Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/k3WPRS5K2BUoKJ37Htpo1mGvvE8.roa
File: k3WPRS5K2BUoKJ37Htpo1mGvvE8.roa (raw, json)
Hash identifier: pTUZbbEy6+0rK0opODWF923yW4hYifktTI5rPerET4o=
Subject key identifier: 93:75:8F:45:2E:4A:D8:15:28:28:9D:FB:1E:DA:68:D6:61:AF:BC:4F
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01870A0A68CC07CF3519A639FD1E4C6B1C61
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/k3WPRS5K2BUoKJ37Htpo1mGvvE8.roa
Signing time: Wed 22 Mar 2023 15:57:46 +0000
ROA not before: Wed 22 Mar 2023 15:57:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12348
IP address blocks: 45.134.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 08:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0a:0a:68:cc:07:cf:35:19:a6:39:fd:1e:4c:6b:1c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 22 15:57:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93758f452e4ad81528289dfb1eda68d661afbc4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:e7:89:f8:d3:ab:ee:63:d8:4c:3c:f6:6f:
09:79:c8:fc:a6:86:50:37:0a:a1:1c:7e:f6:45:80:
c3:b3:3c:49:cc:8d:df:9d:4a:d0:b0:ed:c6:7e:02:
65:94:a5:be:c7:4d:3d:7f:a9:a4:bc:04:43:ae:15:
31:72:90:13:2b:01:bd:17:c4:b4:bc:d6:ca:d1:9e:
cd:12:22:ab:a8:38:2c:0b:c2:79:0c:98:76:a4:c1:
4b:83:51:8e:f7:c7:43:09:fe:1e:cb:75:c3:9e:cc:
38:8d:73:21:0f:73:00:ae:60:66:26:88:eb:ac:5f:
ca:9f:37:d6:04:d3:78:fe:c1:d2:80:ef:2c:ad:d1:
57:d0:29:1c:a5:31:fd:0a:01:2f:1f:c7:e7:79:87:
e3:3d:c8:29:26:cf:6b:f9:73:20:94:b9:c4:de:eb:
02:06:94:3d:f6:e4:bf:1d:2e:fe:3f:b2:99:8e:ec:
89:dd:3f:3f:1c:5d:a2:8a:1f:a6:12:51:92:11:a3:
70:7a:c2:25:2d:d3:f4:d1:bb:80:c4:91:60:f9:53:
47:e4:ad:12:fc:b5:c7:48:50:24:c9:ce:61:28:8c:
c0:68:61:6e:66:96:a1:c5:ce:de:76:4f:3f:c1:73:
ad:fb:d0:e8:7c:4f:64:ec:0e:ef:f8:bc:2f:df:0d:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:75:8F:45:2E:4A:D8:15:28:28:9D:FB:1E:DA:68:D6:61:AF:BC:4F
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/k3WPRS5K2BUoKJ37Htpo1mGvvE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.111.0/24
Signature Algorithm: sha256WithRSAEncryption
85:5f:08:dd:d8:14:d2:f2:67:88:23:d0:88:75:3d:40:2f:f7:
86:31:12:f1:70:d4:22:d9:37:ac:0c:c1:0c:1d:34:87:5b:82:
eb:61:46:21:f0:0f:5c:06:62:47:44:6d:44:eb:e1:6f:64:cd:
f3:08:2a:d4:d4:92:19:eb:77:8b:0e:3d:69:25:d1:7d:bc:5b:
cb:20:6a:db:53:6e:8b:33:33:8e:a3:7e:8b:c4:eb:b0:af:2a:
9f:52:bc:71:ec:2d:dc:e0:30:2d:30:6e:78:af:7c:aa:ea:90:
5c:12:84:27:e2:53:d5:ca:e7:8e:a6:25:86:ab:74:72:0b:9e:
cd:d8:27:c3:4a:e1:2f:9e:86:67:5b:c7:a6:dc:e5:5e:57:97:
da:1a:22:03:43:97:0e:6a:0f:be:83:84:5f:2f:56:4d:ee:67:
c7:2f:f9:a3:31:b9:b5:62:26:2e:79:f0:e9:40:64:74:b0:5d:
d2:7a:3c:37:56:da:f0:f6:59:92:4e:98:cd:2c:03:41:9f:99:
1a:26:c8:2c:a3:46:97:a3:65:08:9f:7d:72:6c:79:bf:db:e0:
d0:d8:9f:64:5a:dc:ec:7a:0b:c6:a9:10:56:6a:ad:1a:64:05:
27:bc:26:f8:de:3d:32:c3:cf:be:9f:97:1a:a3:97:3c:21:87:
4c:3c:54:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org