Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/41dE672ZJEtiHHDH7aYA_j9UVDc.roa
File: 41dE672ZJEtiHHDH7aYA_j9UVDc.roa (raw, json)
Hash identifier: BuHRQtxYC7syROcyEGyQ+iJKGudCdK2iXfSMcRIQZ3c=
Subject key identifier: E3:57:44:EB:BD:99:24:4B:62:1C:70:C7:ED:A6:00:FE:3F:54:54:37
Certificate issuer: /CN=54b48731e29f27d687576d6863adbda080709bfe
Certificate serial: 018CC87155D9B462DAB804034F1860E74D79
Authority key identifier: 54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/41dE672ZJEtiHHDH7aYA_j9UVDc.roa
Signing time: Tue 02 Jan 2024 04:31:59 +0000
ROA not before: Tue 02 Jan 2024 04:31:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201115
IP address blocks: 45.157.175.0/24 maxlen: 24
2a13:3840::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 22 May 2024 14:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:55:d9:b4:62:da:b8:04:03:4f:18:60:e7:4d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b48731e29f27d687576d6863adbda080709bfe
Validity
Not Before: Jan 2 04:31:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e35744ebbd99244b621c70c7eda600fe3f545437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:29:87:0e:7c:98:73:be:89:4d:8e:54:03:
fd:ed:09:9d:0b:5f:5c:5a:f7:9c:1f:a2:df:9d:06:
48:3a:5c:23:1c:2a:a6:f0:74:07:d3:a9:1d:45:75:
52:fe:7a:4c:4a:b8:92:2b:17:23:ad:f9:f3:93:e8:
b5:d3:51:0e:f2:f6:86:0f:01:77:90:0c:a3:26:de:
e0:88:6e:0c:99:9c:7a:0c:b8:d0:bc:be:d0:95:c7:
7a:5d:a4:1c:63:f8:90:bc:54:f4:5b:9f:2a:20:e4:
92:9a:ae:5d:48:e1:3e:ec:0e:0a:91:83:0d:9b:69:
f6:09:61:92:5c:0d:a5:3c:1a:81:ff:5d:24:25:fc:
a5:2b:ba:4d:f8:2d:12:65:28:e5:1a:ec:16:42:c0:
03:31:8e:75:38:db:1a:03:a0:57:2e:cf:b9:3a:6a:
66:3e:ed:1d:d8:e9:7e:14:4a:18:91:cb:aa:9d:6e:
8d:4d:f4:33:11:80:6b:5f:dd:d1:e1:56:f0:80:11:
c0:a7:73:1f:c5:37:45:84:37:31:3b:98:34:b1:6c:
c3:f6:8e:8d:b1:b8:32:04:53:73:bf:8c:48:0c:89:
91:0c:e2:ad:6e:f0:26:c3:23:84:63:a6:f6:2a:f4:
a6:f1:b4:c3:a5:ca:31:6d:56:83:0f:9e:4d:dc:e4:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:57:44:EB:BD:99:24:4B:62:1C:70:C7:ED:A6:00:FE:3F:54:54:37
X509v3 Authority Key Identifier:
keyid:54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/41dE672ZJEtiHHDH7aYA_j9UVDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/VLSHMeKfJ9aHV21oY629oIBwm_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.175.0/24
IPv6:
2a13:3840::/40
Signature Algorithm: sha256WithRSAEncryption
67:81:65:ce:40:4f:b2:ea:14:21:a3:4f:5f:23:e6:d6:5a:19:
72:2c:f3:18:32:58:ab:a6:50:0e:61:ce:09:2a:fc:7d:61:6a:
11:74:42:37:b2:cc:db:0b:46:a7:1e:47:fd:ee:d0:58:ab:af:
12:3b:80:b2:50:3c:ec:af:af:e8:2f:e5:fb:e4:0a:59:c8:ad:
9f:3a:bc:33:97:de:80:43:55:2d:3b:8c:a9:2a:c5:93:01:3f:
80:c5:66:0c:a0:b1:c4:d1:7a:63:6d:10:60:df:bb:aa:4b:9f:
29:73:ee:36:70:0c:51:f6:f9:d8:2e:88:38:23:e8:08:fa:7b:
be:31:24:0b:2b:bb:35:a1:7a:e9:46:9a:4f:32:d4:cd:00:5e:
7a:fd:79:86:33:c1:50:b4:96:fd:02:0f:38:05:fd:3f:cb:72:
c0:e4:fe:fb:74:69:cc:3c:84:d6:f4:6a:36:f9:6a:27:21:d2:
63:aa:57:e0:b0:ef:da:cc:c7:49:88:52:7a:93:13:87:f5:8d:
65:64:91:06:34:a8:7f:24:dc:37:2f:e8:61:4d:b1:8c:db:96:
04:17:a4:98:a3:64:d4:c7:79:91:f1:56:77:27:d5:6c:7a:91:
88:ac:b4:25:b9:27:13:d4:4f:a7:f8:57:86:2f:6d:d7:b1:5c:
ed:af:93:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org