Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/p7ZRLT5jVMKOmIiG_ISfKOBlCQY.roa
File: p7ZRLT5jVMKOmIiG_ISfKOBlCQY.roa (raw, json)
Hash identifier: uHLhWlMBNsxdsF+CDQQEsI0dI/wzUrXzxB3bdRJ8d9E=
Subject key identifier: A7:B6:51:2D:3E:63:54:C2:8E:98:88:86:FC:84:9F:28:E0:65:09:06
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0186C0B790E5E941FA74E890975C1B05006D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/p7ZRLT5jVMKOmIiG_ISfKOBlCQY.roa
Signing time: Wed 08 Mar 2023 10:15:00 +0000
ROA not before: Wed 08 Mar 2023 10:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38001
IP address blocks: 45.67.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:b7:90:e5:e9:41:fa:74:e8:90:97:5c:1b:05:00:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 8 10:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7b6512d3e6354c28e988886fc849f28e0650906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:76:84:96:b8:7a:f2:f5:34:fe:da:54:75:40:
66:da:43:e9:3a:c0:e8:4b:3a:1e:e7:8f:77:80:00:
c1:53:9e:68:f1:bd:60:b5:c5:c1:3c:06:0c:d6:52:
c0:aa:5c:c2:8c:a8:09:83:eb:54:21:49:0f:07:66:
76:a5:6c:d9:0d:9d:e6:65:04:c6:66:7d:fb:ca:fd:
c6:29:e7:18:97:c5:9f:a2:de:5e:8f:89:95:3d:1a:
05:ff:6c:d7:a3:9e:95:3e:c2:dc:08:37:00:80:5f:
20:2b:61:67:51:4e:09:49:97:36:b9:e8:02:ac:c9:
ff:29:e4:50:67:ac:df:3b:da:46:60:ab:d3:40:78:
46:19:d7:03:5c:9a:ff:dd:6a:ed:02:34:15:6e:86:
80:df:d7:43:fa:b7:2a:3e:52:21:bd:70:5a:eb:de:
58:2c:c4:09:3b:e4:f0:c0:92:4e:77:be:17:8a:9d:
9f:5c:d3:4b:55:88:59:b8:de:29:04:22:b8:a7:d8:
66:2f:07:e8:e9:76:f5:4d:1b:9b:ae:fb:f0:03:32:
aa:6a:04:11:f6:40:ff:b1:30:cf:e8:db:ca:ef:7c:
57:f6:64:23:28:51:39:46:31:31:75:12:bb:5e:3b:
a9:99:b6:9f:b5:90:ab:fa:51:7c:70:78:b3:2f:50:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B6:51:2D:3E:63:54:C2:8E:98:88:86:FC:84:9F:28:E0:65:09:06
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/p7ZRLT5jVMKOmIiG_ISfKOBlCQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.137.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a0:7e:a7:5e:e7:0c:68:dd:10:fb:a0:b8:87:f0:f6:46:87:
dc:16:5d:fc:fc:e8:a8:7b:e5:c8:0d:5a:01:a4:ca:d6:28:e0:
57:89:85:e7:2f:a3:5d:b4:16:d2:63:ed:31:f4:81:4b:5e:f6:
08:8e:cb:13:3b:6a:8c:7f:ad:0c:3d:ad:bf:e3:40:a0:92:43:
4c:f8:5b:ff:aa:23:e5:28:49:ed:a4:8e:e1:40:9d:69:e4:d8:
eb:19:a6:0f:45:b2:32:e8:89:89:9c:ba:67:8f:78:d9:eb:ba:
a7:22:ba:d7:80:9b:91:bf:32:fb:32:2d:ce:9c:22:54:fe:73:
55:3d:0d:2a:26:95:21:1a:e3:f5:54:bb:06:40:7f:7e:69:e1:
05:e0:3d:4e:16:e0:21:29:3f:b5:1f:86:45:a8:00:49:0d:5f:
96:d1:32:7c:7c:a8:99:ba:5f:25:ce:9a:ba:59:71:1a:49:95:
85:4a:4b:83:76:df:1f:0f:65:e5:2f:26:26:c5:d0:06:ec:11:
03:11:8f:98:4b:2a:ac:0d:77:71:e7:30:4f:6e:be:bb:6f:66:
0e:e7:ae:ee:76:ed:78:eb:66:36:dc:59:72:63:02:ca:7c:19:
0f:30:29:fe:ad:cf:39:3a:00:04:84:cc:5b:26:3c:6a:09:20:
3b:e3:d5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org