Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Q40Lyd3_oFMdG61iBgrJmQ6mup8.roa
File: Q40Lyd3_oFMdG61iBgrJmQ6mup8.roa (raw, json)
Hash identifier: 60Osfs6mNo5R4vcLY5RfU8izdogsv4Yt/2s2JYcSXp0=
Subject key identifier: 43:8D:0B:C9:DD:FF:A0:53:1D:1B:AD:62:06:0A:C9:99:0E:A6:BA:9F
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC7952A2F3182815026B73AE1E52C5D1C
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Q40Lyd3_oFMdG61iBgrJmQ6mup8.roa
Signing time: Tue 02 Jan 2024 00:31:30 +0000
ROA not before: Tue 02 Jan 2024 00:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207560
IP address blocks: 45.135.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 20:41:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:2a:2f:31:82:81:50:26:b7:3a:e1:e5:2c:5d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=438d0bc9ddffa0531d1bad62060ac9990ea6ba9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:7a:06:be:6f:31:f9:60:17:c2:2d:f6:6d:
c5:be:d8:71:34:71:be:08:70:1e:72:18:fb:c8:16:
0d:ac:3a:62:04:8d:82:da:69:d2:d6:b5:42:1e:15:
38:4a:d7:57:ca:2e:d0:93:bd:8b:79:4b:27:f4:a5:
33:bf:82:50:52:6d:61:8f:e2:d9:ed:39:35:dc:10:
1a:87:0c:fb:4d:28:38:b0:13:9b:d8:12:98:a4:89:
55:40:bc:f3:c9:1f:6e:2a:e9:9a:05:03:02:1e:fa:
8f:0a:86:09:99:ff:29:6f:2a:bf:06:c8:65:df:fe:
7f:18:9d:6a:4a:e8:c9:6d:b9:00:dc:09:82:3e:9b:
f8:7d:e3:94:b1:06:38:01:a8:e3:d1:49:c8:03:e7:
e9:ef:e6:d3:3c:23:6c:0f:f5:c8:89:95:0b:22:b8:
d9:a2:a5:af:1f:05:27:30:05:45:3a:a9:fa:8f:5c:
30:c3:40:d3:fb:55:64:1a:28:b5:39:55:ca:2b:80:
4c:27:52:5e:55:88:0a:28:89:f5:d9:a5:c6:1c:3a:
57:94:3e:9a:d0:68:8f:54:a1:fb:d2:48:4a:88:2d:
67:de:c7:0e:38:69:e1:8c:c0:89:18:19:23:dc:af:
f2:06:7d:f7:81:99:4b:5e:ed:3f:57:d3:2d:59:8b:
03:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8D:0B:C9:DD:FF:A0:53:1D:1B:AD:62:06:0A:C9:99:0E:A6:BA:9F
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Q40Lyd3_oFMdG61iBgrJmQ6mup8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.167.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3e:24:8b:a2:54:d0:91:02:cd:c9:06:85:fc:93:7c:c1:05:
23:5b:96:1d:bb:09:b4:8c:36:3b:95:44:be:c8:cf:5d:3d:55:
15:c9:bc:49:10:d5:b5:fd:9c:04:22:21:cf:36:79:a8:f4:c8:
c6:62:98:d6:03:83:94:f4:a2:b7:cf:36:a0:98:73:a8:bc:d7:
9f:c7:6f:18:5a:ad:4a:6a:77:06:97:f4:16:08:7a:8a:6d:b1:
26:c8:e3:cb:8b:3a:39:73:e9:f5:a2:b8:5e:13:cb:03:74:26:
63:5e:f9:e9:9c:37:41:f0:50:7a:91:54:b3:d0:3e:a7:fd:05:
cb:db:0d:01:2e:50:72:82:50:40:ea:c8:6b:df:fe:cf:d1:32:
fc:7a:45:9b:57:2b:dc:e7:2e:da:91:1f:80:1b:81:3a:68:21:
60:92:80:a5:80:85:8f:04:fe:62:05:55:78:9d:d5:30:8c:81:
a3:e3:17:e0:8e:5f:3e:df:48:ab:ca:4a:ca:28:41:4b:ea:d4:
65:30:89:52:68:0b:f0:55:eb:4a:74:c4:76:bb:17:7f:88:fd:
e8:4e:ed:88:88:c2:c8:00:d7:bf:df:b9:45:2c:40:17:a6:b1:
73:11:1b:55:44:7a:cc:9f:cb:92:74:cd:65:78:27:5b:c6:e9:
d9:2a:4d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org