Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/0jE_C6WQUu2dBqjY-wwdbeh9Bg0.roa
File: 0jE_C6WQUu2dBqjY-wwdbeh9Bg0.roa (raw, json)
Hash identifier: LdoLoWKhVR3XHFBpmnvTuorD+NrwqEH2E+SdC8KGfhU=
Subject key identifier: D2:31:3F:0B:A5:90:52:ED:9D:06:A8:D8:FB:0C:1D:6D:E8:7D:06:0D
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 01856E1445D46B5B7A4982120B448BFAA7C2
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/0jE_C6WQUu2dBqjY-wwdbeh9Bg0.roa
Signing time: Sun 01 Jan 2023 16:05:00 +0000
ROA not before: Sun 01 Jan 2023 16:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25465
IP address blocks: 45.83.96.0/24 maxlen: 24
45.83.98.0/24 maxlen: 32
45.83.97.0/24 maxlen: 24
45.83.99.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:45:d4:6b:5b:7a:49:82:12:0b:44:8b:fa:a7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Jan 1 16:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2313f0ba59052ed9d06a8d8fb0c1d6de87d060d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:35:60:82:d2:72:bf:c3:f8:be:a6:69:5d:07:
42:13:98:50:34:19:2d:23:6d:0e:2c:bc:42:c4:fe:
a2:eb:fa:a5:cf:45:aa:21:96:f8:65:84:dc:49:54:
54:e6:00:f8:f7:88:8d:e3:b2:c9:4f:69:62:c8:95:
ec:65:72:26:ff:05:73:6f:7d:70:b8:46:cb:28:cf:
73:19:91:05:4a:82:09:fc:31:f7:45:ed:28:c7:81:
19:11:f8:c6:f0:20:3e:17:8c:18:23:ba:b4:b6:40:
49:51:0c:5d:61:1b:d3:a1:e6:db:9d:34:b7:f1:46:
dd:e2:cd:5c:8e:08:40:86:97:30:be:b4:a2:4d:da:
e7:df:be:7d:bd:54:19:e7:c2:05:db:8d:86:b3:38:
6f:64:ea:e9:65:a3:cc:bc:4d:f6:69:7c:f1:c2:ef:
66:a5:c5:fe:88:90:0e:d4:77:7b:ea:b4:8b:83:1d:
a8:d7:39:21:56:9a:ed:a5:e7:4b:59:3b:37:ac:71:
f5:9f:41:8f:8d:94:02:3e:54:e6:3f:9f:31:2a:ca:
cd:04:1c:22:97:95:b1:43:62:69:50:4a:58:2e:fe:
22:ad:14:0c:44:92:de:22:2d:4f:da:67:e7:18:23:
57:17:f1:e7:4d:7d:7c:98:aa:96:40:da:ba:8b:14:
90:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:31:3F:0B:A5:90:52:ED:9D:06:A8:D8:FB:0C:1D:6D:E8:7D:06:0D
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/0jE_C6WQUu2dBqjY-wwdbeh9Bg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.96.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:5a:0e:eb:9c:66:8f:b7:03:0f:a8:5a:5d:b6:71:1a:2d:4b:
4a:49:9d:5d:47:72:46:eb:5d:e0:68:34:07:3f:bb:18:36:05:
7f:5d:b2:ea:ba:fa:3c:31:65:ee:6c:89:c4:df:76:6a:7e:6d:
d7:22:eb:ab:62:1b:f0:a5:22:9f:74:cf:d2:ab:d3:12:72:93:
e1:f5:f9:01:5b:d4:61:10:58:3f:54:f7:ed:95:31:be:09:06:
d2:b7:2a:56:d3:90:4a:06:62:69:b1:8a:c5:79:25:80:ae:dc:
98:d8:42:95:7f:54:69:40:39:c2:fa:6b:79:49:d2:1e:3c:d2:
d2:84:59:a0:3b:87:5a:66:38:48:6c:ad:0d:4b:74:e4:36:61:
45:c5:8b:c3:e8:92:7d:2e:1d:e3:c5:26:2a:7b:91:ef:ad:14:
67:a3:37:0b:8b:a3:d6:a1:b9:75:4b:d2:6b:89:50:8a:85:dd:
69:17:c9:7c:b8:43:d1:25:ca:65:cc:8c:f1:57:13:9a:c1:5b:
64:69:75:24:5c:8e:c4:cb:7a:cc:f8:3a:4d:40:dc:d7:9f:aa:
42:39:d1:74:db:bc:d7:02:09:27:b7:07:05:b0:ad:c2:6d:3d:
30:30:bd:d0:81:d7:30:77:78:ba:0d:43:3f:a9:9a:af:da:b7:
ca:fc:67:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:19 2024 by rpki-client on console-fra.rpki-client.org