Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/P1lVEbYpOgHfmxGyJaxId50jj6A.roa
File: P1lVEbYpOgHfmxGyJaxId50jj6A.roa (raw, json)
Hash identifier: 3uRQ6YlrAgrtCzlmLl1SNUoZd9Fpb+6lhCaDGA5c+bc=
Subject key identifier: 3F:59:55:11:B6:29:3A:01:DF:9B:11:B2:25:AC:48:77:9D:23:8F:A0
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B203EE9AD30B073E5A267D9266495582F
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/P1lVEbYpOgHfmxGyJaxId50jj6A.roa
Signing time: Wed 11 Oct 2023 19:37:55 +0000
ROA not before: Wed 11 Oct 2023 19:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205663
IP address blocks: 45.138.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 21:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:3e:e9:ad:30:b0:73:e5:a2:67:d9:26:64:95:58:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 11 19:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f595511b6293a01df9b11b225ac48779d238fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:59:82:a2:aa:ea:1a:e0:70:58:88:76:57:ee:
c1:7e:31:1e:8c:9b:f6:0b:0f:0f:2f:86:e6:e9:e3:
53:4a:94:48:d6:7a:24:b1:b7:a9:bf:99:4b:9e:26:
dd:fb:cd:28:66:8d:62:ec:b5:55:a2:11:c0:70:9c:
d5:f4:36:88:07:a3:27:8f:0f:aa:4c:56:d0:16:58:
8d:e9:34:2e:f3:35:82:3f:72:74:0a:e9:de:55:bb:
85:d3:c9:c9:1b:a7:e4:ce:ec:1a:71:94:e3:9f:09:
1c:21:1b:b4:fd:4e:75:eb:a5:6d:f7:8e:0d:0d:81:
7f:4b:20:f7:14:4f:b6:b0:6d:57:2f:d2:9b:98:1b:
f6:fd:91:a4:55:16:9d:01:d1:8f:95:16:57:b5:5b:
64:da:39:f0:2d:89:74:96:08:1b:33:42:3a:92:66:
83:67:ea:c0:91:41:2e:cb:5b:57:3a:20:47:89:bf:
b9:ff:04:61:f0:86:a6:10:d2:71:18:9c:2b:ad:65:
cb:92:bf:ae:63:7e:9f:2e:6c:c6:27:f9:a2:b4:3d:
d2:d2:4a:44:6f:b2:3b:1a:12:a5:68:8f:46:9c:fb:
91:9d:8b:b8:fb:3b:d9:79:08:19:f0:6c:41:d0:20:
e4:3b:1b:2a:65:58:d1:ec:53:49:de:13:d3:25:7c:
ea:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:59:55:11:B6:29:3A:01:DF:9B:11:B2:25:AC:48:77:9D:23:8F:A0
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/P1lVEbYpOgHfmxGyJaxId50jj6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.180.0/24
Signature Algorithm: sha256WithRSAEncryption
76:40:db:ce:e8:2b:7e:13:e7:28:f9:3d:12:52:b8:a4:c1:92:
e9:83:bc:4b:9d:bd:e5:5b:cd:4a:87:ca:1a:97:e8:22:b3:08:
59:e2:6b:5f:32:dc:0a:1f:84:d9:ae:05:c4:eb:31:05:67:90:
5d:8f:8d:3a:88:71:17:57:28:f0:ee:2e:e8:f9:23:8a:90:c3:
df:bc:9c:38:f6:6e:88:19:0f:3c:44:8d:42:38:c9:53:5e:78:
65:ef:c3:8d:3c:3b:12:e2:b9:6f:0d:e1:ba:a8:e8:f1:35:2e:
e8:8b:93:05:75:56:a5:cc:91:ba:e9:41:56:c9:8d:80:16:ef:
14:68:dc:d4:ba:fd:a8:cd:b2:10:7e:9c:f6:6d:e7:3c:27:81:
1c:72:ba:c5:ad:be:0c:bc:c0:b9:6f:3c:96:1b:6c:54:10:0d:
ca:ca:e7:cf:5f:d7:7f:9a:17:44:ef:b8:71:c8:cb:a7:fc:05:
3e:8c:0a:49:ca:c7:66:77:8e:0f:b4:38:3d:e5:4b:07:fa:82:
dd:a2:a4:4b:8d:8f:90:c3:97:0e:6c:27:0d:37:fb:e1:da:4d:
6d:6e:73:d5:0d:ef:fa:1f:6b:64:ae:b3:e2:ef:2a:4f:4e:47:
02:58:fa:ca:71:f1:db:3d:a0:77:88:cb:fd:c6:8a:e9:3b:e6:
95:12:8c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org