Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/jVZ1QIO5M0SKCQwjUmdP3buEPH4.roa
File: jVZ1QIO5M0SKCQwjUmdP3buEPH4.roa (raw, json)
Hash identifier: 4eTCR7XVw2AtJBlez3Lf2uLGCZfefSX8+9FvrTcbxw0=
Subject key identifier: 8D:56:75:40:83:B9:33:44:8A:09:0C:23:52:67:4F:DD:BB:84:3C:7E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E79EAA2A3D2D80B0D1C6AC7C09878
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/jVZ1QIO5M0SKCQwjUmdP3buEPH4.roa
Signing time: Mon 02 Jan 2023 06:15:00 +0000
ROA not before: Mon 02 Jan 2023 06:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210558
IP address blocks: 45.154.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:79:ea:a2:a3:d2:d8:0b:0d:1c:6a:c7:c0:98:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d56754083b933448a090c2352674fddbb843c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:39:4b:57:32:20:cb:ea:6d:85:92:01:08:7f:
ef:4d:e6:2a:a6:b5:63:12:9d:96:eb:66:b0:35:6d:
dd:58:ab:d4:7a:e3:5a:7b:fe:a6:17:ac:22:4f:9c:
a2:18:74:11:d1:50:9b:e4:56:95:d6:40:61:6a:8f:
64:f5:54:0d:08:bb:21:c6:32:4c:76:66:94:3c:04:
45:aa:7e:00:e3:32:41:a6:1f:9a:a1:83:84:1f:02:
7c:fb:56:04:b2:e7:5a:3c:ac:3a:c1:a0:37:36:13:
7c:f9:48:81:a0:5e:88:8e:25:35:df:96:61:09:0d:
7b:24:8e:fa:f5:ef:ad:c4:13:bf:16:84:2d:f0:1b:
8a:8f:7c:41:64:11:5b:39:12:04:c8:25:7e:c2:76:
c2:fd:cd:34:fa:f7:fd:b5:20:bb:4e:39:a0:1b:e4:
f2:8c:d9:99:d4:80:9e:59:a7:40:1e:e7:b7:37:ac:
64:dd:e7:97:dc:d1:33:ae:55:12:aa:07:45:19:4e:
25:b3:10:2f:1c:0f:bc:c6:6d:d6:d8:7a:7a:d9:58:
08:ba:e5:0d:11:32:22:e3:50:a1:3d:db:99:e7:b7:
0f:24:6e:bf:01:f2:b9:3c:d4:d0:10:8f:01:77:e2:
e4:b1:31:45:d8:51:06:7a:2a:bd:63:38:f6:4e:d3:
a3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:56:75:40:83:B9:33:44:8A:09:0C:23:52:67:4F:DD:BB:84:3C:7E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/jVZ1QIO5M0SKCQwjUmdP3buEPH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.98.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ef:ce:e1:31:2a:7f:9a:2f:e4:1f:52:c2:bd:4a:be:d2:79:
40:70:99:ba:0e:e9:8f:e3:1b:4c:65:e0:2b:f2:0a:60:7e:03:
c4:a3:a7:69:51:ff:ec:f4:8a:d1:ca:f9:06:9c:07:ac:90:23:
a5:5c:1e:a5:fb:80:34:fa:e3:d5:73:ee:55:57:cb:07:e2:c7:
0f:5b:37:f0:e3:d9:4f:41:d3:fa:57:f6:5d:fa:63:74:e8:01:
85:dd:75:f8:14:51:1c:53:32:a3:d8:2e:ea:44:50:e8:86:30:
66:53:a9:44:73:4e:1c:fd:cb:6d:d7:9d:95:ce:41:35:6c:52:
ee:04:f9:1a:2e:5e:d8:b6:a3:84:d8:dc:c7:4d:37:9a:46:cb:
ef:b8:8b:dc:0f:af:49:f0:2d:bc:f6:42:94:65:1c:f4:90:cd:
19:65:54:63:ed:00:a3:a3:d7:73:2b:79:03:b3:76:36:8e:bd:
8f:90:83:3c:a6:bd:24:80:48:54:ee:09:bf:4a:9d:10:6a:a3:
35:6e:d2:81:ee:91:c2:5a:79:6e:fd:ec:6a:47:63:08:d0:47:
d2:01:a6:8c:5c:ca:ca:e7:15:95:eb:e2:c1:f7:96:32:b0:ba:
39:41:81:60:3a:6f:a6:ec:17:2d:f2:70:79:b1:4f:d7:7f:06:
b7:74:f0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org