Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DRjnTDljhfR7MGkRrpjunEWp8oQ.roa
File: DRjnTDljhfR7MGkRrpjunEWp8oQ.roa (raw, json)
Hash identifier: vAmUK51tLRzxwC0WPgEDFFOdo9iUN1oe5T4vt11TrRU=
Subject key identifier: 0D:18:E7:4C:39:63:85:F4:7B:30:69:11:AE:98:EE:9C:45:A9:F2:84
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E2E94D9DE1A61038F14D92164A943
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DRjnTDljhfR7MGkRrpjunEWp8oQ.roa
Signing time: Tue 02 Jan 2024 08:33:13 +0000
ROA not before: Tue 02 Jan 2024 08:33:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24961
IP address blocks: 37.221.95.0/24 maxlen: 24
45.151.59.0/24 maxlen: 24
45.145.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 04:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:2e:94:d9:de:1a:61:03:8f:14:d9:21:64:a9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d18e74c396385f47b306911ae98ee9c45a9f284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b5:89:8b:8b:43:07:e2:27:13:e0:2c:3d:59:
7a:d7:1f:54:1b:e0:29:c1:2b:e6:a9:b1:e7:8f:be:
52:3c:f2:7c:2d:fe:46:30:ad:09:44:7d:3a:bc:b7:
9b:60:57:9d:7a:9d:a1:1e:bf:09:35:8d:64:65:2a:
9f:32:b1:b0:33:30:42:63:ec:44:04:6e:b8:53:ae:
a3:3f:60:ea:7a:65:f8:83:53:af:94:dd:ae:a6:1f:
51:08:73:e9:69:81:a3:76:22:09:15:a3:96:7d:50:
04:c8:71:91:5b:ab:eb:19:11:7f:cf:b4:b7:58:8d:
f7:6f:a8:2b:58:78:6a:fd:5b:4f:58:85:1c:cb:e3:
8b:00:fe:3f:c4:b0:a4:6f:d6:ee:79:c4:2c:f0:9c:
9a:5f:b3:8e:e5:02:c6:03:e8:ff:ad:0d:72:81:7b:
ca:21:72:cb:af:8b:fe:36:d9:e9:ad:82:92:1f:b2:
90:4d:dc:02:9f:e2:c8:79:71:9e:70:bf:5a:b4:95:
f7:88:a9:00:20:ac:f1:fb:a4:be:39:2a:c1:e5:0a:
95:3f:0a:fb:3a:ed:4a:ac:2f:2d:8a:88:e3:44:4e:
30:b2:8a:8a:bd:f7:0a:c6:e6:56:f5:6c:33:54:d0:
9b:93:20:6d:1b:fe:eb:1f:c3:39:e8:6e:8c:b5:2c:
82:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:18:E7:4C:39:63:85:F4:7B:30:69:11:AE:98:EE:9C:45:A9:F2:84
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DRjnTDljhfR7MGkRrpjunEWp8oQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.95.0/24
45.145.226.0/24
45.151.59.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:8f:35:12:91:17:8c:81:6f:f3:57:ad:29:48:e8:2c:25:e8:
9c:09:a5:24:8f:cd:23:d3:66:63:43:bd:0b:49:4d:81:e6:65:
e3:b0:95:06:ac:08:b9:bf:62:6f:61:c1:0a:40:5d:67:0f:54:
a7:cf:9c:7a:53:8f:ce:22:7c:ee:06:93:20:c5:46:9c:a0:55:
34:2a:21:ed:22:4a:69:cc:b9:38:da:f0:fa:60:08:84:9b:e5:
4a:4d:68:ed:0f:25:e7:de:23:27:c8:08:38:3a:4e:0b:c6:97:
d9:76:26:c7:27:52:12:cb:11:be:7e:a5:f9:75:c8:c8:1f:2f:
61:91:3d:c6:d3:9b:7c:09:41:5f:34:e3:8f:cd:90:e7:0a:3d:
ea:77:25:ba:4e:ef:2c:89:be:7c:aa:97:55:7d:74:e2:e0:a3:
a8:34:75:ae:a7:68:0a:07:1a:32:62:66:ad:f6:95:e0:6a:87:
1d:50:5b:1f:0c:fd:52:7d:3c:41:0e:9f:5e:f4:20:13:df:32:
04:d2:e1:da:bc:92:0d:c5:c8:f0:47:0c:21:13:66:ae:18:6b:
40:5d:af:d7:d8:07:db:a7:b8:bd:50:b9:96:7c:e1:40:1c:01:
0e:f3:e3:b0:21:a3:48:84:f1:85:8a:e6:08:c5:41:cd:16:25:
62:77:95:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 8 06:12:15 2024 by rpki-client on console-ams.rpki-client.org