Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/z25bGtGBiNSRiaVFX2rcVvw0hCo.roa
File: z25bGtGBiNSRiaVFX2rcVvw0hCo.roa (raw, json)
Hash identifier: NO16neUOHdXMSeOobavUIyM6RBjJCn8NgVBZP/xHQzo=
Subject key identifier: CF:6E:5B:1A:D1:81:88:D4:91:89:A5:45:5F:6A:DC:56:FC:34:84:2A
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018A4190D1B432EDA03D4B86A167775DDD40
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/z25bGtGBiNSRiaVFX2rcVvw0hCo.roa
Signing time: Tue 29 Aug 2023 13:52:04 +0000
ROA not before: Tue 29 Aug 2023 13:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41745
IP address blocks: 45.144.232.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 30 Aug 2023 19:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:90:d1:b4:32:ed:a0:3d:4b:86:a1:67:77:5d:dd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Aug 29 13:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf6e5b1ad18188d49189a5455f6adc56fc34842a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:98:82:ba:c3:b2:cf:c3:a9:3a:37:c1:1e:dc:
db:60:bc:92:dc:c6:43:01:f3:c1:1c:66:e9:78:32:
85:66:f2:8d:79:44:5f:92:99:50:15:ff:2a:24:c0:
6e:1b:ee:77:9d:0a:a8:25:04:df:fb:c6:b4:0e:cb:
b8:67:ba:6a:c3:9b:ef:bc:d2:ec:bc:44:da:6f:bf:
3e:36:bb:b9:49:c3:15:dc:34:ef:68:fe:45:23:d3:
07:2a:8e:8e:3d:67:67:9b:4d:83:32:16:d7:8d:eb:
1d:04:6f:4d:31:0f:e4:59:90:c8:52:38:13:16:27:
03:dc:36:36:92:7d:fd:54:c9:8f:7e:48:c3:de:bf:
e1:c0:c7:19:6d:26:c7:72:b2:45:53:fd:aa:ee:ae:
90:b6:0a:31:cc:63:9d:2b:11:59:7b:7f:1c:81:46:
1e:34:87:95:ef:e3:1b:85:33:56:de:92:da:c7:10:
38:11:97:79:52:18:f2:8b:18:bf:52:5d:55:a4:e2:
2f:7b:88:23:35:0a:12:13:63:b8:c0:ea:7b:04:7c:
77:05:c2:77:89:13:85:6e:86:c9:0b:98:6c:92:26:
8f:d6:10:04:6f:7c:7b:8d:27:40:f2:1e:07:ab:94:
ae:35:ec:8d:f3:25:b4:46:4c:30:53:8b:38:27:f9:
5f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6E:5B:1A:D1:81:88:D4:91:89:A5:45:5F:6A:DC:56:FC:34:84:2A
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/z25bGtGBiNSRiaVFX2rcVvw0hCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.232.0/24
Signature Algorithm: sha256WithRSAEncryption
17:83:ab:e6:bf:72:c8:14:fd:e5:44:3d:b4:e6:46:25:dd:3f:
b1:8b:99:6e:a7:8b:91:b3:cb:ee:d4:73:3d:af:89:c1:4b:e7:
50:39:45:ad:4f:80:b1:a8:cd:15:5a:7a:4e:0c:75:2a:f1:5e:
df:b5:24:4d:58:8e:56:9f:8e:7a:b3:e4:4e:6b:1e:91:ce:4a:
cf:07:a4:da:05:2d:4e:35:07:4b:c8:3c:3a:54:5c:07:e5:bc:
b2:6d:21:d6:43:dd:72:5f:22:42:cb:11:d4:16:61:59:86:7d:
10:b0:ba:cd:7a:29:f5:13:7d:a1:01:45:36:c7:3a:50:94:c0:
14:d8:cd:64:5f:ac:e8:18:95:27:d1:e8:a1:c5:e6:3f:34:a3:
1e:ba:aa:92:1d:d2:29:cf:b5:d2:23:c6:81:eb:6f:18:52:ac:
66:e3:aa:c4:3b:8b:88:a8:4c:7d:40:11:f7:a6:27:25:8f:4f:
f3:92:b3:fe:6e:42:01:df:0e:27:f1:52:27:a8:ff:a2:78:35:
62:4c:a8:17:8c:83:d1:08:55:e0:d4:fa:ff:47:ac:67:73:15:
9c:25:70:1e:c7:f8:48:2f:e9:1d:72:3a:24:4e:32:6f:27:0d:
27:6d:ee:4c:c1:0c:36:a1:f1:e9:9e:b0:88:0d:87:83:d3:df:
e6:21:35:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org