Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uh3hAe7TIT-SS1F9QUsQXQLdvLo.roa
File: Uh3hAe7TIT-SS1F9QUsQXQLdvLo.roa (raw, json)
Hash identifier: 5G2aevPILSULQ4pK+mZheIVeggF8J3XIGnoYMW8ZRmY=
Subject key identifier: 52:1D:E1:01:EE:D3:21:3F:92:4B:51:7D:41:4B:10:5D:02:DD:BC:BA
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE62CE799CE856E98EBACFA689E970E
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uh3hAe7TIT-SS1F9QUsQXQLdvLo.roa
Signing time: Sun 01 Jan 2023 10:35:02 +0000
ROA not before: Sun 01 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397525
IP address blocks: 45.13.226.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.84.197.0/24 maxlen: 24
45.145.225.0/24 maxlen: 24
45.145.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 07:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2c:e7:99:ce:85:6e:98:eb:ac:fa:68:9e:97:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=521de101eed3213f924b517d414b105d02ddbcba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:41:9e:98:9d:32:a1:bb:a7:65:75:e6:09:c9:
ff:98:fb:09:77:72:c0:9f:df:43:48:63:61:8a:34:
d5:2b:7f:ac:3d:e7:2b:7f:48:a8:7a:47:42:07:13:
42:51:1a:f2:18:b5:c2:a3:56:7e:7d:ad:55:b2:ad:
c3:1a:f6:e3:f4:a1:60:b3:64:be:f6:22:db:a0:27:
e8:04:3e:63:7d:5e:3a:cc:7e:62:a3:85:19:ec:f8:
b7:e0:81:68:ba:4b:00:c2:24:5f:9f:ee:73:f8:b1:
7f:ae:7a:78:a5:f4:e3:59:48:ed:32:1f:58:86:14:
7d:57:46:8b:65:f0:1d:55:35:47:ef:b1:ed:06:b9:
61:08:9f:eb:05:34:18:e1:0b:96:da:4e:58:a8:e7:
05:36:ff:b6:98:d1:6c:84:51:8f:a0:90:5d:45:96:
f1:6c:5f:c4:21:38:16:d4:9d:0b:9c:df:ef:4d:c5:
7b:20:46:25:6d:7b:75:0d:e9:40:8e:c2:ad:68:7c:
30:58:34:66:80:b6:37:98:2c:75:bc:cd:e9:14:77:
8f:cc:78:4f:c2:66:a8:9a:68:30:39:f5:ba:64:1e:
68:99:7f:45:cf:08:5f:87:72:b7:14:ec:b5:4e:70:
29:6a:b7:91:29:c3:97:ea:fe:99:98:18:76:58:9d:
4b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1D:E1:01:EE:D3:21:3F:92:4B:51:7D:41:4B:10:5D:02:DD:BC:BA
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uh3hAe7TIT-SS1F9QUsQXQLdvLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.226.0/24
45.84.197.0/24
45.145.224.0/23
45.147.7.0/24
Signature Algorithm: sha256WithRSAEncryption
56:7c:d5:e9:75:bf:4a:16:8b:9b:52:4a:35:13:3e:de:95:7c:
12:9d:f5:31:fa:9e:46:a7:6c:42:79:7d:ab:28:18:49:2e:0f:
98:75:a8:0d:56:d8:46:14:99:24:c5:a4:7e:4c:e3:a0:0b:9d:
37:d3:df:1b:3d:c6:bc:ae:e7:bc:f9:20:31:b1:23:4d:f1:7d:
10:55:df:e8:96:b4:5f:74:52:38:72:3d:b5:f4:3e:2f:eb:37:
88:6c:d2:b3:79:c7:16:82:c0:63:e4:ee:1d:91:5e:62:c5:3e:
fe:80:ae:d1:f8:7f:52:90:b0:3d:c2:e5:0a:5c:ae:a3:b6:27:
78:69:b2:90:68:18:54:22:2d:5c:27:be:56:15:c5:2b:da:8f:
c0:41:d1:7d:2d:57:94:2a:9d:6e:e2:f9:28:77:8b:41:5d:02:
44:43:ea:e3:06:43:c6:dc:20:87:d2:5f:87:9a:a7:5b:ae:de:
72:15:68:f2:43:7c:d9:72:8d:d0:bb:d5:01:52:4a:95:6b:39:
a9:b5:d9:0f:69:8a:87:88:11:06:62:77:46:3e:8e:37:c8:4f:
cf:ae:3a:96:74:ca:f3:ee:61:af:b2:73:3f:64:a1:a6:d0:8c:
ca:ce:6e:ba:4e:80:03:2c:ed:5e:03:36:4f:8f:2f:3f:a6:31:
2f:6e:8d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org