Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/97pn5tkedl6B69WVhMuIA3y6pH0.roa
File: 97pn5tkedl6B69WVhMuIA3y6pH0.roa (raw, json)
Hash identifier: W3Anj3g0rZ+C/0TAoMoBpJfw9qrt/MwOI2Rj8J4FMOc=
Subject key identifier: F7:BA:67:E6:D9:1E:76:5E:81:EB:D5:95:84:CB:88:03:7C:BA:A4:7D
Certificate issuer: /CN=b30e3011a0fb3111fbe8493c1230974aef532704
Certificate serial: 0188A5E41502D539EC3F72CCE64673DDDD95
Authority key identifier: B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/97pn5tkedl6B69WVhMuIA3y6pH0.roa
Signing time: Sat 10 Jun 2023 15:19:28 +0000
ROA not before: Sat 10 Jun 2023 15:19:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203755
IP address blocks: 45.155.4.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a5:e4:15:02:d5:39:ec:3f:72:cc:e6:46:73:dd:dd:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30e3011a0fb3111fbe8493c1230974aef532704
Validity
Not Before: Jun 10 15:19:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7ba67e6d91e765e81ebd59584cb88037cbaa47d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:42:51:4e:d2:58:a2:02:b3:38:c7:21:42:40:
cf:cb:dd:05:8e:34:55:8b:9c:b9:1d:c9:4f:0c:50:
8a:ce:80:4d:df:1f:0a:fd:42:f3:79:d9:e4:68:21:
c2:39:84:b4:2d:96:e0:bb:65:d2:e7:07:9e:dc:b9:
ae:87:9e:c9:b5:72:63:f5:bb:b4:8b:8e:6e:e6:06:
55:0a:06:d7:04:9c:eb:7a:0f:56:96:24:37:90:a8:
85:c3:b6:42:86:2e:aa:5b:b2:df:be:2d:67:b0:80:
cf:35:69:85:3f:aa:c1:6d:6a:6f:0a:40:b7:6b:db:
13:9e:21:76:8f:25:27:57:ca:1b:d4:c1:a2:ff:ee:
e6:70:ee:c8:7b:fc:33:fe:97:ac:18:56:a9:cb:ab:
c9:45:4e:a1:04:98:66:08:20:92:2e:ec:d0:65:6e:
67:ff:da:3e:f0:4b:c0:92:0d:92:10:81:1a:b9:9d:
e8:15:88:bb:e6:34:76:ca:4e:cd:ad:fa:db:a6:61:
bf:9d:71:eb:db:50:8e:6a:98:b9:de:a1:1a:f6:c9:
1a:2d:d8:e8:e9:e0:41:0f:21:cc:f9:74:f3:87:29:
44:e7:18:bb:ae:dc:3a:aa:fc:d8:2b:e6:98:76:e7:
fc:96:e2:e7:57:a0:b5:bc:70:41:82:00:d8:ae:58:
5c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BA:67:E6:D9:1E:76:5E:81:EB:D5:95:84:CB:88:03:7C:BA:A4:7D
X509v3 Authority Key Identifier:
keyid:B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/97pn5tkedl6B69WVhMuIA3y6pH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.4.0/23
Signature Algorithm: sha256WithRSAEncryption
64:73:98:a8:e9:22:52:4e:db:0c:24:1d:f3:06:1b:10:c2:77:
6d:af:fd:fb:6d:00:03:c2:34:fb:fd:16:6b:6c:a5:60:02:33:
c1:85:8e:a2:e8:69:f9:67:a7:c6:e8:bd:d9:36:70:ae:2c:44:
8f:9d:bd:33:ca:44:30:40:91:6e:d9:30:c5:76:1e:d3:da:28:
34:78:9d:47:72:76:3b:84:28:9f:84:02:2a:6b:ca:eb:93:4c:
83:53:0a:4c:d9:8b:0b:34:ec:61:40:bc:48:7c:84:48:e4:88:
25:b3:48:e9:48:9c:07:dc:d9:5a:e5:4c:b6:5f:5e:37:9a:06:
84:e8:0a:f0:72:79:8c:c3:6d:87:dc:24:f1:af:8d:49:4e:a5:
34:6c:6b:63:63:da:89:41:b2:7c:7f:f0:27:37:c0:e5:a6:88:
17:2e:30:f3:45:a6:74:68:2b:d3:c7:82:15:65:1b:a8:bf:a0:
e2:da:68:35:a4:79:50:3c:b3:e2:8d:a5:ba:1d:df:fa:20:7a:
fd:d5:bf:b7:d9:29:39:9d:46:f7:c7:80:6f:a4:4d:e1:e1:2d:
ad:ae:6d:04:6f:b5:bb:54:ba:a5:61:d7:7d:c3:f7:1f:9b:16:
4d:80:47:ce:31:e8:5a:6d:13:c3:12:02:db:d5:25:7e:bd:f2:
9e:0e:e5:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:34 2024 by rpki-client on console-ams.rpki-client.org