Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UkhW7Gb59qODcU9nooq6wjB5zsE.roa
File: UkhW7Gb59qODcU9nooq6wjB5zsE.roa (raw, json)
Hash identifier: N3tIfLTMCr16U2XWJeUNrKCAFA+YX/m13xD+Jj9ICac=
Subject key identifier: 52:48:56:EC:66:F9:F6:A3:83:71:4F:67:A2:8A:BA:C2:30:79:CE:C1
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D6923E506DE559F425392F9BC1E778D84
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UkhW7Gb59qODcU9nooq6wjB5zsE.roa
Signing time: Fri 02 Feb 2024 09:26:16 +0000
ROA not before: Fri 02 Feb 2024 09:26:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395092
IP address blocks: 45.139.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:23:e5:06:de:55:9f:42:53:92:f9:bc:1e:77:8d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 2 09:26:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=524856ec66f9f6a383714f67a28abac23079cec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:68:01:c1:e6:2f:82:a1:fa:10:39:8c:38:02:
72:6a:99:5b:88:b3:19:61:67:8c:c8:53:b3:28:1d:
71:fa:c1:f0:ba:45:b6:18:53:bd:3d:cb:6f:30:4d:
5d:d4:60:2b:70:4d:fc:e1:36:63:88:9e:81:a5:be:
fa:1d:ba:b4:87:33:26:a5:64:aa:b7:95:c2:3e:50:
28:4c:0a:01:53:3f:00:8a:fe:d0:9c:33:fc:99:85:
13:5b:64:92:93:1d:70:7a:08:e8:74:f1:ac:19:9b:
63:33:8d:ad:34:e5:fb:a6:e7:d2:5e:31:ba:5a:6e:
25:fc:78:d2:6c:cb:30:61:13:8e:0b:ac:b3:34:c0:
44:4d:f3:2e:ee:4b:b9:3a:21:e1:9d:31:d0:7c:c7:
65:b1:c5:16:1c:2b:4a:23:52:7d:fc:b9:ea:ec:2b:
d3:fb:27:8e:10:33:df:39:62:07:27:a8:b7:1d:f4:
a1:76:90:9e:a0:20:1b:62:97:45:62:79:49:94:78:
25:71:51:98:e1:e5:9c:e3:36:16:cd:94:c9:40:6d:
2e:fb:0e:bb:50:32:00:c2:f4:f2:32:69:b3:a4:52:
00:1a:fd:94:22:ec:df:85:49:b2:ac:6b:0e:09:78:
77:8f:7a:b0:03:21:2f:57:52:c3:83:99:62:02:c7:
a3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:48:56:EC:66:F9:F6:A3:83:71:4F:67:A2:8A:BA:C2:30:79:CE:C1
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UkhW7Gb59qODcU9nooq6wjB5zsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.54.0/24
Signature Algorithm: sha256WithRSAEncryption
15:81:2a:b4:19:7c:c1:2e:31:67:05:4c:b2:29:b2:3c:49:57:
cd:42:8e:72:23:74:7d:04:58:0e:d7:b6:19:3b:1d:15:97:8c:
7f:d0:e8:e4:24:67:2e:7e:ab:88:c7:7a:29:cb:8a:9a:ff:6a:
f3:30:3a:9d:96:73:e0:1b:f8:0b:3d:e4:bc:4b:ba:d3:e3:e7:
8a:48:06:a1:9b:62:7d:50:4e:9c:92:ee:3c:f4:9d:1d:81:30:
cb:b4:74:3b:e3:a9:8b:bd:ee:36:38:12:3f:c5:c6:61:50:51:
bb:2a:8f:40:85:39:49:9c:8a:b0:44:c9:12:56:d6:77:0b:86:
0e:b5:67:26:3d:ee:50:d8:4f:86:ce:89:33:f0:3b:25:5f:77:
75:2e:84:df:ce:7f:ae:a8:02:2e:9d:ed:1f:19:85:cb:70:66:
76:81:d4:24:95:1a:56:1b:f1:fc:5c:6b:db:c9:3d:fc:cc:e1:
ef:75:e7:c6:26:b8:c4:f9:fb:6f:8b:d8:74:10:e3:99:1d:a6:
54:8e:f2:04:c2:93:8f:d6:0a:d7:20:33:e4:b6:ad:24:be:5e:
3f:82:c9:f8:84:83:dc:33:90:64:a4:a3:ec:c3:83:f5:d8:7b:
bf:db:bd:63:fb:e7:16:ac:44:e7:58:1f:31:f5:3e:94:f7:32:
63:da:a9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org