Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/oOvLXAUVYR0LeDzNCjHtyf45WCg.roa
File: oOvLXAUVYR0LeDzNCjHtyf45WCg.roa (raw, json)
Hash identifier: qfTlrVIJJzT5gNyODsIbLMzWy6Hyv1poe4Za/KgF68M=
Subject key identifier: A0:EB:CB:5C:05:15:61:1D:0B:78:3C:CD:0A:31:ED:C9:FE:39:58:28
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 018CC72752C0E33D82A110EC9CA933CAD421
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/oOvLXAUVYR0LeDzNCjHtyf45WCg.roa
Signing time: Mon 01 Jan 2024 22:31:32 +0000
ROA not before: Mon 01 Jan 2024 22:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54252
IP address blocks: 45.95.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 20:59:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:52:c0:e3:3d:82:a1:10:ec:9c:a9:33:ca:d4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jan 1 22:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0ebcb5c0515611d0b783ccd0a31edc9fe395828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4a:e8:63:56:02:dc:c2:40:50:44:e9:96:42:
4d:18:30:08:e2:42:c6:02:c5:1a:a0:db:d8:d3:54:
6a:44:5d:d2:c5:84:f2:63:6c:0e:28:b1:91:fd:d0:
21:3c:b6:06:00:be:43:0c:fa:07:73:bb:71:76:3b:
57:ca:05:8f:be:eb:d1:17:64:fb:35:d6:d4:a5:45:
95:67:6c:b3:69:1f:76:d7:65:60:02:2c:62:36:12:
75:00:e0:c7:7c:08:2c:fb:a8:76:5f:b0:6c:37:29:
cd:24:e8:e5:c7:4f:38:26:e4:c4:32:73:bb:d1:ff:
62:52:fb:a3:31:a4:fc:7e:d7:8c:e8:a7:e3:47:4c:
df:9c:07:ce:5b:23:30:c1:05:f4:2d:e1:81:93:12:
d8:83:38:a6:13:81:83:db:9e:84:c4:bd:b2:70:6b:
51:20:69:f8:e6:00:3d:38:0a:a8:ba:3e:22:7e:85:
8b:6f:3f:81:a3:8d:55:72:53:53:04:41:f0:9f:d0:
ed:cd:67:18:49:83:b2:af:87:b5:2f:ef:8e:a6:22:
2a:f8:5b:ee:d1:c6:5d:38:ea:18:02:37:c4:85:04:
5e:7a:6f:42:c4:b8:f5:b0:c1:c0:f4:47:25:c1:ca:
d2:94:f6:01:72:b6:3a:9f:12:fb:c2:30:24:10:59:
f0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:EB:CB:5C:05:15:61:1D:0B:78:3C:CD:0A:31:ED:C9:FE:39:58:28
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/oOvLXAUVYR0LeDzNCjHtyf45WCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
18:fe:55:15:9c:78:57:91:0d:12:37:60:ad:44:44:e2:e8:73:
58:11:b5:5e:6c:a6:a0:31:f5:fb:cd:af:b8:0b:10:da:b5:0e:
1e:f3:25:bd:65:7c:e3:c4:65:8b:b0:4a:53:8c:09:a9:3f:ea:
eb:4c:6c:01:2f:a8:ed:de:45:36:8a:bd:76:80:fe:2e:8d:03:
85:4e:57:23:fd:1b:ae:17:21:29:6e:e3:10:ec:9f:41:77:48:
06:c6:56:8b:5a:7a:26:d2:72:20:68:e6:c8:40:ba:71:97:99:
f9:e5:32:6c:03:7a:a0:19:0c:4f:d9:41:e2:1c:56:0b:84:69:
7e:e9:6f:c3:3f:e0:d3:97:18:81:5f:e7:c7:5e:aa:b1:61:0b:
a0:9c:a8:f2:16:47:c8:8d:11:e4:49:84:c7:6b:12:bb:f2:3d:
d8:bb:44:89:9e:3a:11:6a:02:0b:ba:b5:4c:60:d8:e0:b3:e0:
ed:2f:e1:c7:13:a0:f1:45:5b:0f:fc:62:b7:0b:41:ff:97:a9:
a3:65:4a:33:41:1a:f9:91:6e:88:57:e9:d3:e2:fa:6c:34:c7:
ea:5f:b0:1f:d1:c8:2a:d4:e6:48:39:69:78:ca:97:de:cb:c4:
10:17:8e:81:9b:af:16:4f:00:f9:28:e8:45:bb:c3:18:a7:ac:
7e:cd:16:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org