Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lFx1oFHobySQYTKSgjUuflk8f7Q.roa
File: lFx1oFHobySQYTKSgjUuflk8f7Q.roa (raw, json)
Hash identifier: O+SEbOq6DKBE1NNCmwTZW0OZdslk8ehdtjd3lpnURZ4=
Subject key identifier: 94:5C:75:A0:51:E8:6F:24:90:61:32:92:82:35:2E:7E:59:3C:7F:B4
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE60DEDE0613B46C2FADF41C314509A
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lFx1oFHobySQYTKSgjUuflk8f7Q.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.86.155.0/24 maxlen: 24
45.131.110.0/24 maxlen: 24
45.147.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Feb 2023 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0d:ed:e0:61:3b:46:c2:fa:df:41:c3:14:50:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=945c75a051e86f249061329282352e7e593c7fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0e:9d:21:7e:b4:ed:e5:a6:25:93:ea:84:59:
37:31:49:d2:8d:78:b3:e0:20:4d:2c:a6:63:3c:bb:
7c:bb:b7:76:30:84:d8:90:23:f6:b0:8f:e1:38:f7:
e0:e0:79:b9:c7:74:e7:8f:8c:42:dd:8c:50:9b:f0:
a7:42:f7:9c:9d:7d:ee:00:f5:0a:df:27:58:66:ce:
1d:00:dc:01:c2:76:93:ba:b5:93:b1:62:b1:95:71:
e7:36:d2:4e:7f:c6:ff:f7:d5:c7:32:5e:cd:0e:07:
6b:a9:48:17:7b:b6:d2:68:d1:d8:e4:a3:ac:07:a1:
24:be:76:b5:1e:4f:fa:e4:cc:b8:ba:d5:a6:d1:b6:
34:56:6b:55:f1:d0:b6:ae:5d:62:ce:e4:c9:4f:38:
8d:85:1c:99:6e:7c:9a:a2:39:7d:03:2c:c5:bb:8c:
f5:1e:4e:84:4a:15:46:05:75:d6:61:a1:31:4f:e9:
a0:d5:a4:5c:e9:40:7f:ae:4e:0f:89:1b:83:59:9c:
aa:57:14:01:06:07:0f:50:96:83:ff:50:38:ec:39:
58:16:c7:20:73:da:af:f2:de:c0:ff:e8:c5:58:1d:
cd:7f:26:42:2f:9c:88:53:77:1f:42:48:04:53:ac:
7f:a0:0d:1e:6e:78:14:3f:10:8e:88:e8:e4:dd:6a:
d7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5C:75:A0:51:E8:6F:24:90:61:32:92:82:35:2E:7E:59:3C:7F:B4
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lFx1oFHobySQYTKSgjUuflk8f7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.155.0/24
45.131.110.0/24
45.147.5.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:02:ed:14:9b:de:42:a4:f5:2f:1b:d9:69:81:25:72:b5:65:
19:a1:fa:9e:1a:2f:55:a0:aa:df:f4:d2:8e:e6:e1:32:81:4e:
44:58:4d:f3:d5:bd:20:c6:e9:d4:bf:50:6e:00:35:bf:92:f7:
33:12:5a:a4:df:26:8b:ff:20:16:ec:6f:56:ae:a7:d7:43:28:
ec:36:36:cd:ae:f3:e6:09:80:4e:00:08:76:1e:fc:af:66:d7:
59:b7:df:ce:8d:9d:c1:88:84:9c:b8:ee:3f:4a:c5:ad:b6:2e:
38:e8:79:dc:31:07:87:57:2b:ba:d7:70:24:8c:30:a2:a8:58:
3a:39:86:c5:96:21:20:02:f6:42:18:9a:c3:89:1a:4b:32:c5:
24:d6:7e:45:04:ae:98:58:21:4c:36:56:bc:a5:fe:98:1b:65:
b8:b9:05:33:e3:e9:85:a7:d3:f8:43:c3:d8:58:d8:6d:89:e2:
c2:c2:0b:db:89:ed:94:b6:d1:35:8b:a9:7f:c4:e3:bc:6b:e9:
48:62:d3:9e:af:88:c4:83:ab:cc:14:f1:35:81:31:b8:b7:8e:
3d:21:90:d6:17:97:01:83:fc:88:e4:f7:64:f0:e8:cb:b9:73:
e7:ac:cc:cb:0e:1c:fb:ed:ff:bc:46:16:13:5f:60:bd:7b:16:
99:f2:d5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org