Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/ahJhb_bx9oLPoOaQCSRwqA9OTjE.roa
File: ahJhb_bx9oLPoOaQCSRwqA9OTjE.roa (raw, json)
Hash identifier: qBk/2W+U5nIryMoOA4PubBAtjJKJv5/HHB0dmFBhDvM=
Subject key identifier: 6A:12:61:6F:F6:F1:F6:82:CF:A0:E6:90:09:24:70:A8:0F:4E:4E:31
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 018B046584A18647F382A1504BE0A9D849F8
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/ahJhb_bx9oLPoOaQCSRwqA9OTjE.roa
Signing time: Fri 06 Oct 2023 09:50:43 +0000
ROA not before: Fri 06 Oct 2023 09:50:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.15.106.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:65:84:a1:86:47:f3:82:a1:50:4b:e0:a9:d8:49:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Oct 6 09:50:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a12616ff6f1f682cfa0e690092470a80f4e4e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b2:d7:9e:d9:f0:45:61:6f:94:f7:d5:d1:fa:
3e:90:e1:ba:7f:17:67:ab:73:e6:71:4f:10:5e:89:
e3:6b:24:da:cb:89:e2:40:1d:90:46:4f:3c:07:ed:
d0:0b:f8:43:71:2e:e4:73:d9:fd:c3:3a:65:a4:2c:
dd:77:2d:1e:33:af:ee:f1:e9:f4:82:6e:5c:0c:64:
8b:3b:48:d4:a2:59:01:2a:c3:d0:1e:74:df:1f:25:
b0:e6:11:8d:0a:9b:10:2c:8d:01:7b:bc:42:be:4d:
7e:1f:e3:4f:df:83:32:7f:63:fd:23:fe:49:78:75:
49:f0:51:17:62:6f:c5:21:37:37:01:5a:c9:9a:dd:
04:03:7c:f0:72:21:11:07:51:03:69:39:c7:17:a5:
f4:e5:d3:61:bc:c6:59:ed:08:62:dc:1b:8a:1a:54:
ef:f1:86:39:3c:c0:b8:b3:a8:d9:1e:19:3a:a3:b7:
ea:4a:c6:5b:3a:70:53:2f:cc:4e:95:55:1b:93:d6:
7e:12:92:c2:48:7d:9e:df:bf:30:f2:10:02:00:5a:
99:3a:37:38:04:c7:89:94:8a:f1:3e:82:3c:a4:ad:
24:b0:40:4d:23:e3:0a:6d:fa:6d:96:b2:c7:bc:81:
13:97:89:68:f1:02:a7:77:b7:90:9d:7a:6b:36:d3:
91:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:12:61:6F:F6:F1:F6:82:CF:A0:E6:90:09:24:70:A8:0F:4E:4E:31
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/ahJhb_bx9oLPoOaQCSRwqA9OTjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.106.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:7d:16:9d:85:6d:b0:83:72:41:13:d5:96:7b:8d:fc:a3:a5:
cf:1f:b6:be:f4:f9:03:83:4a:7d:88:9f:c7:ca:b3:88:87:79:
1c:35:14:d3:3c:ac:cc:ee:d4:8e:df:65:b1:10:bc:38:93:06:
c8:77:0d:f7:38:ac:70:78:a2:16:82:e1:da:e6:56:88:0a:d9:
cb:b4:7f:5d:d5:46:62:e2:49:f3:a6:94:c7:97:bb:9f:3b:2e:
14:d7:87:e1:af:5a:68:5d:c0:d3:82:62:12:9b:de:c6:94:35:
de:30:ec:a2:90:7d:42:cc:cf:06:a2:e2:e3:81:df:aa:3d:69:
01:f3:64:90:60:46:74:1d:3a:ed:3e:ae:ff:d3:aa:18:f1:95:
08:e0:44:97:75:f9:9b:0a:e3:e5:61:9e:95:3b:58:78:af:58:
cb:95:45:44:a6:43:2e:de:ba:4d:ee:0e:c2:0e:d0:66:a9:e4:
55:06:cc:16:a7:1a:b9:1d:93:ce:6d:b1:fb:0f:df:e5:77:31:
08:ff:38:f6:28:d0:06:b6:dc:16:3d:d0:3a:db:c1:59:cc:e7:
b8:ea:54:30:ba:80:29:f1:c3:e5:69:1a:0a:99:74:ff:26:e1:
69:dd:2d:05:6d:7f:83:38:95:47:fd:5d:05:29:a5:38:e1:0a:
4b:ec:d5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:16 2024 by rpki-client on console-ams.rpki-client.org