Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/w3J7uJ8B3DSCMgbQFts5HUUO_M4.roa
File: w3J7uJ8B3DSCMgbQFts5HUUO_M4.roa (raw, json)
Hash identifier: BG1x5H0rT+FaOUGhqm6CgS5Zhbe9vsHrDGvjKR0NNP4=
Subject key identifier: C3:72:7B:B8:9F:01:DC:34:82:32:06:D0:16:DB:39:1D:45:0E:FC:CE
Certificate issuer: /CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Certificate serial: 018FBCDFED3D83321A8D08E4936C608F7891
Authority key identifier: BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/w3J7uJ8B3DSCMgbQFts5HUUO_M4.roa
Signing time: Tue 28 May 2024 01:45:42 +0000
ROA not before: Tue 28 May 2024 01:45:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51847
IP address blocks: 45.87.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 16:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bc:df:ed:3d:83:32:1a:8d:08:e4:93:6c:60:8f:78:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Validity
Not Before: May 28 01:45:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3727bb89f01dc34823206d016db391d450efcce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e8:01:fe:37:51:a3:8a:e1:6e:b8:f2:89:06:
d1:44:80:c6:df:ee:1d:ac:f6:d8:c1:59:c8:a2:b4:
1b:76:d5:a4:1e:3b:bd:94:c2:c0:ac:3f:65:9c:28:
25:7c:2a:23:93:86:f9:f8:f1:3d:9a:ac:43:b2:28:
ee:19:11:1d:c6:f6:67:64:b6:ed:04:5b:55:aa:8a:
bc:f4:45:75:57:f2:8d:29:cc:7e:df:ae:7e:6c:d4:
17:d9:a0:10:8a:a7:49:0e:65:ea:b3:c6:ea:ab:18:
83:a5:37:99:69:36:ff:b4:fa:36:28:ce:77:be:46:
b3:b2:27:ed:3e:71:28:d6:3d:7a:6e:99:d1:e5:31:
e4:be:6f:ba:20:59:a8:19:b0:10:3b:8f:01:d5:70:
96:d2:6e:89:74:5b:f7:88:cf:d1:34:19:66:6c:10:
07:53:ee:9b:4f:04:56:2b:f5:d9:8c:84:7c:0a:eb:
71:ad:27:9e:b5:6b:01:ed:32:26:73:5f:cf:c0:d8:
23:8e:f5:cc:19:15:b2:d6:eb:aa:af:01:1a:d8:65:
9c:8b:56:57:a5:63:98:5b:5e:bb:96:e0:31:8a:81:
22:8e:e9:59:3d:ee:69:d2:39:97:9f:5b:7c:18:4b:
a0:7c:28:5b:a5:48:42:58:43:a1:2f:f4:6f:ac:f6:
5c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:72:7B:B8:9F:01:DC:34:82:32:06:D0:16:DB:39:1D:45:0E:FC:CE
X509v3 Authority Key Identifier:
keyid:BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/w3J7uJ8B3DSCMgbQFts5HUUO_M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/v0Gt3JpO6iRtQvmMfHKzC2jWepc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.102.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:1f:d2:77:38:66:4b:82:f9:03:96:8c:c9:01:48:83:f7:3d:
c9:94:75:9b:85:ba:3a:90:37:a7:1e:4a:4b:5e:d8:68:2f:81:
ce:e3:8c:6e:ec:ea:4e:b0:3e:78:16:82:2e:76:dc:c2:15:72:
af:75:c4:d8:68:9e:8d:ad:07:7d:37:32:c6:32:6d:f9:b5:77:
61:db:3e:6a:f9:16:ac:c9:30:38:d6:43:d4:b6:93:8f:22:45:
cb:c9:01:7b:e0:4b:ec:f6:66:29:f7:01:01:8b:d0:d8:7d:78:
83:c0:67:07:40:36:d8:fd:20:ea:8f:a5:b9:d2:7a:e8:5d:4e:
ee:89:72:06:81:e1:04:b2:14:7c:a2:11:fd:4b:cc:c7:42:a0:
bb:4a:a2:11:46:07:00:2f:0d:fd:c8:6b:7b:06:86:88:32:85:
4c:db:37:31:ff:7a:0b:70:2f:7c:71:4a:cf:19:9b:56:78:f1:
43:4a:f4:64:3a:c1:d1:de:f1:63:c1:02:72:f1:d7:38:d1:20:
95:62:50:2d:aa:f4:dd:2e:78:29:8e:e5:3c:ac:62:c0:74:72:
23:4c:13:98:cb:c7:d6:4d:00:d2:1b:8d:f1:78:10:1d:3a:83:
ef:90:c9:8f:b5:6c:e7:99:90:03:8e:1e:89:fa:37:b0:33:e0:
3b:61:8b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 20:23:05 2024 by rpki-client on console-ams.rpki-client.org