Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/GpPx68N41ais7R7WhhS2EJahWFk.roa
File: GpPx68N41ais7R7WhhS2EJahWFk.roa (raw, json)
Hash identifier: TC6YyRPT2IWahN8a9uLdEhiy9094JMjsMOYpo7wm5jQ=
Subject key identifier: 1A:93:F1:EB:C3:78:D5:A8:AC:ED:1E:D6:86:14:B6:10:96:A1:58:59
Certificate issuer: /CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Certificate serial: 018F9C130A0F0AD187FD1939B29590233524
Authority key identifier: BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/GpPx68N41ais7R7WhhS2EJahWFk.roa
Signing time: Tue 21 May 2024 16:54:04 +0000
ROA not before: Tue 21 May 2024 16:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 45.87.100.0/24 maxlen: 24
45.87.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 04:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9c:13:0a:0f:0a:d1:87:fd:19:39:b2:95:90:23:35:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Validity
Not Before: May 21 16:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a93f1ebc378d5a8aced1ed68614b61096a15859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:75:b3:5d:a0:45:a5:5f:30:ab:00:5e:f4:
df:10:71:3e:70:03:82:bb:ac:d7:d9:ae:3c:6d:1f:
c9:45:29:30:89:bd:26:ac:e7:67:32:9c:56:4c:dc:
d6:e0:bf:33:0e:90:2b:ee:cb:8f:0b:3f:02:26:4a:
ac:b2:92:72:b7:8a:ee:21:c5:ab:be:21:77:af:85:
01:0f:50:4d:45:2d:bd:26:b4:72:ae:58:86:a7:c6:
82:8f:9a:29:22:67:82:d3:4f:ba:2a:36:1b:ec:6d:
87:25:08:12:79:33:86:ee:ad:1b:3f:18:b1:81:4c:
74:6a:af:dc:b5:99:fe:54:ba:cf:ba:d0:1b:b2:07:
91:26:24:64:07:65:5b:49:3a:64:34:c6:c6:18:90:
27:c9:23:c1:cd:00:d7:37:5c:e8:95:c3:be:0d:83:
ec:09:4f:7a:79:c7:46:d4:b3:b7:31:66:db:19:d8:
6e:60:93:12:03:4a:16:f3:02:fd:ba:af:0e:70:f2:
b4:34:38:2a:5a:2c:1c:af:7c:2b:13:5c:a8:58:6f:
57:10:f2:c8:2b:7d:8b:fc:d5:bb:76:64:62:50:e5:
ed:14:23:53:cc:80:6c:4d:84:46:63:9c:28:f7:d5:
a3:f3:a6:22:40:87:59:2e:88:e6:da:8f:43:1b:80:
bb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:93:F1:EB:C3:78:D5:A8:AC:ED:1E:D6:86:14:B6:10:96:A1:58:59
X509v3 Authority Key Identifier:
keyid:BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/GpPx68N41ais7R7WhhS2EJahWFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/v0Gt3JpO6iRtQvmMfHKzC2jWepc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.100.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:3e:93:cb:aa:de:f3:08:ee:f2:23:5d:8f:0e:f4:36:ac:99:
9f:4f:a8:09:7a:65:bf:f6:71:da:c4:69:78:69:f8:e0:8b:60:
cd:8d:f7:dd:8e:93:ed:75:f7:a5:71:5e:32:93:de:79:e9:25:
69:25:53:82:19:d8:03:5c:3c:1e:75:2b:df:fd:4e:8f:fe:d8:
84:6f:d2:84:4a:ef:54:aa:9c:b3:27:af:80:51:02:34:0d:37:
6a:4e:42:73:56:59:64:4c:f6:31:d8:fb:e1:48:b8:e3:c8:be:
6e:71:ce:58:89:8e:1e:36:3c:ec:68:c5:7d:85:5b:19:f4:06:
69:e1:b6:7c:b9:7d:03:75:6b:4a:7e:dc:97:db:1a:42:59:80:
ec:fa:b6:b9:85:af:0b:e9:b4:8a:98:6b:6c:04:e8:27:b6:b8:
10:52:53:52:47:fc:63:74:e1:8f:0f:63:68:95:93:7b:d4:ff:
3f:7b:a8:6d:d0:76:54:c8:93:52:ea:47:3e:ac:a6:a0:0e:a2:
ff:83:a9:67:48:5e:9e:55:3f:66:82:f9:78:68:07:8e:44:5a:
11:6d:c4:ba:44:41:eb:2f:41:df:de:17:7a:10:89:19:ed:e6:
ab:38:21:57:e1:ec:c9:04:6c:51:78:2a:a0:77:a0:87:c7:3c:
02:f2:f1:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 07:23:45 2024 by rpki-client on console-fra.rpki-client.org