Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/KZfuUCoL1vcBVxieAsDPMeTIVgc.roa
File: KZfuUCoL1vcBVxieAsDPMeTIVgc.roa (raw, json)
Hash identifier: x08ALkZHg4nd9qZkts/Ekyi2vIvSsntv1a3WAYyHYGc=
Subject key identifier: 29:97:EE:50:2A:0B:D6:F7:01:57:18:9E:02:C0:CF:31:E4:C8:56:07
Certificate issuer: /CN=54b48731e29f27d687576d6863adbda080709bfe
Certificate serial: 01857D13B507A39287891F3FA1D1D7E442CA
Authority key identifier: 54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/KZfuUCoL1vcBVxieAsDPMeTIVgc.roa
Signing time: Wed 04 Jan 2023 13:58:41 +0000
ROA not before: Wed 04 Jan 2023 13:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201115
IP address blocks: 45.157.175.0/24 maxlen: 24
2a13:3840::/40 maxlen: 40
2a13:3840::/47 maxlen: 47
Validation: Failed, certificate revoked on Mon 09 Jan 2023 20:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7d:13:b5:07:a3:92:87:89:1f:3f:a1:d1:d7:e4:42:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b48731e29f27d687576d6863adbda080709bfe
Validity
Not Before: Jan 4 13:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2997ee502a0bd6f70157189e02c0cf31e4c85607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:67:35:38:eb:bf:2a:a7:69:e2:aa:72:f6:ec:
51:17:6f:74:9a:ed:3a:54:e2:ca:a3:21:f9:f6:60:
61:3f:d8:59:a6:60:ff:dd:58:72:a5:7f:2d:22:ad:
02:a8:41:9a:65:e9:a8:c3:70:4c:26:a2:97:f3:ce:
df:3d:a1:ac:17:a6:49:d7:5e:2c:e7:d5:f9:5b:27:
4c:b4:ef:61:fe:e3:88:8d:60:f0:1f:44:78:d5:4c:
df:54:1d:5b:87:6f:5e:11:a2:dc:d4:6d:24:dd:be:
cd:31:03:00:19:e8:5d:b3:bb:00:08:b6:95:45:6d:
a0:55:6d:03:6d:1a:02:c2:2a:8b:dd:46:16:85:3c:
26:d0:3f:20:81:af:42:23:8d:6f:08:ad:34:ab:ba:
6b:bb:78:fe:6d:95:33:8d:69:c9:cb:c0:7b:f4:28:
c6:24:6d:32:19:d4:79:c5:6d:95:d8:eb:03:65:6f:
70:4a:73:24:13:7a:55:f4:5c:0a:3a:d5:21:a3:e7:
c7:25:52:ca:a2:e2:8d:a0:34:e4:f8:18:05:62:c5:
a2:fb:22:f9:e1:19:74:e9:23:a9:49:44:5f:1e:a9:
d1:8f:0a:2c:a2:16:42:04:b1:cd:c4:0f:68:68:32:
5c:65:a5:72:bc:5e:b6:27:61:1c:cd:28:92:46:5e:
ab:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:97:EE:50:2A:0B:D6:F7:01:57:18:9E:02:C0:CF:31:E4:C8:56:07
X509v3 Authority Key Identifier:
keyid:54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/KZfuUCoL1vcBVxieAsDPMeTIVgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/VLSHMeKfJ9aHV21oY629oIBwm_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.175.0/24
IPv6:
2a13:3840::/40
Signature Algorithm: sha256WithRSAEncryption
89:59:a9:ad:4f:8e:2e:a4:b2:d0:ab:9b:00:4c:c4:dd:44:53:
13:7c:e7:60:ae:f6:74:05:92:de:e5:c5:49:3b:0a:27:45:84:
92:48:4a:6a:23:52:12:23:1d:84:4b:e1:4c:19:64:88:81:c0:
95:34:19:46:cb:42:53:78:2b:ab:41:94:b7:06:0f:58:80:fa:
9c:57:83:3e:bc:2c:ff:2c:46:b5:ea:fe:ba:86:d8:cd:fa:aa:
01:e7:1c:3d:45:a2:17:c6:46:a7:16:a3:6e:7d:12:62:4f:58:
19:98:43:2d:32:fe:6e:a3:e4:c0:67:3a:bc:0f:3b:ee:fe:6d:
15:af:01:21:40:29:78:ba:e0:95:19:25:12:9c:2d:da:f3:76:
63:1e:88:3e:fe:92:0e:48:88:21:51:65:4d:93:db:72:c3:4f:
54:fc:1b:ee:2e:c5:be:b8:ec:23:05:e5:99:65:ac:94:d4:2c:
1b:ea:50:74:0f:e6:df:fb:bd:e2:88:6e:70:25:58:ed:8d:2f:
cf:10:1f:fa:b9:c1:9a:ae:dd:81:1b:e2:08:3f:2c:b0:89:b0:
65:75:9e:dd:f9:e7:41:13:76:6c:5c:8f:d7:9a:ea:bc:ec:e9:
19:a9:6c:cd:66:74:6a:dc:32:dc:64:76:99:87:73:a6:22:e7:
5d:89:83:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org