Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/ElFdegaUStfl-3P-uezPqH4fgWw.roa
File: ElFdegaUStfl-3P-uezPqH4fgWw.roa (raw, json)
Hash identifier: Mnsc5Cv35/tpsHo/NYK0nyl+xjNrhLWXZOJWj1gfBLI=
Subject key identifier: 12:51:5D:7A:06:94:4A:D7:E5:FB:73:FE:B9:EC:CF:A8:7E:1F:81:6C
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 018D1620F10357AB9E08EAB641E736267F3C
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/ElFdegaUStfl-3P-uezPqH4fgWw.roa
Signing time: Wed 17 Jan 2024 06:34:34 +0000
ROA not before: Wed 17 Jan 2024 06:34:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36351
IP address blocks: 45.8.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 10:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:20:f1:03:57:ab:9e:08:ea:b6:41:e7:36:26:7f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Jan 17 06:34:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12515d7a06944ad7e5fb73feb9eccfa87e1f816c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:43:4f:91:8f:c1:a4:c4:d2:e0:e3:77:e8:95:
6f:d5:2a:57:1f:b6:30:95:85:3e:85:8a:7f:71:4f:
b9:7f:e2:f7:a7:ed:66:dc:73:f6:5c:9a:05:09:20:
91:07:6f:b9:b1:b6:ba:fd:4f:d4:70:75:0c:c2:fc:
fd:30:17:84:2e:a6:7a:88:a5:6d:1e:e6:ea:6d:11:
e3:bd:31:b3:89:ae:29:dc:08:4e:38:e3:ac:1f:66:
16:2d:14:e7:46:1e:3a:b3:d7:99:18:a7:5a:ed:77:
c2:10:59:97:53:87:53:6b:65:db:b1:ea:3b:b1:60:
b6:dc:5c:2d:9e:3d:d2:48:26:2e:93:53:9d:1d:33:
17:b2:c0:51:86:ff:0a:6f:d2:4c:32:14:88:4c:0e:
95:8b:e3:de:37:33:72:45:1c:80:d8:fa:ea:c5:30:
d4:f8:a0:93:4f:c1:da:fd:b1:60:14:01:84:01:f5:
c1:97:55:dd:ee:e1:bb:55:c2:bb:ae:13:2f:a4:20:
84:22:45:52:dd:21:5f:29:88:41:c4:06:5b:0c:0b:
48:26:f6:93:8b:53:99:ae:a2:57:48:d4:ff:fb:0d:
d4:33:39:94:92:aa:91:ba:b2:1e:d9:c9:97:a5:6c:
a9:96:fd:36:8a:dd:ad:d0:2b:ff:82:57:85:ca:ce:
72:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:51:5D:7A:06:94:4A:D7:E5:FB:73:FE:B9:EC:CF:A8:7E:1F:81:6C
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/ElFdegaUStfl-3P-uezPqH4fgWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.18.0/24
Signature Algorithm: sha256WithRSAEncryption
40:9a:aa:e2:9f:29:43:41:1e:0a:ec:60:01:12:f7:19:ef:44:
be:6b:6e:0a:fc:dc:91:77:34:86:28:8a:7c:92:bb:9c:4e:d1:
ec:c0:79:9a:92:49:a2:47:25:d6:85:3d:d0:25:54:df:27:09:
cb:a7:83:86:ca:09:ea:c2:01:2b:e1:ce:5e:85:13:2d:0f:75:
33:0a:ef:03:81:20:43:2b:c9:58:75:ea:fe:04:28:6b:e8:db:
e1:e7:b2:22:73:fc:94:60:f4:cf:fa:38:50:70:6a:20:04:67:
b8:36:27:a6:bc:12:86:40:6e:6b:66:15:63:cb:d9:cb:9c:f8:
ca:97:67:5b:86:a2:8c:f7:eb:8e:91:2c:a0:14:7b:db:2a:78:
73:ae:61:49:99:9e:fd:4a:b0:6b:01:dc:c3:3e:9d:07:1a:cf:
b6:08:5f:9f:da:0b:29:b4:c7:9e:dd:64:3f:af:b9:c3:4a:7b:
6c:a1:6f:78:e3:4a:83:e6:44:85:bc:69:ec:80:cb:e2:d7:cc:
65:28:bc:70:0f:1e:ee:a4:a8:74:4e:ae:7f:51:ea:6c:02:63:
f4:d5:86:4d:77:d3:20:09:25:1f:df:e7:6b:05:d5:6c:6a:62:
37:0e:7c:0f:ef:de:c6:db:1a:e3:e6:f4:09:73:d8:5c:41:29:
12:ca:c4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 10:45:17 2024 by rpki-client on console-fra.rpki-client.org