Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/oOJ5RnSxtOaGXBdQHd-C6FwjCFM.roa
File: oOJ5RnSxtOaGXBdQHd-C6FwjCFM.roa (raw, json)
Hash identifier: kud2gFjI/P1fwAfM1KmMmoaN+0Ipb+HygNsZwFfTjKA=
Subject key identifier: A0:E2:79:46:74:B1:B4:E6:86:5C:17:50:1D:DF:82:E8:5C:23:08:53
Certificate issuer: /CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Certificate serial: 0185704BC9486871A418726F51B404C634CB
Authority key identifier: 40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/oOJ5RnSxtOaGXBdQHd-C6FwjCFM.roa
Signing time: Mon 02 Jan 2023 02:24:52 +0000
ROA not before: Mon 02 Jan 2023 02:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.129.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:c9:48:68:71:a4:18:72:6f:51:b4:04:c6:34:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Validity
Not Before: Jan 2 02:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0e2794674b1b4e6865c17501ddf82e85c230853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b4:37:05:a2:38:45:ca:4a:f3:3c:8b:fc:6d:
e2:46:30:34:bb:e3:fd:1d:43:7d:10:e5:2b:77:0e:
a3:c1:1c:8b:2e:0b:19:7b:c3:b5:8e:55:42:aa:4d:
a6:05:58:e5:11:2c:8e:19:7c:8d:87:02:c1:7e:53:
c6:76:2a:65:2b:cf:81:be:ef:3d:b4:07:55:11:8b:
40:a7:76:ca:19:e4:d9:1a:61:6d:77:cc:93:fa:3f:
d5:0c:b2:37:5a:af:ba:6e:a6:f7:85:89:70:21:1e:
a3:97:16:3d:ff:72:9e:31:d9:60:e4:65:32:0a:40:
7e:5b:2d:ad:cd:9e:35:53:00:a9:17:32:af:7b:46:
af:76:b1:f5:b1:f1:0e:88:da:cf:b8:d2:79:00:2d:
be:a6:df:01:62:cd:ea:a8:4d:3e:46:d3:1f:11:b1:
b3:29:fc:88:01:79:fa:b1:a1:24:26:89:53:91:34:
26:4e:7a:3d:d7:25:c2:92:da:ea:21:5c:ea:00:81:
ad:12:3c:c6:72:02:b9:05:62:7e:20:07:d9:80:82:
67:60:2a:5c:b4:c9:ce:e9:a1:e1:9e:6b:99:5c:d5:
09:ef:ed:d9:e2:20:4d:6d:46:c2:67:a1:86:27:4f:
28:8d:1d:d7:a1:70:19:d4:6e:fb:78:58:3c:c0:5d:
36:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E2:79:46:74:B1:B4:E6:86:5C:17:50:1D:DF:82:E8:5C:23:08:53
X509v3 Authority Key Identifier:
keyid:40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/oOJ5RnSxtOaGXBdQHd-C6FwjCFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/QNVbeINqk_tvnsn6enntm4vqK6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.192.0/24
Signature Algorithm: sha256WithRSAEncryption
31:46:db:69:25:75:9b:92:c0:3b:30:59:1c:0a:bb:fa:1d:95:
37:cc:38:9b:22:66:fc:e5:9e:02:19:aa:2b:a1:4f:72:f0:d0:
73:40:b6:65:f1:41:3d:fd:34:28:16:17:70:b8:d6:06:5a:51:
a3:cb:54:20:73:5d:91:1a:57:6b:a8:a1:fe:3b:01:35:75:a4:
3a:cd:e6:39:de:71:72:b5:d9:78:14:98:e2:fa:78:16:43:de:
7b:6d:69:18:83:ad:98:88:4f:76:02:61:1d:65:e5:77:08:f0:
a9:51:b7:74:6b:c8:9a:cb:99:ab:22:de:98:ae:8e:48:68:c9:
34:c4:fa:60:24:2b:ae:1e:2a:1e:40:9b:a3:3e:c5:c5:e7:67:
b4:ac:44:00:3d:5a:45:34:67:43:d3:21:69:4b:f9:e6:00:d4:
26:b5:aa:31:d8:d5:0b:8d:91:97:e8:a5:b6:1b:07:7b:7d:85:
03:2b:58:da:fc:89:3a:c5:64:6c:6f:7a:02:af:b9:78:8f:5b:
6e:91:3b:60:5e:47:28:87:30:5c:5e:a9:5f:31:ec:c5:c6:5b:
f9:3a:37:a3:71:79:c7:7f:44:d4:2d:74:ef:84:5b:8d:e9:c3:
93:b1:43:88:13:27:41:95:06:df:26:08:2f:b8:a6:c3:09:fc:
de:b6:8f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org