Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1-l03mMc1x73qE6O4XossiDY9VGU.roa
File: 1-l03mMc1x73qE6O4XossiDY9VGU.roa (raw, json)
Hash identifier: Pck7UlzsIMXund8uI6jS7oFOFQwV8PDIIjSpP0+NINU=
Subject key identifier: FA:5D:37:98:C7:35:C7:BD:EA:13:A3:B8:5E:8B:2C:88:36:3D:54:65
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E32E823F477279A33348D81AE6088
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1-l03mMc1x73qE6O4XossiDY9VGU.roa
Signing time: Tue 02 Jan 2024 08:33:14 +0000
ROA not before: Tue 02 Jan 2024 08:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 45.142.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 20:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:32:e8:23:f4:77:27:9a:33:34:8d:81:ae:60:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa5d3798c735c7bdea13a3b85e8b2c88363d5465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:08:dc:da:85:38:e8:4d:00:fe:e4:bf:f8:b1:
b8:a4:c6:6e:bc:9c:18:15:a6:0a:2e:8a:2f:a1:3b:
35:1a:8d:ac:d4:e0:16:cf:eb:f1:50:cf:9a:70:8c:
70:45:49:5b:49:4f:28:86:26:cf:50:26:94:1b:54:
5c:bd:87:38:be:a5:f5:f7:21:9f:14:c5:ce:df:51:
01:be:3e:de:8a:a8:d6:37:02:b5:59:42:f0:48:29:
95:05:f5:aa:76:b2:8f:fc:fe:c1:96:7e:30:04:3e:
23:3e:91:94:fa:56:0f:53:99:8b:a6:f0:3f:b0:ad:
c4:2b:3b:b5:d1:31:64:c5:cb:94:06:79:03:8d:5a:
3c:c1:d6:f4:d2:42:88:83:e2:83:32:6e:e7:7f:ab:
9a:95:2e:31:e9:dc:08:48:ca:08:2f:d6:e8:40:68:
30:42:80:96:5f:d0:4a:91:67:fe:6c:2c:6b:87:57:
e4:8d:86:ee:ee:14:64:ea:e9:6f:ac:c3:60:0e:a3:
fb:f9:ed:d0:c8:29:24:d2:de:5e:1e:0a:0d:f7:d8:
4e:66:d3:eb:4e:c5:fb:79:7a:6d:3b:b6:0b:19:d8:
6a:fa:91:e6:a0:7e:bd:fe:b9:76:b7:3e:e7:c8:39:
ee:b6:38:b1:c5:af:cc:16:fd:dd:ad:38:1e:c4:d0:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:5D:37:98:C7:35:C7:BD:EA:13:A3:B8:5E:8B:2C:88:36:3D:54:65
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1-l03mMc1x73qE6O4XossiDY9VGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.106.0/24
Signature Algorithm: sha256WithRSAEncryption
23:81:b4:68:55:23:7f:f2:b2:30:2a:3d:7e:15:e3:78:92:0a:
b5:7b:15:73:94:fd:8f:b5:76:2a:16:39:82:45:bf:8b:42:33:
cc:43:21:9b:6e:14:a4:49:11:89:68:74:c1:75:45:d3:e8:31:
e2:fe:45:46:11:b4:23:0b:25:dc:e1:e5:00:9c:2c:19:07:a9:
3a:3c:dc:8a:39:86:4d:2c:c7:e2:99:7f:6e:c6:9e:89:6c:42:
da:64:84:d9:62:01:30:a1:fd:17:48:8a:d4:9b:ec:57:26:79:
48:c3:20:96:18:2a:d4:b8:5e:a2:86:46:c3:e8:d3:ff:3e:a1:
20:e8:68:4a:7b:26:1a:82:31:18:29:8b:89:33:a4:2f:5d:6b:
66:f2:6f:b0:10:c4:6e:fd:f0:a5:d1:9e:dd:e8:bb:70:0e:0e:
de:8b:f4:5f:fb:ac:a6:26:a4:eb:ab:e8:d4:2c:37:d1:30:5f:
de:2d:9b:d2:c9:dc:27:83:9a:70:d8:21:cf:18:a5:f7:a9:aa:
e2:b7:35:b7:e5:40:f7:32:d0:29:10:6a:a8:65:f7:c5:f1:73:
5f:07:51:44:71:bb:ad:d3:35:fe:cb:cc:86:74:49:90:3c:2c:
0b:67:54:7d:aa:41:ef:51:18:64:c8:5d:7d:9b:2c:e4:c8:67:
8d:39:20:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 22:36:58 2024 by rpki-client on console-fra.rpki-client.org