Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/36KvwQ_9Ji84cMWfoGiIuCfBV9A.roa
File: 36KvwQ_9Ji84cMWfoGiIuCfBV9A.roa (raw, json)
Hash identifier: OPzluAL5VTI6a9jErZok8+qOCt4nUZE5zZZ67B8JT40=
Subject key identifier: DF:A2:AF:C1:0F:FD:26:2F:38:70:C5:9F:A0:68:88:B8:27:C1:57:D0
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BEB3E7825EEFC33F221F17314CB664D4D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/36KvwQ_9Ji84cMWfoGiIuCfBV9A.roa
Signing time: Mon 20 Nov 2023 05:40:21 +0000
ROA not before: Mon 20 Nov 2023 05:40:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47436
IP address blocks: 45.81.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:eb:3e:78:25:ee:fc:33:f2:21:f1:73:14:cb:66:4d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 20 05:40:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfa2afc10ffd262f3870c59fa06888b827c157d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a4:a4:2c:59:72:15:77:ba:82:91:7c:9e:cf:
a5:71:08:d0:23:6f:8b:c2:a0:25:53:d9:ad:49:3a:
fd:91:23:55:ec:f3:9b:af:79:7c:02:61:48:52:45:
cc:ff:6f:aa:83:4c:2d:ed:64:22:c8:4a:18:0f:b1:
c2:cd:2d:73:e6:b7:57:28:ab:6f:34:cf:75:e3:49:
7f:50:67:30:7d:f5:40:37:94:03:9d:7c:61:4e:7c:
ef:6d:ad:e8:d9:99:af:c6:b0:6d:1a:29:c5:4f:a0:
13:fa:72:ee:91:2a:58:41:c3:80:0c:b1:16:21:d1:
20:d8:a7:46:9c:ce:2e:ef:83:c9:db:57:6d:5d:e7:
23:33:27:80:03:d0:41:cb:e0:63:f9:61:ca:fd:a2:
b0:ae:a7:a5:89:bb:2f:b1:35:e6:20:17:0a:69:0f:
95:60:aa:a6:7b:5d:33:b5:1c:6e:01:3b:92:59:87:
58:4a:8c:60:24:e2:dd:84:db:7e:c1:5b:a2:91:d1:
17:70:d3:26:49:91:80:ff:7d:13:8e:cd:95:b1:25:
02:4c:e8:c1:d1:ce:e0:00:d1:ae:3f:77:de:8b:d8:
54:66:1d:9c:0f:8e:26:72:b5:7c:0c:aa:62:82:c1:
4b:77:5c:cf:84:61:36:b1:03:1d:d2:c8:1c:70:e5:
91:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A2:AF:C1:0F:FD:26:2F:38:70:C5:9F:A0:68:88:B8:27:C1:57:D0
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/36KvwQ_9Ji84cMWfoGiIuCfBV9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.114.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a1:46:79:3d:67:06:90:74:31:de:9e:a9:ac:c7:5a:6b:ff:
6d:0d:1b:7c:6d:af:67:98:87:76:a9:04:ab:92:17:50:bd:fc:
5a:8f:ec:ac:c0:fa:df:f8:41:9a:84:f2:da:9d:75:31:dc:99:
bb:48:d0:2d:a7:e2:15:c1:1f:21:87:76:4f:46:3a:1c:a7:b8:
d0:e0:a1:cb:c0:e1:2a:c4:75:9e:b9:65:8b:3d:c6:f6:52:c4:
38:86:0a:23:2f:50:50:19:f4:96:e0:09:ea:fb:f1:54:b3:e0:
10:ce:c3:81:e2:71:e1:25:c5:b8:fb:89:20:37:bb:44:0d:1b:
9b:04:6c:76:be:f3:21:6a:61:53:32:64:7d:a5:d3:cf:d3:60:
f3:90:06:24:bf:f8:58:a8:ae:8b:bf:4b:e6:25:fa:39:d0:27:
f2:9d:c9:d8:be:ea:95:01:75:cd:b7:e5:0c:88:b8:0c:30:62:
9e:7d:12:45:f0:2f:aa:2f:01:f7:2f:a9:ce:e4:aa:8f:b3:f5:
c8:48:db:d1:05:5d:50:be:db:d1:f4:32:66:a5:e6:8b:45:4d:
2d:cf:cc:ff:88:49:f8:9b:87:43:5f:b9:1a:fa:78:72:45:f6:
f8:a2:8a:cb:b8:68:b5:75:64:9f:6d:90:7f:6e:92:89:04:06:
c2:dc:e2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org