Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/1-_lwFe-lsycVquOZ9g2E4C-OQwc.roa
File: 1-_lwFe-lsycVquOZ9g2E4C-OQwc.roa (raw, json)
Hash identifier: uerf2AK9m7XgW8m7U07fWlOqugU58+qW3EChuhDxnlU=
Subject key identifier: FB:F9:70:15:EF:A5:B3:27:15:AA:E3:99:F6:0D:84:E0:2F:8E:43:07
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01856EF8E7B74D6825902435F723AC46ED88
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/1-_lwFe-lsycVquOZ9g2E4C-OQwc.roa
Signing time: Sun 01 Jan 2023 20:14:44 +0000
ROA not before: Sun 01 Jan 2023 20:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210469
IP address blocks: 45.158.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 07:39:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e7:b7:4d:68:25:90:24:35:f7:23:ac:46:ed:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 20:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbf97015efa5b32715aae399f60d84e02f8e4307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:e3:24:7f:7c:da:f3:45:be:22:0a:3a:4f:
e3:bb:75:d0:25:95:58:4d:7e:24:dd:98:cd:a3:9c:
b9:fe:be:14:35:25:33:80:75:ce:30:fe:c6:cd:73:
a5:4a:2d:00:33:1e:ea:5b:b1:eb:57:46:90:d8:4c:
e6:f2:41:95:00:88:3c:f9:3b:3e:d0:7f:fa:22:3d:
69:54:0e:79:11:8f:d3:17:42:87:25:6e:14:7a:7f:
80:61:2e:e2:34:5d:e3:38:c3:4a:ba:ef:97:b5:5e:
86:bc:74:38:7a:ef:a1:8b:69:56:09:26:7e:1e:d7:
a3:4d:8c:4a:26:1c:fe:b2:67:71:55:4a:50:9a:a6:
74:26:f9:82:b6:fe:29:c7:ad:2f:6a:5e:30:b8:cc:
66:01:35:06:e8:37:db:b8:0a:73:46:a2:dd:0f:c2:
45:01:42:d9:71:51:42:53:af:97:29:45:52:f4:77:
64:a2:b3:54:ce:c4:82:b7:3c:e3:16:1d:29:48:b6:
e6:d0:a6:50:56:54:9c:83:58:37:76:9c:97:59:d1:
4f:07:73:81:bb:81:30:ba:5e:4c:34:bf:41:ba:c1:
30:4a:e2:d4:5f:7c:ae:4c:ac:fa:5b:a2:e2:c1:26:
f0:6c:a1:49:98:47:32:e1:f1:32:7e:00:b2:a2:f2:
4b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F9:70:15:EF:A5:B3:27:15:AA:E3:99:F6:0D:84:E0:2F:8E:43:07
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/1-_lwFe-lsycVquOZ9g2E4C-OQwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.76.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d6:16:31:1a:f2:8c:26:d5:11:b0:a2:c5:b4:50:56:10:92:
6c:3b:50:a2:73:47:72:2d:53:1c:28:fb:a3:32:5d:fc:fe:95:
51:e9:62:56:13:e5:7b:28:bf:d8:44:00:2f:48:0f:18:9b:19:
fc:75:e9:89:f8:92:56:b1:06:69:54:eb:08:ab:92:9f:f1:b6:
c5:a3:78:03:e8:56:7a:9a:c7:c8:2e:88:30:c9:2d:ac:e5:ca:
32:28:ad:fe:69:e0:3b:60:5d:05:43:43:ce:fd:d2:5d:01:d7:
fd:27:37:83:15:61:d3:95:0e:b5:21:66:49:48:07:2e:b4:d9:
30:e7:8e:cc:24:03:63:07:a9:5d:22:48:00:e6:16:29:f8:2d:
9e:d3:5e:40:e6:e7:db:92:e0:7d:da:42:81:7e:58:98:36:36:
83:84:a1:60:0c:72:c8:c4:9d:7b:e3:46:b7:25:32:90:e2:b5:
c5:44:df:0a:d3:9c:80:5f:43:e3:12:ef:e0:64:51:75:f0:05:
33:81:db:14:aa:91:61:26:43:49:d5:ab:2b:c7:43:60:f2:4f:
55:27:9a:6d:0d:da:25:e6:b7:b4:94:40:5c:f4:6d:bf:dc:a6:
cc:f8:90:7a:76:fa:11:7a:6f:96:0c:00:46:84:ab:46:6b:17:
1b:e5:1c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org