Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/q3LBrzPOJzMPlS5r_3DpstyFuhc.roa
File: q3LBrzPOJzMPlS5r_3DpstyFuhc.roa (raw, json)
Hash identifier: XajsbqiE9EE3hl/1PFsbdZ3yd1+XQIQf+onC4zKfh7o=
Subject key identifier: AB:72:C1:AF:33:CE:27:33:0F:95:2E:6B:FF:70:E9:B2:DC:85:BA:17
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FB6481354B9B8F6D2DDF74C339CC3
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/q3LBrzPOJzMPlS5r_3DpstyFuhc.roa
Signing time: Tue 02 Jan 2024 04:30:13 +0000
ROA not before: Tue 02 Jan 2024 04:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211620
IP address blocks: 45.145.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 18:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:b6:48:13:54:b9:b8:f6:d2:dd:f7:4c:33:9c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab72c1af33ce27330f952e6bff70e9b2dc85ba17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:45:8a:21:ba:c4:ff:c0:73:b4:2b:07:5a:50:
db:80:3a:1a:25:74:2f:a4:fb:27:b2:bd:a9:5c:1e:
85:ac:70:bf:e1:3a:73:c1:1c:8c:11:9b:55:eb:13:
99:35:1b:4d:22:96:59:9b:77:dc:4e:c7:41:91:8d:
90:f3:6c:ac:b3:8a:35:51:18:e5:88:6b:cc:ad:38:
56:76:fa:ff:63:fb:32:66:7b:12:d1:63:d3:bb:bb:
8a:53:85:a5:e0:da:b3:35:12:40:1c:52:a1:e1:c6:
9f:52:cd:dd:40:c3:c9:9e:89:7f:2b:3e:15:fc:b4:
ab:fe:3b:a1:10:ee:a0:86:90:40:29:b1:92:1a:54:
5a:29:ea:c3:b0:6a:11:dd:93:60:f4:f2:84:6c:27:
83:24:4b:da:ec:d4:60:18:84:e1:9a:c7:a0:db:e8:
e9:14:a7:c8:9b:94:a9:28:68:98:69:73:18:e5:ad:
88:8c:67:79:27:62:cf:55:46:e5:89:43:7b:d0:a8:
a9:8a:53:3f:69:62:0f:e9:21:da:18:c9:fa:d6:05:
40:dd:06:4f:3c:1c:30:65:cb:31:c4:ea:7c:35:db:
a2:0c:af:55:0f:59:a2:df:4a:ff:ec:cb:f9:c8:e9:
9a:0e:20:78:3f:4b:d6:05:7d:31:dd:64:3d:ae:4c:
b8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:72:C1:AF:33:CE:27:33:0F:95:2E:6B:FF:70:E9:B2:DC:85:BA:17
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/q3LBrzPOJzMPlS5r_3DpstyFuhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.248.0/24
Signature Algorithm: sha256WithRSAEncryption
17:42:a2:b9:90:b9:ef:4e:76:bb:17:89:d7:2f:20:4c:e6:0e:
7d:90:09:d8:9c:a2:64:da:37:88:4c:57:9b:e0:a6:bb:83:6d:
03:8c:cd:3e:e8:04:59:30:eb:c3:b3:a8:f6:63:2e:1a:2d:b5:
39:7c:c2:65:07:8d:ad:d7:eb:76:65:25:4c:77:46:41:a4:e9:
f1:f2:20:a4:92:01:96:38:5c:77:0c:ce:02:31:43:e0:9d:bd:
2c:2d:ad:b5:16:69:dc:ff:3d:0c:4b:fe:2c:b1:2d:26:c1:e6:
c8:c6:80:c5:60:cd:ea:9f:24:5d:93:58:e3:32:c1:df:67:a9:
bb:3e:92:81:1f:af:7a:32:58:1e:37:19:6b:fe:a5:1b:18:18:
59:e2:95:f4:b2:34:b2:85:c8:33:41:72:70:cf:1c:9b:ff:c5:
d9:e8:0c:e8:12:dc:e2:19:eb:d5:2e:9a:6b:93:37:42:26:03:
13:5c:60:9b:d9:c1:b6:94:8d:1f:1e:03:f6:f3:59:1d:10:cc:
f0:cf:0b:c3:7c:d8:b8:a4:7b:ce:cb:56:64:60:46:d2:66:46:
19:66:71:80:70:3d:a5:27:df:31:cd:dd:6e:fe:19:d4:b6:e8:
41:ed:01:b0:50:97:2b:ca:cb:29:5d:76:8a:84:66:70:c2:86:
79:21:23:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 22:08:39 2024 by rpki-client on console-fra.rpki-client.org