Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/UtKXx8qIOSVLMG7I9EfO3px8W-g.roa
File: UtKXx8qIOSVLMG7I9EfO3px8W-g.roa (raw, json)
Hash identifier: 3Cr0HAxBebln4pRtdoVv2y9V8N2Zm0SshgdehUVPk7A=
Subject key identifier: 52:D2:97:C7:CA:88:39:25:4B:30:6E:C8:F4:47:CE:DE:9C:7C:5B:E8
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 018C58F6A213F85F139AA1E74B47D18AEDFF
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/UtKXx8qIOSVLMG7I9EfO3px8W-g.roa
Signing time: Mon 11 Dec 2023 13:00:07 +0000
ROA not before: Mon 11 Dec 2023 13:00:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14315
IP address blocks: 45.140.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:58:f6:a2:13:f8:5f:13:9a:a1:e7:4b:47:d1:8a:ed:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Dec 11 13:00:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52d297c7ca8839254b306ec8f447cede9c7c5be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:e3:a9:2b:be:f8:91:9c:28:33:80:74:24:
d0:1b:d5:fa:db:37:a9:0b:dd:ca:3f:fa:6a:35:7f:
61:35:ad:5c:47:0d:15:39:cd:75:b2:90:48:a0:b8:
0d:a8:8e:5f:90:c3:2e:67:49:2b:2b:ee:9e:f9:67:
3d:97:8a:ee:e2:5f:34:cb:f5:e6:22:d7:fa:51:90:
11:99:d6:a9:5d:6c:c6:2a:36:a5:ba:48:57:a5:85:
56:3d:37:7e:33:9b:8c:ac:9c:9f:94:1c:38:c3:94:
a5:cd:eb:34:3a:34:b8:a1:c2:d9:82:88:20:06:1f:
63:0e:f7:b4:b0:cb:40:a1:0f:1d:77:3e:26:2e:3d:
3b:ed:99:ad:a4:9c:20:61:24:2d:0f:be:7d:d6:36:
99:5b:16:83:c0:8f:40:8a:6c:a0:c4:d6:2f:d1:e5:
6f:d9:fe:c8:95:81:19:04:96:b3:e2:2f:07:ad:10:
e5:18:52:50:a2:c7:ba:ad:0b:b2:1e:5c:bb:b7:6b:
a8:65:8d:97:b5:47:a3:34:74:7d:b9:a4:eb:d5:3a:
18:b9:3e:64:14:f8:2f:a1:15:36:48:3d:eb:3f:70:
96:30:db:1c:7f:16:e9:1e:a9:8f:22:65:ec:ac:0f:
af:6a:93:1b:d1:9d:17:5a:89:0b:4f:bc:b9:6b:83:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D2:97:C7:CA:88:39:25:4B:30:6E:C8:F4:47:CE:DE:9C:7C:5B:E8
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/UtKXx8qIOSVLMG7I9EfO3px8W-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:df:21:6b:ff:9c:08:65:d9:86:84:35:3d:b3:d5:37:02:c7:
c6:13:ee:ac:80:d9:78:0c:27:39:0d:14:55:9d:bf:9e:80:5b:
08:f3:fb:e5:78:3a:f7:02:85:25:12:98:a2:80:8f:40:cb:e1:
69:58:62:4f:4c:3d:9a:88:9a:9f:b6:92:6b:24:c3:ec:7e:16:
75:25:3f:75:4d:d0:ad:58:dc:e6:5b:2f:c3:75:b1:3a:f2:91:
a7:86:1a:78:1e:ba:ea:0a:88:4f:3e:59:f6:33:c6:d8:17:50:
75:d2:a3:cc:58:8f:bf:6d:f2:b5:3a:9f:98:68:fa:81:1c:90:
1b:b1:e7:c8:d2:7a:6e:f1:d0:c9:a6:85:42:eb:ab:4e:f0:79:
9e:42:03:63:e5:4d:78:e1:17:04:cc:5b:7a:8d:18:ab:f0:5c:
86:5d:fe:49:c6:14:b0:92:18:da:52:d7:23:d2:c2:93:a3:c4:
c2:bc:dd:92:f5:f6:e1:fb:92:30:1b:34:4f:66:f1:fe:49:66:
0b:8d:41:b7:71:b5:a5:5c:72:d8:ba:0d:4e:5c:fa:51:85:0c:
83:26:40:01:d4:36:2b:58:9e:fb:c4:69:78:21:58:0e:4c:22:
e8:08:d6:da:47:90:65:9e:bf:61:97:76:c2:34:c1:31:8f:19:
46:ba:49:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:40 2024 by rpki-client on console-ams.rpki-client.org