Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1kbfM2FEcGPsAAGT2S3HTXRFIFc.roa
File: 1kbfM2FEcGPsAAGT2S3HTXRFIFc.roa (raw, json)
Hash identifier: vqI3MjkDAaoEjifJ8xNAd3ru7P2GpswWoWVwA031NTw=
Subject key identifier: D6:46:DF:33:61:44:70:63:EC:00:01:93:D9:2D:C7:4D:74:45:20:57
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CC86F40602A92CA18453E74E9B4F46AF1
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1kbfM2FEcGPsAAGT2S3HTXRFIFc.roa
Signing time: Tue 02 Jan 2024 04:29:43 +0000
ROA not before: Tue 02 Jan 2024 04:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 45.81.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:40:60:2a:92:ca:18:45:3e:74:e9:b4:f4:6a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d646df3361447063ec000193d92dc74d74452057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f2:4f:d7:0d:be:28:5e:ed:e9:c8:e8:f4:3d:
10:16:8c:70:3e:19:eb:59:93:d9:be:07:6f:73:30:
22:0f:52:5e:11:1f:c1:73:f8:52:6c:f8:18:ee:c8:
e5:c4:4e:73:cb:09:25:88:a9:bc:43:03:91:af:85:
fd:84:03:f6:7d:ef:10:91:c4:9f:58:da:64:cd:81:
7e:31:15:7f:e7:17:a0:35:83:c1:b4:d3:fe:35:9d:
cf:12:d0:c2:b7:8b:ab:d5:0f:2c:69:83:29:50:a3:
01:03:5c:a8:71:e5:26:92:2b:91:61:ed:eb:61:dd:
40:06:30:a1:44:29:a2:71:d4:3c:b2:7c:0e:31:0f:
9d:3c:99:90:69:17:0b:d3:74:85:cd:b3:02:3d:36:
50:c7:ef:06:f8:dd:d9:48:01:68:46:c6:ae:6a:75:
d2:e6:86:23:ff:0b:4c:52:58:3c:8e:49:16:7a:5e:
63:08:ac:6c:6d:99:dc:af:d5:8d:ff:37:05:c4:2a:
f3:d4:f4:82:82:7c:37:37:7b:21:e7:9d:ce:a9:e9:
2b:53:fc:c9:bb:52:4d:88:a6:b7:7a:4f:5c:a5:f3:
c7:b1:91:f5:45:f7:92:40:f2:54:70:00:1c:29:76:
33:b0:74:5b:b1:76:89:25:68:ce:73:87:66:36:33:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:46:DF:33:61:44:70:63:EC:00:01:93:D9:2D:C7:4D:74:45:20:57
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1kbfM2FEcGPsAAGT2S3HTXRFIFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.114.0/24
Signature Algorithm: sha256WithRSAEncryption
26:0a:83:c8:20:27:6e:1b:b7:59:e4:0e:a1:ff:f3:c3:f1:e6:
c2:a8:83:cd:8b:fa:ae:dd:44:09:79:5b:ce:75:f9:ba:67:14:
75:17:4c:86:fa:b3:32:7d:88:34:a9:42:e9:01:c5:1f:85:c9:
68:51:0c:f0:e5:17:96:28:dc:31:3a:c9:32:f3:6d:c1:93:ab:
44:8f:53:3a:c9:16:2c:cc:bc:45:e5:58:48:59:0e:95:32:d1:
45:bd:ad:2c:5c:07:1f:5e:bb:4f:06:59:92:d0:ca:4d:85:a4:
99:3a:4e:49:8c:e6:7c:c7:d2:f7:de:c0:99:67:9f:9b:34:93:
52:34:0f:56:ee:a2:34:39:6c:6c:e1:8d:ad:8b:3f:65:e4:f5:
8e:e0:ca:e8:fe:3b:27:9e:35:76:58:3f:d8:bf:a8:c2:98:15:
fb:f9:f4:c6:04:58:92:54:96:fc:bc:05:e6:bf:e0:74:c1:71:
3b:d9:99:8e:8b:10:fe:a5:bd:de:64:1e:70:8e:dd:ad:01:70:
3b:5b:74:27:8e:36:b6:25:24:71:9d:b4:f5:6d:dd:cc:8e:6e:
0a:41:61:b9:9e:76:40:a2:b4:e5:9f:32:20:22:fc:6b:98:81:
dc:2e:d5:e0:2a:0b:80:5f:66:c4:3b:2e:64:95:49:96:91:26:
38:fd:96:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 01:35:57 2024 by rpki-client on console-ams.rpki-client.org