Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/oqXpWAfBBdn32x5-L-PEcaJ2qw4.roa
File: oqXpWAfBBdn32x5-L-PEcaJ2qw4.roa (raw, json)
Hash identifier: PRYxyEOmQwdKBz3SkKKAUjOOlHRTrtZwgOdra8Azq3k=
Subject key identifier: A2:A5:E9:58:07:C1:05:D9:F7:DB:1E:7E:2F:E3:C4:71:A2:76:AB:0E
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018A444FF218435003743264134A2F831499
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/oqXpWAfBBdn32x5-L-PEcaJ2qw4.roa
Signing time: Wed 30 Aug 2023 02:40:04 +0000
ROA not before: Wed 30 Aug 2023 02:40:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150785
IP address blocks: 45.92.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 08:45:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:44:4f:f2:18:43:50:03:74:32:64:13:4a:2f:83:14:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 30 02:40:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2a5e95807c105d9f7db1e7e2fe3c471a276ab0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:77:da:08:0c:0c:6d:ed:e0:9d:e0:88:70:27:
52:6b:ce:31:3c:b8:d8:14:ea:6e:85:72:be:4d:3b:
6b:02:55:9a:9a:d4:2d:ab:e7:a5:81:db:df:17:04:
1a:c2:e0:c5:03:8f:08:2f:37:8c:b2:36:65:3b:30:
49:85:9f:42:32:67:04:9e:4c:ee:32:02:07:73:b5:
97:bf:1b:91:58:67:aa:e4:d9:b1:e6:a6:ca:59:e3:
62:04:55:9b:bf:2b:5f:2a:1b:fe:88:4b:eb:fd:56:
30:ea:1c:1b:f7:fd:ef:cc:b5:94:4f:dc:ce:b5:54:
47:30:f1:cf:33:7a:d1:08:9a:87:7d:a3:3a:af:05:
ab:05:38:68:93:67:13:cf:c9:28:04:94:5c:52:7f:
42:fa:1a:64:1f:d4:a7:6c:6b:fc:61:c7:17:f0:38:
7e:50:f3:ca:22:10:d6:e5:9b:7c:98:ae:03:99:b4:
4d:a2:10:b4:84:3f:cd:07:66:54:29:7f:ba:89:f9:
f4:12:bd:ed:d1:e1:a3:d6:ae:70:2a:b0:6e:45:79:
df:8c:de:6d:98:76:4f:d0:7c:6d:5b:8d:ad:b7:40:
cc:96:50:3a:92:0e:03:1c:e6:7b:b3:45:8d:46:11:
f3:a6:12:86:6c:a3:e5:3e:b4:38:f1:d0:fe:5a:96:
6f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A5:E9:58:07:C1:05:D9:F7:DB:1E:7E:2F:E3:C4:71:A2:76:AB:0E
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/oqXpWAfBBdn32x5-L-PEcaJ2qw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.219.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:4d:ed:34:33:1f:04:04:ef:24:ce:fa:e1:e7:03:da:53:b3:
9a:80:46:3c:0d:41:56:a8:34:73:23:9f:b1:68:c5:39:21:2a:
45:04:fd:df:21:b1:e5:6e:80:d7:9e:b5:4b:a8:ef:3a:63:4c:
11:e5:8a:eb:2b:02:11:4e:87:07:ed:c1:d7:b8:7c:2b:15:4f:
cd:5f:cb:07:fd:c7:91:13:c1:e6:00:16:21:2b:d0:1a:77:20:
1a:83:25:c7:ff:ba:52:55:bb:10:ed:2a:88:1a:5f:dc:17:03:
f4:1a:e2:7b:cb:8e:03:08:d6:29:12:b3:9f:83:a7:5c:94:94:
2e:35:d1:73:0f:b5:b3:4b:d8:1d:13:72:52:8b:fb:8b:a9:eb:
cc:7e:77:e9:ea:91:b2:85:e1:7e:c1:08:21:68:bf:85:73:01:
98:c8:4d:5b:0d:d6:f1:4b:e0:16:8f:3a:d6:79:be:f0:f0:2c:
8c:5b:47:af:be:9a:a7:e8:21:c4:e8:e6:b9:fa:0d:86:cc:0c:
b4:ed:dd:bd:61:7b:56:23:96:4a:00:87:25:c1:7d:fd:3b:8c:
3a:8c:e7:97:5d:cb:9b:9b:03:48:36:0d:fb:ec:39:17:3f:9c:
45:0d:f6:ac:60:2f:a6:d8:c8:9c:5d:7e:a8:cf:e1:43:0b:d7:
20:a0:2a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org