Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c2QbCZF0jwgPpuW_oPhSy8qpwJM.roa
File: c2QbCZF0jwgPpuW_oPhSy8qpwJM.roa (raw, json)
Hash identifier: txplUOulJQVKq7F1r7Mpat7vGmbP2clvhvkO1FX3qzk=
Subject key identifier: 73:64:1B:09:91:74:8F:08:0F:A6:E5:BF:A0:F8:52:CB:CA:A9:C0:93
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0189060635427AA0F2F0AE9749A5DF2EEEBA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c2QbCZF0jwgPpuW_oPhSy8qpwJM.roa
Signing time: Thu 29 Jun 2023 07:20:17 +0000
ROA not before: Thu 29 Jun 2023 07:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397525
IP address blocks: 45.145.225.0/24 maxlen: 24
45.145.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:06:35:42:7a:a0:f2:f0:ae:97:49:a5:df:2e:ee:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jun 29 07:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73641b0991748f080fa6e5bfa0f852cbcaa9c093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c8:e3:aa:40:41:05:a8:c1:c8:11:be:55:42:
0b:5e:58:22:68:ba:11:9a:1b:f2:b0:36:a4:d0:0e:
ef:a7:6a:25:e3:0e:3a:d4:9b:ca:7b:14:c9:69:92:
aa:7c:59:68:01:8e:37:0a:f6:89:29:b3:16:40:b7:
f0:63:92:67:9a:37:57:01:65:fa:46:b4:6b:3e:8d:
ba:f1:95:ce:fe:c3:42:0b:77:10:7d:7e:71:66:cc:
3f:b4:66:6d:2d:35:d2:69:49:27:f8:05:23:f2:5f:
d7:77:5d:af:26:23:2a:8e:cd:20:c9:07:47:26:2a:
a0:ac:da:ac:f8:bd:ae:92:a3:f0:39:f7:8a:df:92:
1c:13:0d:92:3e:da:33:59:97:a0:64:dd:86:81:7f:
54:63:0e:f1:97:0e:16:ef:6c:54:e1:96:69:2b:53:
63:42:49:f4:44:b4:f3:54:30:c4:79:aa:4f:f7:d1:
af:99:de:02:9d:10:6b:90:a0:ef:95:85:42:e7:39:
09:b7:47:fd:5c:58:e1:6c:66:aa:be:b6:b3:44:c2:
03:1c:1d:e3:0b:bd:50:1a:0b:0a:b6:0d:da:12:77:
c1:02:b4:02:b2:ba:b9:68:fa:cf:07:00:6a:c6:6c:
eb:95:b7:39:32:ed:16:98:7b:41:f5:15:4a:92:65:
96:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:64:1B:09:91:74:8F:08:0F:A6:E5:BF:A0:F8:52:CB:CA:A9:C0:93
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c2QbCZF0jwgPpuW_oPhSy8qpwJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.224.0/23
Signature Algorithm: sha256WithRSAEncryption
33:eb:65:fe:fb:3b:51:b5:25:33:fa:3c:4b:8e:a5:d6:b0:61:
bf:18:72:19:04:9a:c4:20:e2:41:4d:09:5c:e2:0d:50:9a:50:
67:96:2c:09:85:e6:ff:66:74:23:62:d5:b7:75:e4:c7:90:8c:
99:01:d8:4f:a7:07:c0:26:72:f4:f7:e1:d4:0b:f1:ac:ce:08:
5a:18:9b:cd:d9:b9:3a:00:5d:1b:0b:b9:49:97:6b:93:40:c8:
9b:ec:d7:35:8c:d5:b5:16:2e:9d:07:08:77:5b:17:90:c7:fd:
1a:1a:e0:5a:b8:51:3a:e2:48:86:9c:6e:e7:fa:9d:a5:cc:8d:
09:29:72:70:ba:73:d0:07:5a:45:05:2c:67:d9:56:dc:5a:dc:
5a:f4:18:ef:6c:f7:14:5b:b5:85:4d:49:91:d9:78:ce:b2:73:
c7:69:1d:83:c9:7d:ae:2d:45:98:2d:c8:e1:b7:86:78:84:47:
ce:d7:38:34:88:58:5a:9b:dc:8f:4a:de:31:ce:cb:5f:e7:23:
22:5a:65:65:8e:41:97:cb:d9:97:72:8c:8f:b0:ae:b0:50:51:
00:9f:29:fb:d7:e9:cc:40:98:a3:27:be:a3:14:db:b8:ec:72:
8a:a8:41:59:99:45:46:b5:9d:5d:fb:39:be:18:0f:49:9e:ec:
69:80:8b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org