Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/lxWy36mTQ-iQYK36snGZ4QcS7NU.roa
File: lxWy36mTQ-iQYK36snGZ4QcS7NU.roa (raw, json)
Hash identifier: ROhjfukzi1e2vXp6gz6CejZo94vGF5m7j3iwcK/hAXU=
Subject key identifier: 97:15:B2:DF:A9:93:43:E8:90:60:AD:FA:B2:71:99:E1:07:12:EC:D5
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018D2D0A62328F91053ED5F4520ACE3E06F9
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/lxWy36mTQ-iQYK36snGZ4QcS7NU.roa
Signing time: Sun 21 Jan 2024 17:21:11 +0000
ROA not before: Sun 21 Jan 2024 17:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.11.172.0/23 maxlen: 23
45.11.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 12:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2d:0a:62:32:8f:91:05:3e:d5:f4:52:0a:ce:3e:06:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jan 21 17:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9715b2dfa99343e89060adfab27199e10712ecd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:66:b7:f0:28:6a:91:94:f5:f9:33:70:81:e9:
39:51:6e:68:32:42:b7:71:4d:e5:9b:58:ec:c2:f4:
71:fc:15:95:b0:f7:a9:0a:4f:27:d4:45:71:ff:e4:
f8:cf:88:08:c8:ec:a6:2f:e7:88:07:01:60:de:f2:
7f:02:d5:db:eb:e9:d8:21:d4:c6:3f:fd:92:5a:3e:
3b:82:a5:4b:24:16:8c:4b:a3:89:60:99:a4:06:c0:
dd:86:6b:56:5c:24:61:a0:db:71:e6:e4:fd:9c:42:
9f:bb:e4:9a:66:01:86:59:0a:54:d9:d6:2d:c8:32:
2d:88:e6:15:f2:1e:27:ee:3b:9a:5b:8f:ee:3e:91:
95:bf:6b:43:38:cc:f2:aa:9c:3b:35:32:6f:46:be:
41:2c:3c:8c:95:fa:b7:33:8b:08:a3:ff:05:31:e1:
a3:6a:ed:e2:36:66:88:bf:a2:09:4b:ca:18:b9:ed:
8c:af:09:8b:85:c5:88:3f:b8:e9:53:9e:94:a2:29:
a5:fd:69:39:55:35:1f:70:1a:52:0d:f3:2a:6a:21:
b8:1f:96:53:04:38:a8:b9:ce:73:f0:03:a1:d9:b4:
18:9a:ac:a9:d6:33:51:6a:a1:fa:c8:ca:1d:d5:05:
c1:8e:af:fc:a0:95:b2:6b:f9:05:54:f1:68:9e:2a:
e1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:15:B2:DF:A9:93:43:E8:90:60:AD:FA:B2:71:99:E1:07:12:EC:D5
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/lxWy36mTQ-iQYK36snGZ4QcS7NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0-45.11.174.255
Signature Algorithm: sha256WithRSAEncryption
02:f4:8e:22:dd:e4:22:33:ee:6e:6e:7b:76:21:98:0d:ac:f9:
2b:e3:1b:dc:0a:6a:a0:23:53:9f:da:8e:f3:35:99:03:39:e1:
01:fa:93:37:ee:65:4f:41:b9:af:0b:2c:41:81:8b:12:c8:46:
a6:16:9d:4f:60:cd:1b:44:84:55:bd:f0:30:c9:9c:2b:67:6a:
70:f2:dc:cb:95:b7:28:7d:18:56:f8:24:84:92:54:21:83:89:
6e:71:e4:82:41:43:fd:93:96:21:29:dc:a6:fe:68:85:c9:b4:
66:8c:15:d1:f2:0d:7b:0b:8f:c5:68:26:91:0d:28:a4:a7:d5:
7c:81:ab:91:8d:9c:bf:27:b5:30:c1:62:14:ca:90:0f:3a:4e:
c9:d9:23:b9:eb:34:42:19:15:3c:ff:1c:df:46:a3:48:e0:04:
25:05:97:9f:bd:5e:26:d7:54:60:40:28:0a:43:bf:5a:42:6f:
7d:50:91:8b:ba:6c:19:2a:3f:cd:9b:b6:2d:b5:ac:91:a3:68:
d2:0e:76:20:81:a1:b5:2a:f2:d7:b6:0e:cd:30:53:79:57:dc:
e2:bf:77:f2:ac:74:7d:5f:fc:e1:27:09:8d:ee:0b:8a:37:82:
57:ea:a6:d0:63:e3:b8:ba:ac:31:30:ae:6f:a8:02:45:91:82:
60:18:dd:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org