Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-UvnIj7pUDcSirj0ueqn_2QUGTU.roa
File: 1-UvnIj7pUDcSirj0ueqn_2QUGTU.roa (raw, json)
Hash identifier: IGRshozHxaxm/Avh/CO/IJlB4JCvFNN74uQdeFITNZc=
Subject key identifier: F9:4B:E7:22:3E:E9:50:37:12:8A:B8:F4:B9:EA:A7:FF:64:14:19:35
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E8F350BDE169EAA3169E98B644294
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-UvnIj7pUDcSirj0ueqn_2QUGTU.roa
Signing time: Mon 02 Jan 2023 06:15:06 +0000
ROA not before: Mon 02 Jan 2023 06:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 45.154.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Jun 2023 16:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:8f:35:0b:de:16:9e:aa:31:69:e9:8b:64:42:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f94be7223ee95037128ab8f4b9eaa7ff64141935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:43:d1:2f:bd:cd:10:52:96:eb:83:a6:42:94:
37:fe:6a:60:03:f9:74:84:aa:56:db:98:92:ed:b4:
82:9b:0e:f2:16:2c:11:2b:8f:b9:16:84:97:d0:a8:
30:95:8d:7b:57:5e:32:db:6b:32:a5:08:be:2a:26:
b0:e3:d7:ab:db:83:84:5b:26:61:12:3d:2f:13:c6:
71:2a:a3:5b:bd:1f:ae:f9:ef:d5:91:dc:2a:eb:af:
23:8d:66:d3:43:fc:8f:30:c2:4b:35:4a:af:1a:52:
1d:f8:06:98:1c:61:cc:1b:8d:34:63:d3:3c:41:40:
cf:67:1f:44:73:6f:ca:5a:db:07:ce:ea:13:3b:44:
bc:d5:6f:55:8a:77:cc:1c:21:ce:69:69:7a:35:4b:
fe:51:37:92:90:ec:5d:e6:df:d3:04:24:51:2d:bf:
5c:da:db:27:5b:cb:aa:e2:e6:1d:51:e9:db:d2:b8:
e8:d6:5a:42:b4:26:42:6e:72:15:65:94:41:28:28:
f3:de:bc:d6:37:fe:a2:57:a2:9a:82:4e:68:eb:95:
eb:50:b3:ed:da:4f:e8:98:36:94:0d:e7:88:be:87:
96:79:ac:1a:59:cb:ce:77:9b:0a:30:f1:95:89:b8:
41:10:db:6b:8c:4d:73:40:cf:59:f7:35:a4:4b:98:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4B:E7:22:3E:E9:50:37:12:8A:B8:F4:B9:EA:A7:FF:64:14:19:35
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-UvnIj7pUDcSirj0ueqn_2QUGTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:8b:fa:99:40:6f:af:86:1c:0a:c2:58:9e:f2:89:fc:fb:cb:
6c:3c:9d:05:b9:15:fb:e0:e1:9d:bf:2f:e5:01:eb:1d:d0:39:
1d:63:21:95:87:ed:8c:5a:3d:ec:72:ac:c5:36:77:7b:32:66:
fb:97:bd:f2:cc:1c:89:93:d7:84:66:c4:34:55:a7:f3:a9:8a:
e9:8f:45:58:aa:6a:a8:f2:eb:1c:47:8b:11:a1:be:83:11:ab:
9f:91:96:fe:3a:46:a3:51:3c:2d:ac:31:a1:cd:5f:5d:af:2c:
4d:eb:f3:88:a4:71:66:b8:a0:01:0e:49:bf:4a:6b:d9:04:a1:
36:47:c7:d6:5d:68:ea:ff:9f:a0:13:55:29:b6:fe:71:4d:2d:
56:99:3e:a1:cd:35:a0:e3:59:30:0c:4c:b7:d2:a8:90:cd:50:
aa:d0:ee:e9:9e:e6:72:d4:bf:c3:7a:ef:49:ca:ba:28:8b:b9:
68:4b:5e:32:e2:ad:0c:7d:34:04:cb:4c:ed:a7:bf:95:41:77:
f9:c3:a9:7a:7e:d7:b0:7a:71:44:69:f2:d4:36:cf:eb:58:11:
cc:76:ad:78:0a:f7:24:b2:99:48:95:a2:d1:2a:9c:a8:8c:86:
75:d6:7f:e2:ee:6f:de:d1:3e:63:eb:e6:0b:9c:43:25:49:0e:
c4:df:d9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org