Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aZYkGwCKaz6CYEnCCp7-NI7fwmE.roa
File: aZYkGwCKaz6CYEnCCp7-NI7fwmE.roa (raw, json)
Hash identifier: a7Q8jDVDF9pOh5/mspDeKRslWvKiDA0V42vx6r5Qcd8=
Subject key identifier: 69:96:24:1B:00:8A:6B:3E:82:60:49:C2:0A:9E:FE:34:8E:DF:C2:61
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CE747BFEF0A2EF75BE6C818126814A821
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aZYkGwCKaz6CYEnCCp7-NI7fwmE.roa
Signing time: Mon 08 Jan 2024 04:14:48 +0000
ROA not before: Mon 08 Jan 2024 04:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24961
IP address blocks: 45.151.59.0/24 maxlen: 24
45.145.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 10:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e7:47:bf:ef:0a:2e:f7:5b:e6:c8:18:12:68:14:a8:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 8 04:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6996241b008a6b3e826049c20a9efe348edfc261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0e:9f:41:ac:38:56:41:a6:03:26:3f:70:73:
48:97:f3:77:04:49:24:28:98:70:fb:a1:e8:a4:ca:
c5:91:2e:40:e4:fc:67:46:9c:c1:fb:62:8f:d0:77:
88:7b:75:63:3c:a5:31:d4:25:92:82:b5:c4:a9:63:
fa:85:24:2e:39:5f:c6:50:02:a7:69:76:4c:37:26:
21:c8:75:63:67:77:bb:2b:5d:35:4d:63:36:b0:da:
49:9c:90:bb:02:5b:fb:52:25:ad:d0:7f:f7:aa:03:
f0:3d:7d:ba:91:d4:2b:dd:af:bb:6e:e8:03:07:a4:
54:d2:68:f3:55:31:48:39:38:d0:0e:f6:ba:42:ed:
26:b2:d6:b4:d9:68:b4:90:e9:e0:ee:e7:5a:36:13:
ff:52:ce:77:35:6a:4a:e0:7f:20:a3:64:1f:91:30:
5c:c6:4c:96:d0:a0:e6:57:0c:6b:97:6e:66:53:87:
e9:6b:7c:3e:a9:ee:6c:a1:99:1f:4a:43:57:b4:19:
6c:58:28:6f:b2:04:03:09:aa:f1:48:b9:13:6e:af:
a6:aa:c0:35:81:3d:cc:d0:9f:59:73:58:f3:3c:e0:
cb:82:a3:43:9e:b7:bd:b2:96:2a:82:38:05:e7:b5:
ec:25:7f:9e:99:7d:d0:3d:7c:d7:b5:64:53:6d:14:
5b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:96:24:1B:00:8A:6B:3E:82:60:49:C2:0A:9E:FE:34:8E:DF:C2:61
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aZYkGwCKaz6CYEnCCp7-NI7fwmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.226.0/24
45.151.59.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:1c:c9:54:89:ed:8e:c3:1e:6f:67:2e:97:96:ed:fd:17:de:
14:4d:3d:65:c9:0c:39:59:cb:3f:73:ee:90:4a:7e:0f:8a:d9:
46:f7:4a:01:e7:5f:e9:05:19:e7:ed:31:7a:ea:62:ea:29:9b:
f3:89:f5:64:47:2c:c0:c7:fe:07:84:cc:d4:ec:fd:4c:6c:d9:
cd:a5:5a:d1:b2:82:8d:ad:74:f6:e8:91:f0:40:cf:9a:29:a7:
d0:b3:9e:1f:6d:3b:fe:37:2f:8a:ac:f8:d5:13:12:03:9b:92:
4c:6f:f5:fd:50:16:b5:a9:13:20:8e:fc:8f:9e:34:b7:d1:95:
63:21:75:ed:9d:ce:74:ab:72:ae:ad:4b:4e:76:66:f8:90:57:
56:28:b1:af:dd:fc:5b:ab:6f:41:b4:96:48:f1:52:45:5f:a3:
a7:16:ce:5e:38:4a:6a:c0:19:a1:54:ad:2c:42:19:bd:87:11:
76:21:8c:55:8b:64:af:22:86:f4:b5:5e:52:29:db:29:be:e5:
ef:01:bf:e5:15:55:df:40:d7:df:47:b5:8f:97:d5:31:e2:38:
fd:c4:96:c8:3e:33:f9:17:e2:1a:e9:86:cc:b9:c0:31:60:cb:
98:c8:b3:11:76:a2:05:01:05:98:ae:94:60:e6:bc:ed:0c:45:
61:31:99:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org