Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/sq8vtL4tHHpzHQbO_YQlRoMfqF8.roa
File: sq8vtL4tHHpzHQbO_YQlRoMfqF8.roa (raw, json)
Hash identifier: RxriQLu+Yzg1IWYtZaUMReUQv4wtRoCmioiGcHm84g8=
Subject key identifier: B2:AF:2F:B4:BE:2D:1C:7A:73:1D:06:CE:FD:84:25:46:83:1F:A8:5F
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 019194F3FA1B48D535F9930A42DE350DF459
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/sq8vtL4tHHpzHQbO_YQlRoMfqF8.roa
Signing time: Tue 27 Aug 2024 17:48:22 +0000
ROA not before: Tue 27 Aug 2024 17:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215402
IP address blocks: 45.150.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 15:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:f3:fa:1b:48:d5:35:f9:93:0a:42:de:35:0d:f4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Aug 27 17:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2af2fb4be2d1c7a731d06cefd842546831fa85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2e:d3:99:83:61:03:59:7c:e4:44:6a:69:5b:
21:51:2c:2e:86:f0:50:b1:96:60:32:2c:40:af:6b:
bb:4f:0d:9c:39:ef:ee:85:58:da:b0:ba:d9:f7:2c:
0d:e6:ec:2c:7c:6b:54:47:82:f9:e1:4d:79:f5:0e:
79:ef:5c:01:51:b9:2f:1e:4a:2a:dd:6a:e4:11:b4:
42:a1:6d:6b:6d:b1:f1:ad:2b:6f:94:b1:aa:61:13:
14:8a:aa:61:96:51:1d:ea:b9:a8:f3:19:d4:37:76:
fd:25:b0:aa:40:c0:be:5a:15:50:67:81:26:4f:17:
58:bf:9b:7d:9d:24:7a:82:83:f5:b4:f2:46:23:fc:
13:11:8e:a9:f3:29:39:06:80:cb:c4:c8:08:2d:d2:
a2:91:1d:27:84:d1:46:4d:9f:9d:97:8d:57:0c:11:
b4:63:c6:50:96:26:c6:e3:4f:93:f4:a3:f3:84:6c:
86:9a:c6:03:f8:95:77:eb:83:18:5b:2e:c4:95:ba:
60:6d:e5:e2:f2:a7:86:6c:71:ca:58:04:39:77:f3:
83:86:0b:76:d7:23:18:98:a5:41:2a:1c:72:88:c1:
a6:e0:34:67:c4:fa:12:b0:87:2f:15:f5:4c:26:67:
60:a5:98:98:3d:c8:5f:0f:d7:69:67:f3:06:05:8d:
2c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AF:2F:B4:BE:2D:1C:7A:73:1D:06:CE:FD:84:25:46:83:1F:A8:5F
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/sq8vtL4tHHpzHQbO_YQlRoMfqF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.66.0/24
Signature Algorithm: sha256WithRSAEncryption
83:af:6e:5c:68:c9:bb:9d:b5:da:de:92:45:0b:19:a3:91:ff:
39:a5:c8:00:6c:91:ed:66:7a:00:01:51:c6:fb:c6:a3:c1:ab:
8e:b5:3a:77:7e:6f:ff:1b:2a:b4:2c:4b:d0:c2:70:c3:69:95:
e3:97:52:92:0a:66:ec:60:ad:10:b2:87:cc:04:43:eb:ef:45:
f1:b0:c4:84:82:b6:90:64:79:a1:59:95:d6:27:fe:8a:4f:2c:
c5:7a:9e:55:02:56:6c:59:81:d8:48:f9:58:92:97:6f:33:73:
e7:fb:3a:97:42:95:e2:fd:b7:a6:22:f5:9a:b5:f5:21:c2:70:
89:9f:e3:0f:a5:60:04:fe:c6:1a:54:99:ca:ef:68:14:78:a1:
24:8f:cc:72:1b:30:51:45:76:87:0b:87:46:a8:86:c4:ad:a5:
ae:97:6c:11:9b:db:5e:66:c6:b7:40:e3:09:33:3e:18:88:dd:
e8:2e:ca:0b:fc:2b:36:a6:cc:d6:ff:79:59:54:93:d3:78:af:
dc:7e:27:d3:5d:76:cb:c5:5d:22:f5:12:58:22:5f:51:ab:42:
53:07:48:41:11:63:5e:ea:7a:fa:81:c2:f8:53:ba:77:3c:5d:
ea:84:53:eb:37:88:9a:c7:e2:7b:7d:29:4f:29:ed:5c:59:34:
36:14:40:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 18:15:30 2024 by rpki-client on console-fra.rpki-client.org