Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/tKf-oRPfzEwNbIbQOI9onWomJHs.roa
File: tKf-oRPfzEwNbIbQOI9onWomJHs.roa (raw, json)
Hash identifier: ADw2w+uYC1+ictMqnx8cjio/XpouMpjvr0AlCfcNCWU=
Subject key identifier: B4:A7:FE:A1:13:DF:CC:4C:0D:6C:86:D0:38:8F:68:9D:6A:26:24:7B
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 0189BB92AB0B358FAD201BEFC6B2B8EBFB34
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/tKf-oRPfzEwNbIbQOI9onWomJHs.roa
Signing time: Thu 03 Aug 2023 13:24:58 +0000
ROA not before: Thu 03 Aug 2023 13:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 45.156.28.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 08:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:92:ab:0b:35:8f:ad:20:1b:ef:c6:b2:b8:eb:fb:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Aug 3 13:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a7fea113dfcc4c0d6c86d0388f689d6a26247b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7d:d7:9b:d6:98:8f:32:27:be:ee:c2:47:59:
b9:b9:dd:76:32:88:8e:c9:0a:ec:bf:59:28:c2:0d:
a5:75:6a:1b:69:93:ec:33:99:7e:f6:1f:fc:ca:46:
55:c9:ec:06:7e:9e:bc:31:11:58:ca:8c:59:08:6d:
6a:ca:56:ae:8d:67:70:dd:b6:13:e8:c6:ae:f8:56:
b6:b0:81:c1:98:7f:d3:9d:8a:61:10:cf:8f:99:31:
f4:d0:b8:b4:af:3a:5f:70:60:28:0b:a2:0a:a5:ad:
6f:77:dd:bc:b3:6e:c6:3c:c9:e3:d0:70:76:43:5c:
c1:7a:0b:ec:a3:af:a1:9b:5e:b3:ff:65:dd:f7:70:
75:67:43:19:dc:74:59:cf:ed:d3:76:85:3a:68:bd:
67:e6:a6:71:ae:74:da:2d:db:7f:70:e0:fc:6c:29:
a3:93:e5:b4:a7:2d:7a:66:92:31:30:0d:7a:6b:42:
56:db:4f:ef:db:2a:fe:be:f1:76:ad:29:37:ee:58:
43:07:19:e0:bb:56:03:09:21:b6:f6:fa:31:13:02:
5c:7c:7e:4d:85:f0:43:6c:81:ed:04:ec:81:04:12:
08:f9:4b:5c:48:b3:e7:cf:ed:1c:0a:4e:32:b6:04:
7e:ea:d8:1b:70:68:e7:91:c7:ad:9a:95:64:1f:66:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A7:FE:A1:13:DF:CC:4C:0D:6C:86:D0:38:8F:68:9D:6A:26:24:7B
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/tKf-oRPfzEwNbIbQOI9onWomJHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.6.0/24
45.156.28.0/24
Signature Algorithm: sha256WithRSAEncryption
76:bd:52:7e:37:5d:72:1c:08:65:3e:d9:28:65:03:68:cb:0a:
f6:0a:56:6c:59:45:86:97:c0:ef:7d:a2:88:a7:c8:7d:5c:53:
8f:0b:44:93:78:aa:67:e5:94:62:6f:08:0c:28:7a:71:ac:84:
fe:44:51:cc:ba:98:5c:50:2e:82:e8:c6:51:81:00:6f:ee:21:
32:18:4c:06:cc:11:51:68:ed:1c:1d:68:15:7c:34:23:63:61:
20:6c:a9:57:02:3a:b1:e7:60:29:de:1a:1a:16:f7:83:4d:8e:
5b:b0:d4:ec:65:a1:ee:92:86:c4:ff:b9:78:53:a2:04:d4:9f:
96:3d:de:2c:6e:59:fa:e4:bc:ef:ec:7c:d5:9a:1b:47:68:53:
b1:4c:5a:cb:09:e4:37:51:d7:e4:09:54:5f:a7:91:3d:2a:17:
ec:f8:a4:fc:ee:37:17:77:36:b5:cd:81:17:26:04:64:53:57:
ae:8b:9a:cd:84:2c:6d:9a:33:e6:fe:ff:67:0d:0c:6c:6a:04:
93:29:bf:1c:c4:4c:2e:de:ce:8c:08:fe:26:50:84:5e:74:02:
69:92:f5:31:86:19:e2:2a:e1:53:28:93:56:53:ac:0c:f1:4b:
19:7a:a1:66:9d:35:34:b9:c0:16:cd:a0:2a:0c:40:2c:d7:73:
73:40:13:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org