Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Lr5PespeEYkhn0HE91DqaZYygN4.roa
File: Lr5PespeEYkhn0HE91DqaZYygN4.roa (raw, json)
Hash identifier: 82sWq3UZ9Mfm9YzzSKlx8Iyn1X6HkoPtN5T3pJsvZS0=
Subject key identifier: 2E:BE:4F:7A:CA:5E:11:89:21:9F:41:C4:F7:50:EA:69:96:32:80:DE
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 018C8DCF3D1FABFC6C1E492E5D20A506068B
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Lr5PespeEYkhn0HE91DqaZYygN4.roa
Signing time: Thu 21 Dec 2023 19:16:58 +0000
ROA not before: Thu 21 Dec 2023 19:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201838
IP address blocks: 45.90.200.0/22 maxlen: 24
45.145.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8d:cf:3d:1f:ab:fc:6c:1e:49:2e:5d:20:a5:06:06:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Dec 21 19:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ebe4f7aca5e1189219f41c4f750ea69963280de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:09:be:d2:5d:8d:d3:e8:d1:34:d5:bb:52:3d:
11:f7:33:1e:f1:dc:37:fd:69:a8:98:be:6a:c1:93:
0b:2c:c8:9d:f2:1f:fd:36:82:71:7f:b3:4e:0e:b3:
fc:81:b5:49:2e:15:e2:34:ae:f6:46:2a:16:81:81:
ac:a2:26:82:f6:ce:52:d2:5b:ab:6f:da:e3:3f:c5:
62:73:44:d0:eb:3b:38:63:12:b5:c0:28:06:9c:d5:
18:9c:d0:c7:4c:1e:2f:ca:24:26:a7:e3:2b:1d:05:
af:36:e8:f9:fc:5c:97:42:ec:41:e6:e8:58:62:e0:
7a:79:2e:f0:cb:0f:17:82:3f:58:bb:ac:15:e5:2b:
4a:ed:ef:73:07:2b:6b:c8:45:89:6f:ce:a7:67:fa:
81:0a:b2:65:8a:e7:a2:25:db:c3:c5:4d:14:f7:65:
b0:73:aa:b2:80:35:6d:9a:b5:48:ea:06:50:10:4a:
54:8a:cd:3b:da:71:ba:dd:ff:59:92:db:bb:c5:a2:
98:60:6c:27:54:8b:41:6c:f7:b4:5f:7b:70:39:eb:
29:5f:00:ba:f2:54:69:1d:4d:52:85:c3:fc:f3:9b:
e2:5e:35:d1:c5:a4:e5:e1:72:7a:11:e6:05:ad:3e:
2e:e6:ab:ac:e6:94:52:37:28:7b:73:be:9f:74:6d:
37:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BE:4F:7A:CA:5E:11:89:21:9F:41:C4:F7:50:EA:69:96:32:80:DE
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Lr5PespeEYkhn0HE91DqaZYygN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.200.0/22
45.145.148.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:fb:1b:e1:30:80:6b:89:5e:a8:61:32:fc:5d:27:d1:67:74:
83:d8:3d:bf:9c:67:bb:e4:b4:75:61:5a:0f:59:b8:1b:44:4c:
19:d2:d9:ef:71:e2:31:ec:df:54:b9:00:1a:7e:2e:17:9e:aa:
c1:24:0f:34:dd:61:fd:59:de:89:84:74:f2:38:62:25:f1:b3:
e4:c0:24:57:10:09:ea:e2:21:e5:2f:18:e9:a6:28:09:7d:8c:
ad:dc:86:42:e2:1b:de:b6:9c:d5:85:41:5c:96:17:fa:52:f7:
54:9b:2f:ef:d6:2d:bc:5f:1d:99:a6:d7:56:fe:c9:e1:bd:3f:
67:b6:b1:7b:e9:01:50:ff:52:70:21:6d:ac:91:6f:0e:ef:40:
3f:b9:43:df:44:9f:61:e5:4b:2f:d8:07:e7:0f:07:3f:66:10:
fa:d1:d0:f0:8f:1e:a5:ad:a9:3b:90:eb:46:30:4a:68:fd:42:
6a:0c:b9:8e:0a:e3:58:37:3c:8b:c8:0d:a5:13:51:06:4e:f3:
3a:9b:7e:cc:5a:0b:65:f2:2d:f6:2f:b0:4e:ed:51:92:9c:d2:
fa:bc:31:af:54:d0:08:d6:b3:80:e7:60:4d:e8:80:36:c1:00:
6a:73:d5:5d:45:2b:c4:77:b8:33:41:80:16:60:b0:7f:c7:6e:
82:3d:0a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:54 2024 by rpki-client on console-fra.rpki-client.org