Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3815e3-d3a8-4b3c-a4b2-cb344f1800ed/1/lvpP_vMvhfQSxwMjU2FvmkqRjP4.roa
File: lvpP_vMvhfQSxwMjU2FvmkqRjP4.roa (raw, json)
Hash identifier: E6pD1iXOum9r2pFjHFq0IiiJ/+P5jrCpNZOwb51+830=
Subject key identifier: 96:FA:4F:FE:F3:2F:85:F4:12:C7:03:23:53:61:6F:9A:4A:91:8C:FE
Certificate issuer: /CN=d3d4e0da68c1446689419d103711b191ded567f4
Certificate serial: 018AB409841B122E977FF380B819ED3DFEA8
Authority key identifier: D3:D4:E0:DA:68:C1:44:66:89:41:9D:10:37:11:B1:91:DE:D5:67:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09Tg2mjBRGaJQZ0QNxGxkd7VZ_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3815e3-d3a8-4b3c-a4b2-cb344f1800ed/1/lvpP_vMvhfQSxwMjU2FvmkqRjP4.roa
Signing time: Wed 20 Sep 2023 19:20:37 +0000
ROA not before: Wed 20 Sep 2023 19:20:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3249
IP address blocks: 45.139.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 04:38:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b4:09:84:1b:12:2e:97:7f:f3:80:b8:19:ed:3d:fe:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d4e0da68c1446689419d103711b191ded567f4
Validity
Not Before: Sep 20 19:20:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96fa4ffef32f85f412c7032353616f9a4a918cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c8:1f:ec:0c:f2:91:9a:90:8e:99:8e:db:1c:
8c:d7:94:a7:0b:b9:62:b5:cf:40:75:2f:4a:b1:40:
0d:b5:23:b2:65:9a:f7:06:db:1d:95:d1:da:ef:0f:
9d:6c:8a:e0:10:0f:4f:f8:42:d7:28:3f:2f:f6:96:
57:2e:1a:e4:18:01:b9:55:f2:44:ad:0b:44:62:ee:
73:5d:a3:a8:b8:b1:af:fc:f9:c9:ac:89:0a:fe:e8:
56:90:54:b6:b1:f8:35:99:f9:23:59:6d:c7:19:e4:
84:3c:f7:3e:ea:87:59:e5:16:83:87:08:b9:eb:55:
7b:00:86:80:aa:b4:20:26:bd:1f:60:7b:bc:cb:d9:
66:70:d3:0d:0b:61:ab:74:a8:73:a3:b9:79:0e:2d:
5a:59:85:a9:ee:6d:bf:30:38:4b:37:65:c0:87:00:
a7:de:6c:37:c1:d8:c9:20:b5:f8:be:d6:c2:4b:12:
22:77:9e:12:ad:9c:2d:86:f1:04:33:dd:bd:3a:61:
a7:02:af:9c:5a:94:87:7a:84:64:76:dd:5c:3d:57:
da:87:5c:39:11:80:14:d7:2b:d5:ce:d7:cc:88:a9:
b1:d4:a9:e0:60:a3:c6:96:30:73:46:b0:db:17:c8:
d6:66:13:ce:d4:be:0e:a8:2f:56:97:e2:cf:52:97:
2f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FA:4F:FE:F3:2F:85:F4:12:C7:03:23:53:61:6F:9A:4A:91:8C:FE
X509v3 Authority Key Identifier:
keyid:D3:D4:E0:DA:68:C1:44:66:89:41:9D:10:37:11:B1:91:DE:D5:67:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09Tg2mjBRGaJQZ0QNxGxkd7VZ_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3815e3-d3a8-4b3c-a4b2-cb344f1800ed/1/lvpP_vMvhfQSxwMjU2FvmkqRjP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3815e3-d3a8-4b3c-a4b2-cb344f1800ed/1/09Tg2mjBRGaJQZ0QNxGxkd7VZ_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c6:4b:3a:ec:4b:2c:3f:45:ad:ec:83:38:03:4f:9b:02:3b:
d6:3a:66:b4:79:b0:45:22:82:29:9c:de:cc:f5:5b:98:20:74:
f9:9d:a7:e3:6f:fa:2b:2a:a8:68:29:50:54:a9:b6:f2:0f:33:
f6:df:fa:3d:af:5d:3e:68:03:b0:3b:d9:d4:29:bc:63:c6:e6:
4c:c8:9b:4e:b9:be:10:93:9e:e8:e1:be:0c:b3:3e:de:f0:e9:
dc:82:6f:a0:d4:5f:fd:ff:b6:35:a8:84:15:0a:d2:9c:11:e9:
f5:cb:f2:b9:1b:60:8c:03:b1:b0:06:26:1b:50:5a:32:28:84:
74:e5:8a:64:33:1a:da:8b:31:af:da:85:f4:e2:c4:12:cf:32:
e3:63:06:93:a7:f1:9b:ec:f2:b5:a0:11:d3:b9:b8:44:fc:f8:
08:3c:17:2c:db:fa:bb:46:5c:85:e1:eb:1f:f7:55:d3:de:c0:
85:0d:31:f1:73:4e:52:a3:b7:cd:97:e0:c6:c5:3c:51:94:09:
56:65:49:43:12:4b:fe:0b:01:82:c5:83:12:73:5f:23:32:9b:
fb:0d:c4:42:c6:30:03:c9:72:f5:b3:07:3f:b9:80:35:50:ab:
51:f7:d0:7e:e4:80:16:41:31:f0:7c:d5:fe:b3:40:41:00:db:
01:d7:62:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:05 2024 by rpki-client on console-fra.rpki-client.org