Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/LuVt7zevmYwNYJwzWR39X2oy0tM.roa
File: LuVt7zevmYwNYJwzWR39X2oy0tM.roa (raw, json)
Hash identifier: 63eFM35xFmPw6SLQLi7Ypi67EOg4LSZsIBI8zd5XLyo=
Subject key identifier: 2E:E5:6D:EF:37:AF:99:8C:0D:60:9C:33:59:1D:FD:5F:6A:32:D2:D3
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 01856F3910BB8BDF74FE0A0F3D9FB21C5C80
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/LuVt7zevmYwNYJwzWR39X2oy0tM.roa
Signing time: Sun 01 Jan 2023 21:24:48 +0000
ROA not before: Sun 01 Jan 2023 21:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42040
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:10:bb:8b:df:74:fe:0a:0f:3d:9f:b2:1c:5c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 1 21:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ee56def37af998c0d609c33591dfd5f6a32d2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b0:d8:01:2d:21:61:72:dd:88:54:c8:c5:78:
e5:22:f2:8e:1c:96:d9:16:07:60:e5:67:2e:a7:60:
8b:ad:6c:07:6b:9f:12:aa:f5:09:66:35:63:e6:e3:
31:51:00:40:51:5c:e3:5f:b6:f4:89:00:48:c2:2e:
54:e0:40:f6:7d:62:69:bb:fd:56:ef:52:62:a9:05:
ed:3f:1b:c1:e5:95:a7:39:c9:1c:d0:74:cf:ac:38:
d9:16:01:b1:93:e1:d0:17:4e:e7:81:b9:62:5d:c9:
b5:1e:a1:d9:85:fb:30:b5:f1:14:9b:57:b3:39:43:
e4:72:19:8c:01:c9:0b:fa:8c:7f:30:44:59:47:a6:
13:6f:13:3b:9a:9f:ef:f9:c5:99:59:34:f1:0e:b4:
66:85:bb:1f:7e:cd:2f:41:88:9e:09:c4:5b:ed:24:
06:1b:13:00:2a:eb:03:d3:91:c7:81:d9:98:1d:a9:
f8:ba:b3:c1:c1:cd:08:2f:66:48:d3:06:7e:3e:19:
0c:c1:02:dc:ff:57:f4:b0:fb:b2:6d:da:df:92:98:
4c:4d:48:29:47:46:3a:66:37:1b:9b:63:3c:f3:48:
18:7e:b1:ba:83:cf:25:24:5a:0f:0a:d6:1f:ff:f3:
2a:01:44:d7:92:e9:3e:33:80:a1:7e:2e:36:fa:61:
ee:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E5:6D:EF:37:AF:99:8C:0D:60:9C:33:59:1D:FD:5F:6A:32:D2:D3
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/LuVt7zevmYwNYJwzWR39X2oy0tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
63:99:ea:f3:12:e3:45:67:7d:67:c7:d9:b1:c4:89:67:89:03:
3d:2e:c7:ee:0e:31:18:da:7e:de:20:d0:98:1d:05:2b:e7:2f:
6b:9f:66:ad:d2:39:17:d5:f2:2c:e6:15:99:c4:31:d5:b1:b0:
3a:83:cb:fc:92:a2:3b:65:a6:b6:b8:c0:6e:79:59:25:58:70:
75:b0:97:0c:11:65:2d:f4:21:0f:be:c7:5c:b4:c0:14:db:f9:
c9:7f:45:78:73:83:37:64:12:8c:d8:2c:a3:d0:20:50:0c:77:
a2:65:a4:6f:a6:37:aa:7e:d6:10:94:f9:6c:15:c2:12:4b:fe:
f2:38:f9:f3:aa:c5:33:6e:dc:e7:e9:bf:9b:ab:f0:1a:25:82:
11:2e:99:a6:b4:65:37:4f:6e:7c:3a:35:e8:8a:9a:dc:21:f9:
e9:d7:1d:75:60:a7:50:d5:04:0d:f8:b9:99:9e:33:2b:33:12:
14:ad:62:8b:66:d6:7d:e9:38:4a:e8:93:c6:a9:1f:b4:f0:6a:
d6:6b:fe:32:ef:eb:1d:ce:15:d1:71:78:86:85:59:5e:58:69:
41:94:d5:13:7d:c5:f7:af:49:f8:ad:8d:bd:bb:59:ba:58:bd:
44:bb:cc:7e:89:32:f2:da:ed:63:b8:c2:3e:e4:96:51:9c:09:
fb:9a:25:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:42 2024 by rpki-client on console-ams.rpki-client.org