Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4mMQIcweml-1-U8hAMk4ckMwxrA.roa
File: 4mMQIcweml-1-U8hAMk4ckMwxrA.roa (raw, json)
Hash identifier: UalGHOEXoa7BTr1KKK84NawiLJZ4SY/Z+UrWYb0v7i8=
Subject key identifier: E2:63:10:21:CC:1E:9A:5F:B5:F9:4F:21:00:C9:38:72:43:30:C6:B0
Certificate issuer: /CN=da980a45fe487366e386b6064c2c652519f9fc93
Certificate serial: 018573CD04E99C3BF5E4344671D37D3FBF00
Authority key identifier: DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4mMQIcweml-1-U8hAMk4ckMwxrA.roa
Signing time: Mon 02 Jan 2023 18:44:54 +0000
ROA not before: Mon 02 Jan 2023 18:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209894
IP address blocks: 45.154.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cd:04:e9:9c:3b:f5:e4:34:46:71:d3:7d:3f:bf:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da980a45fe487366e386b6064c2c652519f9fc93
Validity
Not Before: Jan 2 18:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2631021cc1e9a5fb5f94f2100c938724330c6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b6:a2:fc:5e:4d:0e:6c:b1:ed:07:8e:59:ff:
56:d1:d7:1a:c8:2f:8f:3e:82:51:dd:30:5a:81:f7:
af:2d:ed:ed:91:9a:13:e3:73:35:cd:02:88:27:0d:
85:38:29:d3:f2:72:2f:fb:23:51:fb:a1:4e:9a:28:
7b:c2:44:db:d8:22:e1:85:e2:21:df:8c:bd:03:fe:
e2:3e:84:bb:e7:f0:3f:29:05:f9:8d:02:e9:22:f6:
ee:03:95:9f:fc:04:7d:71:36:b3:0f:c2:96:d0:fa:
9f:f8:55:76:92:51:f8:d9:31:88:4a:de:62:3c:31:
2c:a5:56:f5:e3:57:e0:71:e1:ba:aa:ec:cd:85:d3:
b3:0f:08:4d:22:ce:32:14:66:b7:ea:66:da:fd:9e:
75:27:d3:c7:cd:39:cb:fa:d5:ab:c9:c1:a3:74:de:
1b:d5:a2:25:10:b1:43:0d:e4:80:a1:e8:0b:63:4c:
d9:a0:33:e2:81:85:fd:06:e3:a2:2c:2a:9d:f7:76:
8d:3a:5f:96:46:c1:45:88:c6:be:2d:3c:66:26:37:
b8:c1:dc:a9:05:f3:85:a8:33:d1:c7:18:a7:78:f1:
87:55:fa:b4:78:c4:f4:d1:b4:63:35:e9:b5:8a:b3:
07:4e:c4:b4:d6:96:6b:18:d6:4a:b9:39:eb:94:e5:
fe:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:63:10:21:CC:1E:9A:5F:B5:F9:4F:21:00:C9:38:72:43:30:C6:B0
X509v3 Authority Key Identifier:
keyid:DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4mMQIcweml-1-U8hAMk4ckMwxrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.111.0/24
Signature Algorithm: sha256WithRSAEncryption
80:c9:b2:b7:6c:aa:ab:ed:e5:fc:19:48:75:68:e8:9a:02:81:
03:ea:83:84:0a:24:e3:91:83:3e:96:88:3e:80:b2:d4:ee:dc:
e3:84:59:da:a4:be:ee:fa:22:ee:f6:0e:e5:b6:45:c7:6c:02:
7b:fd:d0:eb:dc:84:77:4b:aa:19:51:39:e2:a2:e5:1f:16:4e:
80:a8:16:e5:71:cc:1d:37:1b:81:c1:79:f2:ae:b3:ff:11:bc:
86:c4:71:ed:1e:44:da:52:a8:d3:ec:ac:84:2e:b9:ab:08:ee:
0f:df:b2:e3:71:ec:88:6e:d9:e3:54:2b:98:50:7a:b0:f2:1f:
5a:d2:4d:9c:c7:93:e7:84:8d:9c:ea:0b:ca:4b:24:ad:66:74:
32:b7:dc:ba:f7:bf:45:bc:52:9e:9c:18:7a:50:00:6d:b5:74:
6b:b2:c5:a1:e4:78:83:3d:2e:5d:5c:21:29:b1:b5:3d:32:42:
9c:e5:d9:11:0f:dd:5e:ed:79:4b:01:56:ea:7d:e3:6d:29:0a:
5b:7c:28:f8:1d:d1:5d:1a:0e:b7:5d:51:bd:a4:36:7d:4f:44:
41:28:fd:09:f0:1f:bf:7a:e9:80:bd:0c:b1:45:c7:38:b4:1b:
1d:7b:1a:a0:ba:af:9f:f5:dc:89:74:0f:fe:cc:df:e1:23:f2:
48:49:33:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org