Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/NwD2x1DYbTKDZJsJpmQcEs1lNUw.roa
File: NwD2x1DYbTKDZJsJpmQcEs1lNUw.roa (raw, json)
Hash identifier: MXyzZsBcrBJlAvbKEmwWioWudsK+51UhDRpAuW9o7Uc=
Subject key identifier: 37:00:F6:C7:50:D8:6D:32:83:64:9B:09:A6:64:1C:12:CD:65:35:4C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E3B5D6AA8A76F40171B550724F775
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/NwD2x1DYbTKDZJsJpmQcEs1lNUw.roa
Signing time: Tue 02 Jan 2024 08:33:16 +0000
ROA not before: Tue 02 Jan 2024 08:33:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149020
IP address blocks: 45.142.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 20:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:3b:5d:6a:a8:a7:6f:40:17:1b:55:07:24:f7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3700f6c750d86d3283649b09a6641c12cd65354c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:02:10:2f:ab:29:ea:fb:f0:6c:23:92:28:1e:
e0:fd:0c:4c:9b:13:de:87:d1:ac:3c:11:53:d3:9a:
14:e0:48:5b:b7:eb:5e:97:1b:40:d5:cf:27:53:82:
22:52:4d:f3:f0:09:69:07:f9:a9:24:7e:22:06:00:
05:fe:8c:16:fd:78:8d:11:16:b8:a4:c0:ba:af:24:
c1:b5:5e:94:53:a0:47:fe:5f:cb:f0:59:2f:4d:6d:
26:d0:04:ea:6d:78:e1:9e:28:8a:ff:d2:19:e6:5c:
2d:7b:4a:ef:75:27:48:97:ee:3b:06:92:d4:85:3a:
54:34:87:01:0f:bd:00:8e:92:53:2b:29:81:36:bd:
ef:25:7e:26:00:80:c7:b8:7f:f6:e3:94:2d:cc:64:
11:b6:5f:c8:6a:69:42:7d:4a:b2:32:a1:77:3b:e6:
e3:3f:96:f7:f7:f7:17:c8:b4:c9:1a:f4:da:4d:4b:
ed:83:6c:c1:0e:96:9a:8d:8e:95:3a:dd:61:56:d1:
8c:b2:02:a5:a5:3b:1b:81:aa:64:6e:e9:a7:ef:8b:
28:e5:74:85:59:09:fc:4b:e5:ca:ac:9c:25:fa:c6:
f9:17:17:a9:96:97:53:dd:82:ad:2d:67:c8:71:f5:
6d:4f:3f:4d:4b:8b:6e:d5:cd:d8:fa:c1:ee:f6:1d:
37:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:00:F6:C7:50:D8:6D:32:83:64:9B:09:A6:64:1C:12:CD:65:35:4C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/NwD2x1DYbTKDZJsJpmQcEs1lNUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.105.0/24
Signature Algorithm: sha256WithRSAEncryption
14:11:37:e6:be:0a:f1:e9:c7:aa:ed:d6:ea:59:5d:e4:1d:22:
1e:d6:95:83:f0:22:7e:b8:37:30:38:43:8f:98:1b:69:f1:81:
6a:c9:96:82:6f:c0:c5:d3:1e:3c:07:cf:9d:c4:d5:04:8b:68:
54:9e:bb:64:71:51:7e:8d:4d:ff:7d:91:7d:1d:22:b0:9c:d8:
2b:a3:aa:d8:66:a8:d3:ef:ff:e2:ca:84:1d:35:12:e8:14:f9:
be:5d:4a:11:33:f8:e6:4f:ec:0f:c6:67:43:52:75:a1:db:3a:
02:f7:7b:c9:97:6d:c2:64:37:12:fc:ea:5f:5a:2f:34:37:28:
42:97:9b:5b:d9:03:d4:51:98:88:ad:a9:d4:11:31:14:fa:b9:
c9:5c:41:08:7d:4e:05:19:9e:26:7d:71:dc:7f:14:2e:a5:9e:
23:b8:bf:f8:eb:cd:ef:0a:69:98:ef:74:a2:6b:b4:3c:b0:f9:
c0:85:70:30:fd:2c:18:4c:2e:92:76:55:43:27:2e:71:d4:34:
85:88:bd:7d:7a:de:fe:1c:b6:06:3c:a5:8e:d7:c5:48:1f:6b:
8a:27:df:7e:66:cc:f6:d2:d2:6d:9b:9e:d8:e9:94:3c:a5:27:
e2:08:97:7d:97:01:ec:3d:74:19:68:6a:55:56:30:e3:a2:4c:
c7:eb:b9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org