Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/f_5l8cMq72fbdhsPWcdykO3f0t4.roa
File: f_5l8cMq72fbdhsPWcdykO3f0t4.roa (raw, json)
Hash identifier: sYZ06Uttha/kGLy8DACoq4cSaGuGRNU+FxbMEk1QqqA=
Subject key identifier: 7F:FE:65:F1:C3:2A:EF:67:DB:76:1B:0F:59:C7:72:90:ED:DF:D2:DE
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018EA7A35E05A858D49900F3480DE470AD6F
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/f_5l8cMq72fbdhsPWcdykO3f0t4.roa
Signing time: Thu 04 Apr 2024 05:44:45 +0000
ROA not before: Thu 04 Apr 2024 05:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55933
IP address blocks: 45.82.76.0/24 maxlen: 24
45.89.232.0/23 maxlen: 24
45.94.43.0/24 maxlen: 24
185.207.152.0/24 maxlen: 24
185.207.154.0/23 maxlen: 24
193.187.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 05:52:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a7:a3:5e:05:a8:58:d4:99:00:f3:48:0d:e4:70:ad:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Apr 4 05:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ffe65f1c32aef67db761b0f59c77290eddfd2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2d:9f:ee:80:b4:4a:f6:34:c9:25:ae:8d:a5:
ce:6d:ec:12:5f:69:c0:96:24:3e:fc:ce:be:ef:9e:
fb:89:a5:d1:24:ba:61:ad:3d:00:8e:10:4d:c9:0f:
3d:88:47:b6:36:d9:3d:94:de:3c:4f:06:1f:00:08:
60:75:cb:48:ee:a3:11:f9:3d:76:7e:51:bc:40:4a:
09:73:5b:5f:7b:60:24:2b:2d:56:5d:c7:7c:63:4f:
d6:9e:f4:59:ee:7d:2d:d7:32:76:77:cc:91:8e:ec:
69:6e:23:9f:e7:10:98:9c:50:63:2d:90:ac:a1:56:
1a:3e:5f:a9:38:e2:4d:aa:c4:d0:c7:99:7a:1f:63:
c8:e1:4f:7d:d7:60:ed:61:c4:d0:84:5f:1d:d3:44:
1d:b5:b8:6c:1d:65:55:ff:99:39:75:1d:c3:06:e5:
3d:60:0d:83:17:16:84:7f:d2:13:25:90:54:53:4d:
8f:ef:42:56:31:e1:a9:f4:c6:56:2d:bf:82:ab:4c:
f2:19:7c:b0:79:3e:96:3d:80:05:8a:89:44:26:3d:
cb:fb:a3:90:98:5f:f7:5f:2e:b6:5d:a9:3c:28:95:
6a:ee:3c:9b:76:64:b2:c5:76:f2:0a:1a:16:05:1f:
06:04:67:0b:95:55:7b:80:bb:73:a3:4f:e0:43:88:
a3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FE:65:F1:C3:2A:EF:67:DB:76:1B:0F:59:C7:72:90:ED:DF:D2:DE
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/f_5l8cMq72fbdhsPWcdykO3f0t4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.76.0/24
45.89.232.0/23
45.94.43.0/24
185.207.152.0/24
185.207.154.0/23
193.187.116.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:cc:c7:9f:08:0d:08:84:3e:33:96:de:0e:9f:a7:c5:45:fb:
e5:35:77:4d:fc:3f:37:7f:d8:d7:b4:81:bd:75:cc:99:eb:2b:
06:c4:b6:7a:5a:6a:26:3d:12:09:a3:09:e1:a4:5b:71:57:09:
d9:4b:84:4b:12:c5:0a:6a:7d:1b:ae:c4:7e:4a:86:9d:bd:ea:
35:32:5d:54:9b:c3:5c:4a:15:15:d6:2c:f1:a9:91:ed:dc:ab:
8f:e0:41:35:20:ef:3f:2a:82:07:28:53:a2:56:af:ce:0e:99:
b7:18:bb:de:b9:22:c1:a9:36:7e:11:7b:83:fb:64:54:91:4f:
2e:c6:c2:d4:c5:c2:ab:f4:97:b9:9b:d8:d8:47:c2:95:97:ec:
7b:51:74:e1:e1:e1:fb:8a:11:f5:f5:4b:00:13:c9:c7:50:66:
2b:4b:26:f4:f0:b2:ce:a1:9e:6e:86:29:ac:0f:a8:75:de:d0:
6d:2a:ba:d2:1c:ff:61:fa:cb:f5:8b:53:1f:5f:f4:b2:ea:4d:
83:70:44:3d:39:95:04:c4:8a:8f:7a:bc:e4:46:12:81:2b:df:
f8:19:85:b6:0b:a3:c0:d8:75:bb:d2:93:5c:1b:80:96:7d:2b:
45:13:69:b7:b0:3c:fc:fa:77:f3:6d:da:57:b1:d5:b7:bc:03:
ca:c1:17:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 12:50:12 2024 by rpki-client on console.sobornost.net