Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/orK4s2U61LwIIOZvMDoDJ8fPFYw.roa
File: orK4s2U61LwIIOZvMDoDJ8fPFYw.roa (raw, json)
Hash identifier: 2PKhb1evW7qZUwq9ZP8kpUVUwdDI2Hn6tuBAH03JrDQ=
Subject key identifier: A2:B2:B8:B3:65:3A:D4:BC:08:20:E6:6F:30:3A:03:27:C7:CF:15:8C
Certificate issuer: /CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Certificate serial: 01931229600EF306BA7351CFD965E9AF69E6
Authority key identifier: AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/orK4s2U61LwIIOZvMDoDJ8fPFYw.roa
Signing time: Sat 09 Nov 2024 18:22:01 +0000
ROA not before: Sat 09 Nov 2024 18:22:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34872
IP address blocks: 45.152.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 18:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:12:29:60:0e:f3:06:ba:73:51:cf:d9:65:e9:af:69:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Validity
Not Before: Nov 9 18:22:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2b2b8b3653ad4bc0820e66f303a0327c7cf158c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:eb:12:20:96:f1:5b:e4:f6:cd:31:79:63:82:
53:9e:5c:d6:c9:66:41:75:4d:19:21:11:b3:38:d6:
ea:d5:f2:e6:e4:62:ef:78:3a:f4:d8:53:f6:cb:34:
48:5e:76:ed:cc:4c:ab:a0:eb:a4:b5:76:25:3e:60:
fa:7c:ec:86:79:e0:c2:82:05:46:df:e4:c4:7f:73:
04:00:79:0f:15:80:99:3d:58:58:17:71:e2:55:f1:
83:f0:b8:99:91:f1:f8:94:5f:06:cd:ff:1a:ef:9b:
c7:e6:60:70:58:60:38:a8:b6:b1:a7:55:01:3e:b6:
53:86:9a:26:84:3b:e9:b8:5e:bc:3b:3b:70:fe:b9:
d4:e2:f7:c3:c8:ca:3c:40:63:a3:c8:1c:45:75:08:
ed:58:e0:76:6c:d3:50:56:aa:6d:cf:24:a7:a6:70:
36:98:11:d7:1c:c0:84:d2:96:05:7d:e8:46:64:03:
69:fd:ea:95:cd:2d:76:bf:b2:98:43:18:2c:83:1b:
25:a6:84:f6:15:22:30:e6:05:fb:35:a9:c5:a8:a8:
d2:f8:ce:3f:90:32:5e:80:d0:a4:4d:82:b0:09:7c:
80:b1:1b:bd:bf:e1:a6:7a:fa:b1:fe:ac:63:54:dc:
8d:2a:ea:99:f5:cc:5c:63:32:5e:db:ff:ef:63:57:
1e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:B8:B3:65:3A:D4:BC:08:20:E6:6F:30:3A:03:27:C7:CF:15:8C
X509v3 Authority Key Identifier:
keyid:AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/orK4s2U61LwIIOZvMDoDJ8fPFYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/qvSWmELenEweGldZ2Y0e1cDWLvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.68.0/24
Signature Algorithm: sha256WithRSAEncryption
46:18:13:49:a6:24:29:84:00:f0:3e:0d:ad:02:97:8f:49:3a:
c6:25:9c:8c:66:53:7c:e5:03:00:08:11:06:b7:7f:84:b2:fa:
5c:29:85:6e:ec:69:0d:94:01:f5:b5:6b:9c:c1:2d:0f:bd:78:
34:db:9d:a6:d5:f4:46:e5:61:1d:7f:23:90:eb:70:11:f8:06:
1e:cd:c5:88:c6:7b:6f:94:49:2c:c1:32:56:e9:fa:45:87:c4:
4f:7a:a7:2c:e5:46:d7:e5:91:cd:a3:20:f2:53:32:ee:72:74:
d0:3a:5b:b6:df:6a:f0:dc:23:97:17:75:ca:2e:bb:1e:3e:4e:
ba:45:8d:40:08:e4:12:b0:cc:15:5d:f8:0f:5a:0a:25:4c:89:
0f:d5:42:f0:23:ed:62:9f:ec:be:00:d4:95:fa:4a:d0:d4:8e:
ee:a0:33:06:fc:23:ad:30:f5:1a:79:ab:4b:88:e3:f8:fb:37:
2f:15:4a:4d:dc:3b:bc:86:85:de:f8:5e:c1:8c:f8:0d:fe:94:
75:4f:6a:7c:c9:ef:50:18:1f:53:bd:99:5b:f4:2b:b7:88:59:
1f:1f:88:c3:f2:b0:0a:cb:73:ea:5c:95:b8:5f:ca:bb:b6:b4:
3f:34:14:d8:c4:a4:c8:b7:1a:58:f9:d0:bd:c7:6e:66:ee:d3:
32:e3:56:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 9 20:40:46 2024 by rpki-client on console-fra.rpki-client.org