Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/TEiVFvyXfuIaHZ_QGDpQNBWjzmI.roa
File: TEiVFvyXfuIaHZ_QGDpQNBWjzmI.roa (raw, json)
Hash identifier: C4bmPafilVz1BT/QhtDpR1cHSaaK44bCKXQOvkAOb/c=
Subject key identifier: 4C:48:95:16:FC:97:7E:E2:1A:1D:9F:D0:18:3A:50:34:15:A3:CE:62
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 0187A2D8FC3E6C08FBCB2A58C17A607F776A
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/TEiVFvyXfuIaHZ_QGDpQNBWjzmI.roa
Signing time: Fri 21 Apr 2023 08:05:41 +0000
ROA not before: Fri 21 Apr 2023 08:05:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42156
IP address blocks: 45.83.172.0/22 maxlen: 22
45.143.62.0/23 maxlen: 23
45.143.60.0/24 maxlen: 24
45.143.61.0/24 maxlen: 24
69.48.159.0/24 maxlen: 24
2a0e:8480::/29 maxlen: 29
2a0e:e2c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 26 Apr 2023 07:58:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:d8:fc:3e:6c:08:fb:cb:2a:58:c1:7a:60:7f:77:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Apr 21 08:05:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c489516fc977ee21a1d9fd0183a503415a3ce62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:a0:7d:06:ba:43:b4:94:91:8b:23:d2:df:
6e:7c:d8:47:32:73:ef:af:f1:50:87:7c:74:f6:37:
2c:26:b1:1b:a3:cd:ab:55:2f:c8:8d:40:83:f7:97:
7f:34:95:6b:7c:6d:f0:e8:6c:1c:f7:6c:4c:3d:1d:
b1:b6:80:f4:81:33:84:81:f6:9d:56:8b:df:a8:57:
3f:dc:97:6d:f8:ab:f8:fb:5c:68:f6:4d:f9:99:f2:
d6:f1:33:a1:7f:93:82:1a:c0:e6:70:93:a4:96:f2:
75:21:04:68:e6:80:95:4f:4f:9d:38:c5:5c:0f:16:
c7:91:ce:54:30:9c:c9:79:47:d3:9c:c9:a0:25:fa:
15:f1:ef:5f:6a:5a:93:4a:c0:26:57:a1:7b:d9:fc:
5f:b4:07:8c:8e:c1:81:6b:e4:4b:91:59:40:29:6f:
49:bb:75:b8:ad:4d:46:bb:64:95:56:83:2e:6f:8e:
dc:22:16:77:d8:2b:eb:8f:a3:c6:41:65:3a:da:a9:
cc:d2:ca:d8:5f:fb:0d:f4:34:78:cb:d7:6c:6e:27:
00:ff:3d:52:87:5e:66:27:c0:6a:e6:c4:b9:38:4a:
aa:5d:2e:ff:a0:e1:8f:40:87:f3:04:64:87:04:7d:
17:d0:52:d2:4e:64:59:1b:4c:eb:f7:ea:30:dc:7f:
60:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:48:95:16:FC:97:7E:E2:1A:1D:9F:D0:18:3A:50:34:15:A3:CE:62
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/TEiVFvyXfuIaHZ_QGDpQNBWjzmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.172.0/22
45.143.60.0/22
69.48.159.0/24
IPv6:
2a0e:8480::/29
2a0e:e2c1::/32
Signature Algorithm: sha256WithRSAEncryption
17:e8:d5:56:1c:1a:03:02:5e:bd:3e:7a:d7:89:98:c0:83:22:
eb:a2:de:9f:bf:f1:56:ba:9b:8a:93:97:8f:8b:cf:bd:4d:42:
8d:86:b6:56:b4:98:30:88:bf:89:01:03:09:a7:73:f4:8a:58:
37:94:10:88:e8:0d:72:c6:58:dc:cb:17:97:ca:3c:67:c4:6b:
ec:76:d0:42:cb:2d:f8:1a:e5:cb:4a:94:53:0a:a6:14:a0:52:
d3:ab:57:cc:9a:e7:97:f6:26:ae:74:42:cf:3e:c8:75:f6:0c:
d9:f8:48:3f:58:ce:5b:3f:ef:1d:83:95:7d:dc:f8:e9:07:8b:
66:1e:e9:2f:23:80:5f:a8:2a:ce:cc:43:e5:78:d8:93:09:a6:
b0:3d:82:da:bf:42:6b:c0:ed:39:45:9f:4c:e9:71:d7:ed:00:
56:25:87:e7:c8:a3:8e:83:c1:ec:7b:e2:66:bd:95:6f:23:3b:
6a:84:ae:cc:d0:03:23:c9:91:5a:9c:07:a5:4f:42:e5:68:2a:
67:d5:5e:1b:05:62:64:5b:a7:ed:fd:76:c4:68:c4:e4:67:f3:
21:e9:c8:c7:3c:6c:c4:8e:44:40:d6:9d:e4:64:d1:c3:98:f4:
4d:41:9b:ff:7a:af:9b:ef:a8:50:d1:b0:64:13:61:e3:21:cb:
94:3e:ba:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:17 2024 by rpki-client on console-fra.rpki-client.org