Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/1d7046-dcf5-452e-8849-b10a22d0a476/1/Pr9dhdukhrgT_lUC2SnPAnfHce8.roa
File: Pr9dhdukhrgT_lUC2SnPAnfHce8.roa (raw, json)
Hash identifier: kr/alqax0pmtXBWABtcYNrRWMbdyds66dy3Wp0kG1WQ=
Subject key identifier: 3E:BF:5D:85:DB:A4:86:B8:13:FE:55:02:D9:29:CF:02:77:C7:71:EF
Certificate issuer: /CN=8e6bd3d545eeb0be40f283899d218cf4868e9490
Certificate serial: 018A3206C579F84ABC561241AD221B21E1FD
Authority key identifier: 8E:6B:D3:D5:45:EE:B0:BE:40:F2:83:89:9D:21:8C:F4:86:8E:94:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmvT1UXusL5A8oOJnSGM9IaOlJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/1d7046-dcf5-452e-8849-b10a22d0a476/1/Pr9dhdukhrgT_lUC2SnPAnfHce8.roa
Signing time: Sat 26 Aug 2023 13:26:59 +0000
ROA not before: Sat 26 Aug 2023 13:26:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49103
IP address blocks: 45.15.248.0/22 maxlen: 24
45.86.196.0/24 maxlen: 24
45.86.196.0/22 maxlen: 24
45.86.199.0/24 maxlen: 24
45.132.168.0/22 maxlen: 24
45.86.198.0/24 maxlen: 24
45.86.197.0/24 maxlen: 24
45.156.196.0/24 maxlen: 24
45.156.199.0/24 maxlen: 24
45.156.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:32:06:c5:79:f8:4a:bc:56:12:41:ad:22:1b:21:e1:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e6bd3d545eeb0be40f283899d218cf4868e9490
Validity
Not Before: Aug 26 13:26:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ebf5d85dba486b813fe5502d929cf0277c771ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:32:9c:5e:64:93:de:f5:ed:6b:a5:d2:5a:60:
14:c7:cf:c1:41:6c:2c:16:1e:ac:30:71:34:16:33:
39:dd:9d:e4:7a:16:24:60:63:68:06:30:93:0a:c6:
2f:54:91:df:b6:1d:04:9c:62:ed:7c:e6:5f:cb:29:
7c:de:c5:be:a0:46:c8:ad:af:7c:03:bd:a8:a5:90:
0d:ed:99:d7:8b:6a:26:f7:8d:8c:60:d9:d8:49:64:
69:82:53:21:5c:13:f3:2f:4e:a9:d9:77:e8:f5:49:
18:a5:b3:fe:7d:e6:18:70:a6:ba:bf:26:e9:5f:8a:
f8:0b:49:3b:23:7a:c2:be:f2:d2:3d:f6:37:29:05:
e3:e6:f9:62:ad:e5:71:ec:45:be:a7:ae:b8:ca:29:
92:fd:13:c5:28:33:62:31:f2:0e:a5:c3:68:fa:a5:
6d:2a:d1:ab:a4:51:8a:cf:59:11:09:3f:4f:7a:57:
3e:a6:e0:8b:9c:ca:61:e0:e5:b2:da:30:26:c6:a8:
e5:ee:6d:d1:c0:a7:60:d5:2f:a8:5d:91:c4:8d:b1:
2f:4f:c0:01:8b:b0:4a:0a:6e:7e:e6:8a:05:68:ee:
8b:1b:dc:9e:32:5b:1d:2d:ba:db:24:d4:08:ea:d0:
ed:e6:04:a8:fd:a1:33:5d:3c:32:e1:7d:76:c5:d0:
d5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BF:5D:85:DB:A4:86:B8:13:FE:55:02:D9:29:CF:02:77:C7:71:EF
X509v3 Authority Key Identifier:
keyid:8E:6B:D3:D5:45:EE:B0:BE:40:F2:83:89:9D:21:8C:F4:86:8E:94:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmvT1UXusL5A8oOJnSGM9IaOlJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/1d7046-dcf5-452e-8849-b10a22d0a476/1/Pr9dhdukhrgT_lUC2SnPAnfHce8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/1d7046-dcf5-452e-8849-b10a22d0a476/1/jmvT1UXusL5A8oOJnSGM9IaOlJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.248.0/22
45.86.196.0/22
45.132.168.0/22
45.156.196.0/24
45.156.198.0/23
Signature Algorithm: sha256WithRSAEncryption
61:92:c6:0f:b1:d3:6d:3f:49:c5:cc:f5:30:39:75:bf:e6:fa:
a1:dd:00:2e:b0:56:3b:db:37:a5:ed:d8:e0:fa:7a:a4:61:c0:
22:af:fc:3d:12:92:27:7e:e7:d2:04:2a:82:d2:ad:49:e9:35:
1b:f2:f6:37:7d:4e:ef:8d:d6:60:a6:5e:8f:0c:04:8e:2d:ba:
90:36:46:73:f0:12:e5:b3:c8:51:73:a9:92:03:4b:db:13:98:
f4:10:d5:5a:37:3d:1b:61:1a:38:15:60:22:fd:80:35:38:39:
43:a7:cc:d4:45:f9:a6:8d:46:ea:9e:8c:f9:85:3c:ea:be:c4:
f8:bd:13:fc:e4:00:0d:18:76:53:06:fb:d7:b8:b5:3b:a4:56:
55:1b:94:62:d9:26:07:76:ee:f4:f7:4f:1c:2d:b7:4d:7e:26:
89:2d:01:ee:de:9a:0e:82:bb:c4:67:90:e1:1c:85:22:b5:1f:
98:33:d0:b4:3d:ed:ec:bd:7f:ff:9c:a1:8a:d2:4b:36:ea:71:
61:72:11:5c:24:d6:1e:3c:01:96:12:da:1e:83:85:26:6f:18:
8e:51:8c:f4:26:8b:44:21:5e:6d:d4:50:87:1e:71:dd:a3:14:
bc:a5:a0:67:54:b6:eb:45:d1:f5:d1:d1:6f:34:cf:2b:73:9c:
e9:2a:0a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:34 2024 by rpki-client on console-ams.rpki-client.org