Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sJ7aPb2BJ1l90lXepXFFX61V43w.roa
File: sJ7aPb2BJ1l90lXepXFFX61V43w.roa (raw, json)
Hash identifier: xJpyn70LyDuoUnLUILo4wbauDEb4C6iIytZkFjqB83M=
Subject key identifier: B0:9E:DA:3D:BD:81:27:59:7D:D2:55:DE:A5:71:45:5F:AD:55:E3:7C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018E8E81F4B2640EF0B21D0779A4F6C47A85
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sJ7aPb2BJ1l90lXepXFFX61V43w.roa
Signing time: Sat 30 Mar 2024 08:37:45 +0000
ROA not before: Sat 30 Mar 2024 08:37:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.134.36.0/24 maxlen: 24
45.142.105.0/24 maxlen: 24
92.118.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 05 Apr 2024 15:23:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8e:81:f4:b2:64:0e:f0:b2:1d:07:79:a4:f6:c4:7a:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 30 08:37:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b09eda3dbd8127597dd255dea571455fad55e37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bf:96:79:e6:89:53:44:26:a4:19:47:19:1f:
63:61:3d:5e:23:96:4a:d3:65:51:b8:c1:64:5a:b5:
e2:4e:77:41:4f:21:2a:a4:08:3d:a8:fa:cf:81:21:
c4:39:f4:df:f1:45:f3:04:aa:fc:79:d6:c3:7c:c5:
e1:9c:79:9b:66:bf:72:a9:f7:d9:06:59:6e:e3:3d:
2f:9d:9d:18:34:80:31:cd:73:d8:06:8b:78:95:e5:
6d:fb:fb:43:74:01:b8:92:83:05:88:ed:f9:b0:ca:
d0:4f:a9:12:5b:fa:1e:93:03:62:d4:d8:5e:a7:b0:
f6:07:7c:08:9b:a2:3b:65:26:06:2e:21:4e:52:05:
0d:f1:8e:7a:f1:f4:67:f7:43:4d:21:fc:5e:2e:d8:
a4:da:6c:c1:f9:df:73:79:04:07:91:5f:a6:16:e7:
f9:23:a6:ce:4d:07:0b:d2:06:5a:98:07:20:90:9b:
e8:72:fb:5f:f1:9a:4e:df:01:32:7f:35:e2:27:c6:
38:71:94:7d:49:58:05:db:1b:a4:2e:74:63:ac:2f:
55:07:dc:d1:f7:f4:1f:f8:60:90:ca:c1:da:3d:b7:
04:df:4e:c8:80:a0:6d:3c:59:1b:69:13:97:8f:1d:
a5:09:5f:fa:fa:24:87:92:ff:bf:bf:37:03:ae:1d:
53:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9E:DA:3D:BD:81:27:59:7D:D2:55:DE:A5:71:45:5F:AD:55:E3:7C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sJ7aPb2BJ1l90lXepXFFX61V43w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.36.0/24
45.142.105.0/24
92.118.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:e5:7c:3c:23:bb:8f:e5:47:55:46:a9:2e:4e:23:02:0b:ec:
d0:c4:4e:ec:6b:ae:b2:91:03:b5:3a:71:13:ff:c3:d5:fd:c7:
15:d5:c8:37:e7:48:66:b6:6d:4f:6d:7b:6a:3e:a9:0c:eb:9c:
95:a9:e4:3e:fb:05:cc:54:1d:8e:c7:cf:9d:6a:50:5a:60:b0:
26:34:43:11:3f:9a:93:b3:d3:26:49:a6:b3:12:1d:7d:d2:85:
ac:25:55:26:b3:0c:81:9a:d2:e2:4d:6c:d2:6f:db:f7:fb:11:
c3:44:9e:cf:fe:d4:ab:f6:ee:91:b2:f2:61:91:24:61:88:7e:
4e:4f:44:76:79:07:f0:51:5f:46:90:26:9e:a3:bc:e4:e9:a0:
ee:40:24:f2:04:a6:ac:3a:5a:e7:31:b6:50:73:e9:b5:39:ca:
91:cb:80:05:bd:6b:b1:0b:70:98:a8:41:d1:09:90:c8:43:01:
16:5d:8b:b6:4b:55:03:83:c5:8b:7f:5a:ca:c6:7b:c2:28:12:
b9:25:e2:42:4c:78:b0:89:07:bf:f0:86:f7:39:24:04:9b:02:
1f:8a:34:22:ff:00:d4:2e:82:23:b5:58:84:84:a9:17:46:70:
dc:1c:87:26:d5:d8:01:d0:69:85:d9:78:12:6e:16:0b:4b:63:
1c:96:3b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org