Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oeeF2qIjk1WJSQ9Io8o6xE3m88k.roa
File: oeeF2qIjk1WJSQ9Io8o6xE3m88k.roa (raw, json)
Hash identifier: 7Pf4yDoI481zTrvM3TU6Bq1381yew1BJNp5axDm3foo=
Subject key identifier: A1:E7:85:DA:A2:23:93:55:89:49:0F:48:A3:CA:3A:C4:4D:E6:F3:C9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCF60C4BDF0FCBD2532E92CF032477
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oeeF2qIjk1WJSQ9Io8o6xE3m88k.roa
Signing time: Tue 02 Jan 2024 06:29:33 +0000
ROA not before: Tue 02 Jan 2024 06:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61135
IP address blocks: 45.151.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 11:12:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:f6:0c:4b:df:0f:cb:d2:53:2e:92:cf:03:24:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1e785daa223935589490f48a3ca3ac44de6f3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:6f:39:99:9f:95:3d:ca:93:86:4e:d8:f9:
d6:c1:7c:16:80:73:c2:df:0f:bb:f4:7f:46:1c:9f:
46:cf:ba:ec:d9:fd:47:41:38:49:89:39:54:a5:ff:
3f:a6:e7:20:f1:a3:e2:79:7b:91:9b:c5:a8:ed:96:
e1:1a:ef:a8:c6:9a:e6:7a:21:a9:14:50:5c:b2:d0:
a2:0e:bf:88:6e:bc:25:c2:b3:34:4f:d3:b7:3a:6c:
6d:e6:1b:f3:10:fb:07:37:1a:a8:dd:7f:e3:31:20:
00:62:12:c5:eb:cc:1d:f9:2d:05:a8:03:17:97:bd:
58:92:5d:cd:f2:1a:83:8c:4a:67:84:13:22:23:e0:
95:eb:2b:7b:ab:c2:99:e1:70:22:a4:13:a7:06:c9:
91:77:2b:fa:13:24:39:87:db:c1:29:6c:94:b3:41:
9e:34:99:99:5a:fc:43:eb:11:3b:97:84:3c:51:8f:
0f:aa:01:4d:19:09:de:67:84:25:9f:03:7c:d6:a3:
fd:fe:47:73:b0:96:e4:70:8e:08:86:60:d8:51:23:
a5:c2:ed:73:d8:b8:18:00:b6:28:58:48:1e:9c:42:
f1:85:46:62:6d:b7:36:01:e7:81:bf:25:ef:c9:cb:
92:9f:1f:ec:3c:46:cf:61:02:07:a6:21:e3:97:57:
5e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E7:85:DA:A2:23:93:55:89:49:0F:48:A3:CA:3A:C4:4D:E6:F3:C9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oeeF2qIjk1WJSQ9Io8o6xE3m88k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.91.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:db:ba:c5:d7:d2:e3:3e:70:44:84:94:7d:87:78:d3:b3:3e:
2e:97:9f:d4:42:4f:f0:4b:c0:ce:85:87:4e:f6:ab:82:44:aa:
6d:d0:2c:79:2f:2c:af:44:e0:9a:f9:1c:e5:c2:9d:94:8c:de:
63:a4:74:e6:30:11:eb:9d:5a:4d:bb:08:d0:72:83:4c:16:c0:
fe:5f:73:ed:5e:30:30:71:4f:e0:b6:2f:08:b3:18:e4:b9:52:
36:56:1d:54:67:cf:44:44:3a:b0:e4:54:26:22:db:28:59:5f:
d6:8e:4a:ea:ff:d2:a1:d7:f0:50:48:c6:f0:c3:f6:69:37:5d:
0a:9d:05:e5:08:56:6a:57:04:59:e0:37:68:79:75:d2:e5:5c:
69:40:b9:06:25:c3:6e:a2:87:34:15:64:cd:25:39:5b:72:36:
89:6b:1c:d1:bc:d0:db:17:df:21:15:1d:af:31:f5:a4:cb:f2:
51:0b:6f:c8:12:f9:38:57:c3:15:e3:20:a7:0a:ff:9f:87:70:
22:f3:52:99:22:b0:f1:be:cd:a5:4a:b0:60:8e:4f:71:25:1b:
0f:74:1c:a8:80:b8:bb:cf:ec:fb:fb:9e:5c:bc:03:31:90:05:
d8:c5:b1:b7:15:fd:bb:3c:ca:0f:84:e5:a5:e2:89:c1:e2:d4:
e2:fe:a8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 16:26:09 2024 by rpki-client on console-ams.rpki-client.org