Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2La2bN_izKjMZPoGfOTs49lTgM.roa
File: Q2La2bN_izKjMZPoGfOTs49lTgM.roa (raw, json)
Hash identifier: Bzkli0z630UkRPYnLRGMqwM0KCytBP+siOuW6qT6bXw=
Subject key identifier: 43:62:DA:D9:B3:7F:8B:32:A3:31:93:E8:19:F3:93:B3:8F:65:4E:03
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0185DF8ADC09CD5C63E1CE6E268A05C036E3
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2La2bN_izKjMZPoGfOTs49lTgM.roa
Signing time: Mon 23 Jan 2023 16:51:37 +0000
ROA not before: Mon 23 Jan 2023 16:51:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200193
IP address blocks: 45.154.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 05:46:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:8a:dc:09:cd:5c:63:e1:ce:6e:26:8a:05:c0:36:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 23 16:51:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4362dad9b37f8b32a33193e819f393b38f654e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:d8:22:24:30:40:81:58:97:36:d0:81:e1:
69:ca:e6:bc:6a:ce:41:fa:4a:51:bd:df:d2:b2:e8:
13:af:9e:a3:28:b0:71:2c:45:ba:4d:02:97:cb:b1:
76:b1:ab:88:e1:74:6f:e9:3e:e7:95:86:aa:e1:e3:
ae:0b:b5:e7:93:1d:98:48:d6:76:a3:3d:db:b7:be:
b1:a5:6b:90:dd:0d:e5:ff:da:25:a1:dd:25:15:ff:
54:2e:93:62:30:12:04:bc:c0:e4:ea:86:8f:18:43:
d5:a5:41:4a:e6:f4:1a:94:b9:15:2a:1d:9b:12:38:
38:96:37:8b:71:c1:b3:a7:27:a8:35:2d:56:ca:7d:
e2:70:ee:92:83:d3:b6:57:e1:32:9c:53:00:3a:67:
1b:f1:2e:d5:3c:4c:ed:a1:35:0c:62:31:e3:e9:25:
e7:e5:6f:06:ce:5d:c1:27:61:43:cd:60:27:15:a9:
36:2e:e5:a7:15:8e:bf:28:f4:75:41:9d:12:aa:dd:
6f:31:1e:a2:b7:4a:c2:12:a5:56:62:83:f0:e3:5c:
83:d4:2c:2d:e1:17:91:25:0a:03:01:48:24:a9:90:
88:aa:1d:a4:fd:7b:ab:33:16:ff:61:c1:e0:f1:62:
7b:a7:c6:39:47:bc:aa:fb:4a:1f:41:90:26:eb:a3:
e6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:62:DA:D9:B3:7F:8B:32:A3:31:93:E8:19:F3:93:B3:8F:65:4E:03
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2La2bN_izKjMZPoGfOTs49lTgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.156.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:99:5b:cd:a3:59:de:7d:90:27:7c:86:66:23:20:5a:17:4a:
04:73:74:ec:95:26:35:f4:32:a0:23:3a:04:b2:8b:37:a4:3e:
0c:3e:33:98:13:71:68:0b:fc:01:29:a7:75:48:64:86:8d:c0:
de:09:f2:9c:21:a3:66:59:0c:ea:84:98:98:72:bd:63:a1:d8:
c1:d7:d9:d1:0d:8b:73:a8:3d:03:7b:43:d0:e0:9d:d1:bf:a0:
c4:98:15:13:ba:06:a3:ea:a6:59:f2:88:4b:d6:d5:90:d1:21:
83:8f:38:50:e4:5f:cd:fe:a8:aa:4a:fc:24:32:b1:09:50:cb:
6f:49:f9:c4:85:2a:7d:2a:e0:26:f0:c8:19:ef:dd:0f:e9:3f:
72:ce:73:05:59:96:3b:b1:df:3f:13:78:7b:9c:96:ec:b8:72:
6b:e3:d1:2f:41:af:27:91:72:86:f8:a2:23:a1:ea:3a:93:a7:
41:f7:84:01:d9:bc:09:86:97:18:e5:62:d1:a1:d1:63:a1:8e:
88:44:f7:2d:33:67:9f:de:11:30:d9:ed:64:ce:2e:0a:69:09:
ee:e5:a1:7b:21:07:1c:dd:a8:30:e0:04:c9:cb:14:b2:53:77:
f5:34:e0:b9:7c:a2:44:bc:97:9c:18:3b:26:c4:16:37:33:38:
07:30:5d:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org