Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7fWPIOWC1MnAygfHlFvCmYSKuxg.roa
File: 7fWPIOWC1MnAygfHlFvCmYSKuxg.roa (raw, json)
Hash identifier: zj887+ZSPMdHcd3Jdr8OWbx0chcwLPGNOahiRxKBc7E=
Subject key identifier: ED:F5:8F:20:E5:82:D4:C9:C0:CA:07:C7:94:5B:C2:99:84:8A:BB:18
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0191FB42DCD71BB060B21973AEE1BDB17DBA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7fWPIOWC1MnAygfHlFvCmYSKuxg.roa
Signing time: Mon 16 Sep 2024 14:35:48 +0000
ROA not before: Mon 16 Sep 2024 14:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 45.90.96.0/24 maxlen: 24
185.117.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 07:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:42:dc:d7:1b:b0:60:b2:19:73:ae:e1:bd:b1:7d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Sep 16 14:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edf58f20e582d4c9c0ca07c7945bc299848abb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:15:d3:e0:d3:dd:a6:6e:48:ca:94:e3:dc:77:
bd:ff:cb:45:78:0e:9d:56:cc:3c:5e:9c:d1:ac:75:
fe:a4:31:08:c6:c8:1a:43:28:ea:08:06:f4:85:83:
a9:96:64:53:f5:e9:ff:16:64:9e:5a:a2:ef:db:1b:
d5:d9:ce:d4:b5:db:66:0b:04:1b:be:1a:b6:df:99:
56:f9:53:4f:94:d5:35:c7:53:ee:0d:07:9c:c2:80:
56:5b:b1:04:ce:86:7d:8f:23:d7:89:ec:13:54:50:
73:f7:50:8f:c6:64:83:97:ed:27:59:d9:33:e3:a8:
0a:ac:b7:dc:03:ee:9a:54:f7:a7:8c:42:4e:bb:59:
81:01:48:a8:a0:68:64:98:02:a1:bb:d2:24:d4:2e:
93:ae:d5:db:97:36:cf:8d:64:12:68:73:aa:b8:8f:
d6:8e:97:04:8d:1a:c8:69:86:3c:70:c2:72:10:c5:
80:0d:21:2b:19:d0:63:12:91:7b:e5:c8:c4:c8:e6:
92:8e:e0:c9:cd:b8:99:0a:61:ca:2f:d0:54:71:6b:
83:fd:ce:91:db:d6:af:9a:2e:bd:58:75:ba:4d:93:
ac:1c:c2:ad:e8:48:1e:d9:b1:6e:5c:11:ff:d5:3b:
04:6b:d1:98:83:68:27:57:ba:2c:ca:3b:9e:9c:ce:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F5:8F:20:E5:82:D4:C9:C0:CA:07:C7:94:5B:C2:99:84:8A:BB:18
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7fWPIOWC1MnAygfHlFvCmYSKuxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.96.0/24
185.117.0.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:9d:d6:64:83:46:77:37:18:9c:c7:35:a8:d7:be:9f:31:15:
0c:9b:84:51:0f:04:c6:05:ae:93:5d:26:63:f3:06:61:9d:93:
cb:cf:c4:51:20:fb:f1:0a:cf:dc:95:19:b7:08:12:f4:25:25:
db:97:7d:48:24:48:66:f8:93:ca:2e:ec:6a:aa:89:06:21:f5:
08:3f:00:63:bc:01:55:ff:3e:4c:1e:2e:1d:b1:25:61:6f:9f:
11:03:15:ca:90:87:8b:13:da:b3:b4:15:6e:bb:9b:b6:f7:24:
ce:d5:98:4c:e0:4a:0f:57:8e:fc:86:14:5f:9a:4e:ee:d1:1f:
a0:dc:c0:f5:a5:cd:28:da:37:6d:2a:e7:c4:d7:72:71:30:04:
ae:70:76:91:9d:58:10:ba:fa:0d:df:c6:25:a3:c4:f6:a7:c9:
67:d3:9c:8a:d7:21:7d:fc:e2:7b:fe:c8:70:1a:1c:ee:3e:1e:
33:ff:df:e9:41:e3:ee:53:17:bf:07:be:e1:f0:a2:88:30:c3:
77:3b:31:01:6c:4f:a2:22:21:73:93:e5:0a:30:cf:c7:ab:df:
ef:d0:79:8c:88:d2:27:3b:ea:30:04:3c:38:74:88:af:ad:a0:
40:5c:fb:be:cc:18:38:7f:6a:71:4d:56:36:6a:d1:98:d2:63:
36:a5:a3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 09:46:39 2024 by rpki-client on console-fra.rpki-client.org