Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XsI10k8DAxB39Fp_3Gd1I1PF3Yk.roa
File: XsI10k8DAxB39Fp_3Gd1I1PF3Yk.roa (raw, json)
Hash identifier: 73XvSTooXIzIsssKDbHtxtoCgcL9BXsJX+EchKsm7nE=
Subject key identifier: 5E:C2:35:D2:4F:03:03:10:77:F4:5A:7F:DC:67:75:23:53:C5:DD:89
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0189F32511152F2D8C791EF339B6C0F247B0
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XsI10k8DAxB39Fp_3Gd1I1PF3Yk.roa
Signing time: Mon 14 Aug 2023 08:23:59 +0000
ROA not before: Mon 14 Aug 2023 08:23:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 45.134.39.0/24 maxlen: 24
45.13.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 15:45:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:25:11:15:2f:2d:8c:79:1e:f3:39:b6:c0:f2:47:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 14 08:23:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ec235d24f03031077f45a7fdc67752353c5dd89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c5:1e:5e:ff:10:75:5f:09:7d:30:e7:90:53:
54:83:e4:8a:9e:8d:98:70:39:74:9c:61:fc:57:60:
ae:73:07:66:db:1f:b4:dc:b1:f8:ff:86:b0:e0:2b:
62:6c:9f:72:d2:72:fb:8b:b5:29:65:06:fc:d7:97:
3f:10:f4:a7:4c:5f:33:83:c2:2a:e0:c1:b7:9a:a8:
08:a6:8f:81:25:0f:8d:8b:e8:28:12:af:4e:c1:ae:
08:03:a6:b9:0c:79:f1:26:c3:7b:34:bc:e7:55:dd:
b5:07:e1:05:b1:4d:26:9f:b8:53:00:3e:ed:d1:96:
91:96:bc:b2:5f:e2:0d:a2:af:d1:9c:01:b3:2c:c2:
b5:71:15:d1:5d:74:22:0a:be:13:94:c8:16:fc:cf:
97:b5:9a:24:ff:65:26:eb:37:c9:0f:93:b5:54:30:
d9:8b:01:51:21:6b:83:56:f5:3f:84:b6:5e:bf:f0:
08:3d:c3:ed:d7:43:dc:7b:64:9f:a5:d7:e2:b7:57:
d4:a0:f8:d6:d9:01:45:83:bb:89:8f:3f:c5:b8:71:
ef:55:1d:fb:d9:19:98:75:ef:ac:73:49:6c:4a:81:
1e:66:c1:f2:c9:05:02:36:9f:88:6c:18:aa:85:a6:
29:f8:ea:13:55:57:65:b1:8c:8d:2e:75:b6:ad:84:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C2:35:D2:4F:03:03:10:77:F4:5A:7F:DC:67:75:23:53:C5:DD:89
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XsI10k8DAxB39Fp_3Gd1I1PF3Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.226.0/24
45.134.39.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1a:9d:de:42:e1:1a:29:77:49:43:54:2c:c6:d9:24:32:02:
b5:c0:ee:0d:35:7c:95:1f:14:b7:13:91:7d:21:7b:52:80:66:
f4:f2:c2:23:dd:ef:8d:0c:ef:71:da:d8:12:2f:1b:f6:9f:96:
76:43:34:41:33:56:79:2b:4d:9a:28:67:48:bd:47:80:7c:a2:
25:1d:71:40:05:4f:c7:67:07:fa:bd:c6:b1:3a:38:ac:c8:d4:
ce:5e:30:7b:d3:02:03:09:d4:bc:58:19:85:b7:a6:93:92:c8:
4d:43:4b:2d:77:71:1e:fd:09:11:91:c5:99:fe:15:e2:25:b7:
5e:bf:6a:45:14:20:ca:ea:77:73:b2:d3:12:65:4c:56:8f:92:
31:06:9b:5e:15:02:3c:fb:a2:ae:b9:79:3e:cc:37:39:81:60:
fa:72:6c:cd:06:d8:b8:ac:18:40:16:2c:47:0b:82:b7:91:12:
02:68:bd:5f:e9:3b:c3:dc:a6:c9:40:3a:f7:ea:32:da:d8:f5:
1f:93:76:38:5e:f3:a7:64:92:47:7f:47:2c:57:6c:67:05:09:
1b:4a:f9:66:1e:24:1c:c0:bb:9d:20:15:13:4e:56:c2:4e:49:
21:20:c4:ca:05:13:b8:82:96:0c:5f:d7:fd:fd:71:81:10:91:
e0:6e:f9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org