0a:45:8d:d7:
d4:30:fd:7f:b1:87:3d:11:dc:37:d3:69:a7:9d:05:d2:66:3f:
ff:7e:73:ff:da:68:b5:45:91:45:3e:13:b7:49:4e:30:f3:41:
ce:fc:0c:6e:a0:72:b3:b5:36:1b:23:3b:8b:bc:bd:7f:8f:87:
05:43:11:a3:40:43:fe:71:0a:0b:cc:a6:65:ef:54:a9:96:f2:
cb:0b:4b:bd:bc:6c:de:0f:d5:ea:ed:ce:d0:55:75:b7:ec:1e:
bf:09:f6:67:94:d3:a3:41:ba:fd:f2:bc:99:6e:80:89:cb:a6:
7b:82:b8:d2:9a:3b:af:62:de:f2:10:ff:8d:fa:01:13:74:94:
dd:42:c2:3f:0d:fa:a7:81:a8:e5:cf:d5:a8:9e:85:3c:e8:39:
69:2b:76:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:56 2024 by rpki-client on console-fra.rpki-client.org