Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/suxbfBDv6U8os-0LcyJZBiWAHLE.roa
File: suxbfBDv6U8os-0LcyJZBiWAHLE.roa (raw, json)
Hash identifier: 9NzMxgKgEjY6HbaCUb2/XOqHlKbZoxItCK9Pj4GZGLM=
Subject key identifier: B2:EC:5B:7C:10:EF:E9:4F:28:B3:ED:0B:73:22:59:06:25:80:1C:B1
Certificate issuer: /CN=d4c3b12c8d635190ec928437bbd6cb0e8c38f9a9
Certificate serial: 018E0A41FF2F822A1CF06FFB4F244B712679
Authority key identifier: D4:C3:B1:2C:8D:63:51:90:EC:92:84:37:BB:D6:CB:0E:8C:38:F9:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MOxLI1jUZDskoQ3u9bLDow4-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/suxbfBDv6U8os-0LcyJZBiWAHLE.roa
Signing time: Mon 04 Mar 2024 16:18:01 +0000
ROA not before: Mon 04 Mar 2024 16:18:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215518
IP address blocks: 45.151.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 13:37:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:41:ff:2f:82:2a:1c:f0:6f:fb:4f:24:4b:71:26:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c3b12c8d635190ec928437bbd6cb0e8c38f9a9
Validity
Not Before: Mar 4 16:18:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2ec5b7c10efe94f28b3ed0b7322590625801cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:47:d1:68:ac:25:57:4c:d6:f5:1c:fb:6d:0f:
d4:57:f6:a7:2b:b5:b5:e7:06:21:47:19:62:34:51:
e0:1c:22:f3:47:82:af:4a:01:29:78:95:78:41:f3:
75:c2:33:8f:4c:d3:2f:10:84:14:73:7d:db:1b:3d:
7f:1b:c7:51:0f:e7:63:7c:cf:6c:dc:82:88:62:8f:
1d:cb:24:a5:4b:a7:2d:c5:3c:42:43:cc:85:04:c1:
19:36:8c:08:72:c5:aa:f1:56:74:ad:73:93:af:1b:
2f:40:79:53:23:c5:a2:80:19:2c:d6:91:6e:e4:6c:
84:26:f0:cf:67:7a:49:2d:26:f4:28:04:8b:30:13:
e3:1a:2b:b0:f3:bb:2d:3c:b3:e2:ed:95:ee:e4:40:
f0:13:3d:d1:99:e5:bc:f4:d2:ca:11:68:df:27:47:
2c:84:fe:39:aa:5e:b1:eb:92:79:9b:27:c1:ff:07:
9f:14:77:f1:8d:0f:9c:66:a9:07:f4:fc:a1:41:0d:
3d:6b:3f:e5:50:ee:a4:f8:95:9a:21:34:69:81:79:
79:c9:e2:83:93:0c:cb:5f:4f:93:78:5e:e4:a3:ba:
64:97:4d:34:fa:48:1c:23:99:15:93:79:7f:51:64:
de:2c:70:e8:e5:7b:ac:a7:7a:97:2c:26:15:72:7d:
f3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EC:5B:7C:10:EF:E9:4F:28:B3:ED:0B:73:22:59:06:25:80:1C:B1
X509v3 Authority Key Identifier:
keyid:D4:C3:B1:2C:8D:63:51:90:EC:92:84:37:BB:D6:CB:0E:8C:38:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MOxLI1jUZDskoQ3u9bLDow4-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/suxbfBDv6U8os-0LcyJZBiWAHLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/1MOxLI1jUZDskoQ3u9bLDow4-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.94.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:54:30:f1:20:47:6a:de:c8:86:85:98:56:8d:0a:51:64:de:
95:ae:1e:32:ec:1a:a1:63:d6:e8:18:c2:82:3c:e2:41:2f:49:
91:34:32:2b:a2:93:60:8b:e8:ec:c6:fc:39:59:7f:b3:06:53:
bb:08:06:fe:55:23:29:9d:47:d4:8a:ab:f2:33:d6:e7:18:33:
20:e3:63:13:63:1b:03:fc:24:a3:b7:eb:8f:e1:d2:df:4d:99:
af:95:b6:1b:68:06:48:1b:9d:de:8f:04:56:7c:98:b8:c3:c3:
0b:ec:6a:a5:3d:fb:dd:44:b0:99:32:4f:14:26:d9:bc:d5:07:
ee:9e:e0:c8:76:18:f5:f3:23:99:c4:a7:e5:62:14:60:c6:f4:
8e:d0:52:9c:18:5f:b7:6f:1c:a4:5f:fc:a8:70:fa:39:2a:e1:
c4:d4:96:74:5d:ca:f2:e0:eb:c5:1f:06:60:3d:c3:e5:5b:ee:
2b:88:42:96:95:88:3d:85:c6:ae:ab:66:db:0a:85:54:89:cb:
a8:9b:bd:eb:60:08:96:85:45:69:6c:69:20:88:d8:d6:5f:ba:
7b:5a:29:4a:8c:e1:15:6a:75:c2:87:1e:e7:1c:c9:e1:02:aa:
44:23:f6:85:35:f4:53:9a:f3:55:34:60:76:97:ae:41:48:5b:
2c:24:7f:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 16:45:47 2024 by rpki-client on console-ams.rpki-client.org