Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/jVB4275h_FRHZV5uAD_MMFmrxKA.roa
File: jVB4275h_FRHZV5uAD_MMFmrxKA.roa (raw, json)
Hash identifier: b2RmH1POn+opRLEm8O7w+SEqFzkVVSQAd6HDnL7yRCQ=
Subject key identifier: 8D:50:78:DB:BE:61:FC:54:47:65:5E:6E:00:3F:CC:30:59:AB:C4:A0
Certificate issuer: /CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Certificate serial: 018A175A3DFFAB12D7027E2CF0220E4B89D5
Authority key identifier: 38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/jVB4275h_FRHZV5uAD_MMFmrxKA.roa
Signing time: Mon 21 Aug 2023 09:08:24 +0000
ROA not before: Mon 21 Aug 2023 09:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41290
IP address blocks: 45.147.40.0/24 maxlen: 24
2a0f:c800::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:5a:3d:ff:ab:12:d7:02:7e:2c:f0:22:0e:4b:89:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Validity
Not Before: Aug 21 09:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d5078dbbe61fc5447655e6e003fcc3059abc4a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:10:76:00:8f:24:e4:17:fe:b4:e5:2d:91:0e:
3a:87:80:f7:4a:22:c4:7c:3a:b8:c2:50:71:81:7e:
01:d1:9c:41:0c:d5:6d:a3:8f:f3:32:29:bf:fc:76:
be:93:38:d6:e0:71:d6:20:d1:2e:d0:8d:33:0c:fe:
98:f7:d1:20:22:70:78:67:83:ea:87:cd:fb:2f:8d:
8c:c5:48:e9:e1:1e:f5:6a:bf:c5:f5:76:7f:3f:0c:
82:65:91:4e:51:21:73:b2:30:23:f8:e4:34:bc:01:
db:28:3f:8c:02:0a:7d:9d:87:dd:4d:94:51:1c:53:
c1:fb:f4:54:99:5f:84:a7:be:07:09:a6:23:d2:2a:
2d:42:e9:2c:a2:b2:48:c2:5b:d8:13:3d:ca:22:53:
49:a8:3b:00:ab:7a:99:2b:46:d4:fe:f6:31:e9:5c:
19:5a:5b:4e:b7:e0:40:90:98:43:f4:6d:1f:aa:62:
65:9d:7f:a2:fc:a3:6c:e2:eb:ef:53:cd:ee:93:32:
0e:a2:1c:d8:41:41:8c:c9:9c:ed:38:d9:d6:c8:69:
08:a2:23:fd:df:c7:1d:86:b1:aa:2c:86:36:27:0d:
35:77:b7:49:74:57:79:e0:b0:02:a8:b4:8b:1b:13:
71:68:d4:72:9d:de:5f:7e:16:0b:55:1f:a5:71:0b:
35:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:50:78:DB:BE:61:FC:54:47:65:5E:6E:00:3F:CC:30:59:AB:C4:A0
X509v3 Authority Key Identifier:
keyid:38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/jVB4275h_FRHZV5uAD_MMFmrxKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/OLWdrt1DzJV1rDWVPj85biG7bYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.40.0/24
IPv6:
2a0f:c800::/29
Signature Algorithm: sha256WithRSAEncryption
9a:19:1f:37:22:39:8b:c4:2a:61:ad:a0:e7:75:41:99:71:2f:
12:c2:8e:a4:d1:c4:77:9b:ca:49:20:8f:cc:f7:11:bc:cb:09:
3a:15:b8:15:1b:5d:b2:ba:87:89:1c:23:16:25:0d:09:21:ad:
72:bb:68:9e:35:f5:82:4d:b0:07:b0:a1:4b:b9:9b:60:2e:88:
a5:69:a0:9b:12:62:fb:e2:f2:eb:e4:d4:72:ee:5c:68:9a:78:
0f:79:94:28:33:98:e8:78:83:f0:26:68:e6:9f:81:95:92:96:
5f:00:22:bc:01:31:47:d7:b8:d9:72:f4:44:6f:65:f0:3b:e0:
cf:de:4e:ec:dd:54:0b:d5:38:ec:68:0c:06:2f:9c:c5:b7:c6:
ec:bd:cf:19:7a:ef:e3:bc:90:14:0a:e8:f5:76:f8:02:54:42:
1c:ce:55:a6:fd:c4:69:7a:01:6c:02:43:17:b9:ea:76:f5:64:
c4:2f:88:45:20:52:7a:17:34:cb:e7:9d:54:4d:8d:75:c2:27:
85:ea:1c:2f:13:17:cb:c2:4d:a2:2c:8b:3d:55:76:7d:d5:55:
6c:79:34:61:55:24:fe:5e:39:75:02:ec:78:a8:75:d9:63:42:
f3:c1:25:33:02:9c:ce:73:4e:37:78:eb:b5:4a:a2:1f:bf:11:
31:73:69:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:24 2024 by rpki-client on console-ams.rpki-client.org