Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0axqQ7c92EKNUh4eKBJPfQksXx8.roa
File: 0axqQ7c92EKNUh4eKBJPfQksXx8.roa (raw, json)
Hash identifier: ERlxdTo4zbCYn1mjISpZOMOLGPRPPKfkFMbdvKGIMYI=
Subject key identifier: D1:AC:6A:43:B7:3D:D8:42:8D:52:1E:1E:28:12:4F:7D:09:2C:5F:1F
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FBFA1CBBC99DD17675D171BDC9C989E70
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0axqQ7c92EKNUh4eKBJPfQksXx8.roa
Signing time: Tue 28 May 2024 14:36:42 +0000
ROA not before: Tue 28 May 2024 14:36:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56419
IP address blocks: 45.129.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 19:40:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:a1:cb:bc:99:dd:17:67:5d:17:1b:dc:9c:98:9e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 28 14:36:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1ac6a43b73dd8428d521e1e28124f7d092c5f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b5:f2:d5:3f:13:56:51:d0:e9:af:87:24:3c:
dd:13:31:b0:50:1b:3e:c4:60:60:16:53:49:de:3b:
89:a9:c1:9a:e9:88:40:17:c3:57:e5:2d:d9:87:ab:
06:62:8f:75:a5:ea:ee:b5:94:bd:d0:28:0c:29:ff:
42:34:49:62:3a:e8:54:df:c9:9c:fa:27:c2:be:7a:
00:d2:17:ac:34:a4:5b:8f:f5:c6:a4:c7:b7:a1:ab:
24:bb:21:72:23:4d:00:52:31:fe:fe:92:9a:8d:f4:
b9:e7:fe:e0:99:26:15:8e:6c:4c:40:7b:f3:c2:67:
05:a3:85:a2:87:b1:ac:4a:c2:ee:b9:06:7b:2c:b7:
01:67:a0:1b:44:4f:66:91:44:0b:8c:c8:b8:4f:88:
e9:5f:97:a4:b0:e2:fa:f8:ac:3a:45:c4:2c:c7:48:
0b:40:fa:cd:22:04:47:80:85:d9:4b:be:e7:d3:44:
47:b6:17:a3:f7:ad:da:4b:ac:62:f7:4e:b5:2d:62:
e3:33:08:e7:65:f8:d0:c4:af:68:47:b6:12:27:09:
74:5f:a7:5c:f8:ba:ee:fa:70:bf:50:83:2e:a0:68:
b1:80:cf:b3:ad:49:05:9d:0d:bf:9c:34:eb:db:71:
a5:3c:bd:3e:8d:a2:8b:27:6f:86:4e:f3:50:54:69:
7c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AC:6A:43:B7:3D:D8:42:8D:52:1E:1E:28:12:4F:7D:09:2C:5F:1F
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0axqQ7c92EKNUh4eKBJPfQksXx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.128.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:34:5e:2e:b2:cb:c6:a1:c3:ea:b5:98:87:7d:2b:e1:49:12:
9a:4e:5c:69:3e:34:d9:89:dc:4c:51:3f:98:5f:be:02:58:38:
cc:d8:e9:9f:75:44:1a:39:6b:ae:88:93:95:0f:c9:9d:e9:42:
29:ea:82:d9:26:a1:e9:34:0a:89:85:df:3e:59:74:78:8d:be:
0c:08:bc:9c:c9:97:18:00:55:a3:8c:ca:a9:b1:82:d3:b8:d3:
03:cb:7b:38:5b:c7:72:d4:2c:ad:56:08:7c:e0:12:04:e0:21:
2c:92:a7:37:05:fc:d4:c4:d4:b6:d7:29:fe:e7:14:43:f8:32:
e3:80:e3:94:3e:ad:9b:03:50:7f:06:bd:24:e7:45:41:e8:37:
96:ea:5f:d0:80:f4:d2:09:38:24:10:33:ed:76:70:75:6b:1f:
67:b2:e8:be:3f:f8:cf:e7:8d:e2:9c:cf:83:0f:cf:23:5e:77:
14:b6:90:37:6b:28:3e:01:ec:44:e4:d5:c8:22:a0:26:70:77:
98:9f:32:ff:0b:34:ba:2e:77:14:0f:82:f8:e9:e4:2d:13:16:
92:a5:10:ec:fa:26:60:25:7f:7f:57:1c:bb:7a:95:28:2c:bb:
88:67:f3:48:00:7e:eb:54:9b:d0:b6:eb:a4:15:27:8b:2d:3e:
48:07:38:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 22:32:52 2024 by rpki-client on console-fra.rpki-client.org