Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fzde1j05G8mFnZgTWV7LRZ_-4LI.roa
File: fzde1j05G8mFnZgTWV7LRZ_-4LI.roa (raw, json)
Hash identifier: sacLl4VwpxnJQEbgPV0bUSG0/7lkzCHODJtsg6Fdt5c=
Subject key identifier: 7F:37:5E:D6:3D:39:1B:C9:85:9D:98:13:59:5E:CB:45:9F:FE:E0:B2
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 018A6EAFDF12743C8683C3854FD4F265E156
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fzde1j05G8mFnZgTWV7LRZ_-4LI.roa
Signing time: Thu 07 Sep 2023 08:08:54 +0000
ROA not before: Thu 07 Sep 2023 08:08:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64080
IP address blocks: 45.43.64.0/24 maxlen: 24
45.43.68.0/22 maxlen: 24
45.43.65.0/24 maxlen: 24
45.43.84.0/23 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.100.0/22 maxlen: 24
198.105.109.0/24 maxlen: 24
198.105.108.0/24 maxlen: 24
198.105.111.0/24 maxlen: 24
89.33.6.0/23 maxlen: 24
155.254.48.0/23 maxlen: 24
107.181.132.0/23 maxlen: 24
107.181.128.0/22 maxlen: 22
107.181.140.0/22 maxlen: 24
107.181.152.0/24 maxlen: 24
107.181.148.0/23 maxlen: 24
107.181.154.0/24 maxlen: 24
107.181.153.0/24 maxlen: 24
2a05:9f46::/32 maxlen: 48
2a05:9f47::/32 maxlen: 48
2a07:9946::/32 maxlen: 48
2a05:9f40:1f::/48 maxlen: 48
2a05:9f44:2a05::/48 maxlen: 48
2a07:9947::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6e:af:df:12:74:3c:86:83:c3:85:4f:d4:f2:65:e1:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Sep 7 08:08:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f375ed63d391bc9859d9813595ecb459ffee0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:23:79:ca:3b:77:89:eb:08:d3:b7:c4:e5:
58:fb:35:29:df:79:f7:90:3a:6c:c3:9d:dc:cb:0e:
09:77:a7:89:b4:21:8b:6b:e2:32:e8:45:0f:97:be:
49:c2:b8:7c:00:c8:9a:08:c8:aa:37:85:e0:29:ec:
22:26:b9:d6:f7:74:7f:d5:18:d3:4e:27:f9:ef:40:
25:f5:f0:23:f6:b7:42:0d:77:3d:35:15:5b:5d:52:
27:91:77:67:df:af:33:4a:e8:a5:70:7f:50:56:31:
57:f7:d8:2c:3d:72:5c:c6:1f:c8:8c:32:97:49:1a:
c3:2d:ea:07:08:5e:1a:67:64:cf:5f:04:89:73:c2:
1f:3e:aa:1a:01:8d:0e:8a:b3:19:ed:f1:76:9c:86:
3f:07:d2:fe:7c:d1:a1:48:71:6f:04:a6:74:8d:d7:
96:73:a2:d2:71:d0:0d:66:63:38:1e:ec:6c:70:7f:
70:12:77:a4:67:0c:cf:26:06:25:9b:9b:10:21:8e:
f0:e5:98:34:f6:95:b5:34:7b:12:85:e7:92:ef:1c:
64:6c:9a:a6:4b:e7:21:8f:39:df:cf:a8:51:d0:94:
95:5c:e1:1d:be:aa:02:5b:21:e2:83:22:96:9b:94:
ee:f1:d4:de:2c:37:bb:c6:59:83:84:88:64:f1:46:
de:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:37:5E:D6:3D:39:1B:C9:85:9D:98:13:59:5E:CB:45:9F:FE:E0:B2
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fzde1j05G8mFnZgTWV7LRZ_-4LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/23
45.43.68.0/22
45.43.80.0-45.43.85.255
89.33.6.0/23
107.181.128.0-107.181.133.255
107.181.140.0/22
107.181.148.0/23
107.181.152.0-107.181.154.255
155.254.48.0/23
198.105.100.0/22
198.105.108.0/23
198.105.111.0/24
IPv6:
2a05:9f40:1f::/48
2a05:9f44:2a05::/48
2a05:9f46::/31
2a07:9946::/31
Signature Algorithm: sha256WithRSAEncryption
08:3b:b9:8c:de:72:3e:af:09:43:aa:51:e3:4f:34:22:53:06:
26:fd:da:fe:63:f0:6c:0e:e3:97:1c:79:9f:aa:e4:96:4a:4f:
81:cf:00:b4:a7:44:be:af:eb:5b:d6:1e:1d:28:52:09:11:a9:
18:23:40:a4:a3:5c:70:3d:5e:25:0b:16:c4:8f:7e:4f:4c:3f:
8f:dc:f1:38:9d:65:e8:b1:7a:f1:34:2b:90:7d:c3:51:1c:0a:
d3:46:fe:37:b3:7b:4e:80:d3:11:75:3e:6a:ca:25:f8:27:72:
21:6c:20:47:51:28:38:f4:18:0c:cb:52:02:a6:ec:5b:75:57:
c5:c3:22:cb:23:24:d7:76:b9:f7:db:de:da:79:e1:1b:85:fb:
11:da:05:84:6a:dc:94:ef:d9:47:52:1e:14:aa:df:4b:a4:12:
6a:fd:5a:68:27:b9:c7:be:43:f7:fd:b8:8d:28:12:bf:fa:ec:
4d:e0:51:6b:2d:f5:38:eb:ed:0d:5b:d6:64:5a:e9:3f:79:bf:
9b:c8:44:58:21:d1:24:c2:1b:9e:a3:73:92:d3:bb:99:54:22:
a0:1c:a8:8b:a6:7b:d0:f1:96:c8:ff:d5:fd:1c:d4:69:b4:96:
37:d5:62:b1:98:c3:c9:28:23:e6:53:d6:e7:b5:c6:90:89:03:
3f:32:03:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:08 2024 by rpki-client on console-fra.rpki-client.org