Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/pyKDn8s95f4QvNaWUdNohWYLtdQ.roa
File: pyKDn8s95f4QvNaWUdNohWYLtdQ.roa (raw, json)
Hash identifier: uV4p1lJbmvOK2mvWlau5HnWQmSWlzsdqBKoetCQ/slc=
Subject key identifier: A7:22:83:9F:CB:3D:E5:FE:10:BC:D6:96:51:D3:68:85:66:0B:B5:D4
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 01857094F9AEB842227FF501FC6D9280CBC2
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/pyKDn8s95f4QvNaWUdNohWYLtdQ.roa
Signing time: Mon 02 Jan 2023 03:44:49 +0000
ROA not before: Mon 02 Jan 2023 03:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208130
IP address blocks: 45.155.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:f9:ae:b8:42:22:7f:f5:01:fc:6d:92:80:cb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Jan 2 03:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a722839fcb3de5fe10bcd69651d36885660bb5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:72:2c:7f:92:f8:c9:59:b2:68:e4:b3:60:ab:
be:dc:02:d0:2e:bd:bb:75:5c:e9:a1:d6:88:5f:67:
72:17:ac:15:9f:df:e2:04:5b:05:36:5d:07:36:aa:
cf:25:12:c8:bc:06:c6:72:27:7f:50:d3:96:0e:10:
e7:38:41:55:20:71:ef:d4:76:4c:ac:6d:13:e1:f4:
df:e7:f4:f1:ad:dc:6f:fe:29:df:a1:30:f2:2c:7a:
1c:8c:5f:d6:b8:ef:d7:c7:c4:03:84:5c:b8:3e:e1:
02:d3:3b:58:d1:b2:0d:53:5d:0c:82:2b:fb:ec:e6:
a8:57:28:ff:79:f0:df:0f:7d:77:9e:e9:4a:f0:ae:
7f:53:9b:98:26:6d:8a:ae:d3:1c:e3:4f:d8:a4:f3:
4d:a8:48:84:a6:f5:d4:cb:72:99:fc:2d:24:0f:f0:
b6:bd:f5:b3:ac:e0:6b:13:ef:4a:2a:2c:11:d6:af:
f5:37:1a:b6:47:29:02:66:56:5b:60:a9:a9:d7:bc:
f8:29:3b:6d:bb:5e:a7:97:82:93:be:1e:b4:dd:4b:
aa:4e:94:da:1c:6d:87:d4:be:6e:fc:46:3a:cc:8d:
41:79:e5:f3:31:c5:5e:84:0f:b7:58:d5:df:31:54:
1e:b1:06:2f:41:36:19:2c:83:cb:9a:e8:3f:9d:cd:
1f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:22:83:9F:CB:3D:E5:FE:10:BC:D6:96:51:D3:68:85:66:0B:B5:D4
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/pyKDn8s95f4QvNaWUdNohWYLtdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.20.0/24
Signature Algorithm: sha256WithRSAEncryption
91:86:25:c0:83:c2:cd:4c:b8:1d:85:c1:8f:f1:81:2a:47:6f:
cf:41:e0:e2:37:07:d1:d5:e7:e6:b5:34:91:50:03:04:bb:35:
81:b0:c7:e1:ac:ad:06:c7:a2:77:fa:b3:b1:85:09:a4:c1:64:
43:55:0a:59:d7:02:17:24:11:58:03:da:5e:50:16:49:b0:fa:
f8:f0:13:da:d2:53:05:f3:54:a6:f4:a3:60:9f:84:60:2a:0d:
7b:4e:3e:97:3c:12:e1:36:49:9e:93:63:37:22:3c:6e:54:e2:
c3:63:09:ac:02:2a:92:3d:ab:41:cb:aa:e4:4a:a0:69:1d:4c:
6d:9a:5f:51:22:01:c7:14:02:11:73:a1:d7:9c:89:fc:33:8a:
7b:9c:6e:e9:0d:e5:1a:74:c1:cb:62:b9:4a:63:36:26:9b:8d:
56:b3:f1:ef:c2:cb:4a:ea:1f:2f:aa:ac:06:8e:8c:d1:13:30:
e2:3f:e5:ac:13:75:65:b0:65:ca:01:40:37:25:1f:c3:91:57:
6e:f3:42:f7:b0:3d:b3:e2:0e:1e:96:fd:fd:5a:31:76:fc:3c:
36:dd:26:cc:72:1f:8d:01:0f:73:e6:0b:1c:9f:a0:6f:a8:1c:
d8:d9:bb:a2:47:90:e0:89:ff:fe:3e:15:4f:9e:8a:87:f3:38:
42:f0:e9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org