Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/lWK9keSID2WjIDeGoMzGb704x_I.roa
File: lWK9keSID2WjIDeGoMzGb704x_I.roa (raw, json)
Hash identifier: pJf5T4slV71jasedSTVE/KAmohBX3Ebed5Sr3S/dwII=
Subject key identifier: 95:62:BD:91:E4:88:0F:65:A3:20:37:86:A0:CC:C6:6F:BD:38:C7:F2
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 01857230E037C57A9DE4439C0475C569347B
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/lWK9keSID2WjIDeGoMzGb704x_I.roa
Signing time: Mon 02 Jan 2023 11:14:43 +0000
ROA not before: Mon 02 Jan 2023 11:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208844
IP address blocks: 45.82.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 08:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:e0:37:c5:7a:9d:e4:43:9c:04:75:c5:69:34:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Jan 2 11:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9562bd91e4880f65a3203786a0ccc66fbd38c7f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:91:9e:84:a5:02:30:6c:da:41:29:c9:c9:c0:
87:76:bc:d0:fa:90:61:a4:95:10:15:c9:23:ad:17:
2b:39:6f:c6:06:e8:bc:ef:04:08:25:d7:64:25:28:
61:67:aa:9c:5e:31:6e:a8:e4:6e:0f:15:b7:c6:07:
b3:4e:ee:52:9e:fe:de:a6:0e:e3:fb:e2:0b:18:4f:
ba:c5:10:da:43:d3:26:e9:be:28:64:08:5a:02:d3:
c9:43:4f:72:b9:4c:cf:6b:89:dd:94:ce:dd:83:03:
7a:3a:44:f9:f6:1c:4a:e7:27:68:24:68:b9:39:52:
3e:7f:74:24:ff:6d:57:b8:9b:76:1d:10:19:63:dc:
fc:35:04:f4:65:41:50:7c:b1:b2:0b:57:f3:a7:a2:
0d:81:28:bd:b6:99:29:ac:5e:3b:fe:a4:a8:b4:a9:
62:11:d9:9f:5c:11:4d:e1:eb:99:44:d0:a4:1e:fa:
c5:cb:ab:55:45:45:63:c2:da:e0:f6:5c:a2:36:e3:
20:62:2c:2c:f7:fc:46:32:af:b9:b9:f1:82:c4:51:
a2:d9:e5:59:92:6c:64:ff:ea:3e:1e:7a:33:38:0e:
ff:6e:24:9e:b4:c5:2e:cc:9a:63:9b:10:a4:60:45:
3c:44:7c:c7:8a:af:bf:71:a9:fc:a9:d1:f6:61:ea:
c3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:62:BD:91:E4:88:0F:65:A3:20:37:86:A0:CC:C6:6F:BD:38:C7:F2
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/lWK9keSID2WjIDeGoMzGb704x_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.128.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a4:da:33:28:be:30:fd:6f:bf:69:0e:c3:8e:46:64:a0:9e:
46:36:c3:f4:8a:0d:cb:8f:7d:08:d4:79:b7:c8:82:59:3a:ee:
eb:03:f6:7d:ea:62:60:f8:11:ec:1e:41:4a:db:f4:4a:b5:ea:
0c:23:b3:db:7c:2b:3e:56:79:6a:e5:a0:31:c4:54:79:c2:7b:
13:9f:60:98:c6:f0:ed:9a:67:63:5a:da:a8:c4:1a:3c:7e:be:
70:76:13:e1:70:88:8c:b6:6e:70:1c:27:8e:cc:0c:30:db:0b:
87:3f:59:31:62:7e:07:77:86:72:bd:1b:55:5a:55:ce:ca:d4:
2a:b0:06:d0:44:e8:72:21:7a:5b:ac:54:95:56:9c:ad:dd:f2:
1b:a5:7a:26:32:da:f7:08:1a:b7:22:00:53:f3:9f:b3:38:df:
2e:3a:9f:1e:54:c7:c3:4c:83:ee:df:4b:67:5f:5d:b7:24:6d:
61:e1:43:20:4e:c9:ca:22:15:10:d2:29:bc:5e:d2:b6:80:88:
20:0c:4b:d2:59:22:fd:75:ea:23:de:8b:03:b3:ca:bc:33:9d:
2a:a6:6e:37:1b:97:ae:4f:79:60:37:37:2f:62:be:86:16:7a:
fd:6e:b8:2b:81:d4:c7:59:8a:8b:72:8b:80:53:07:ff:0d:a4:
1a:60:f0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:23 2024 by rpki-client on console-fra.rpki-client.org