Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KQDiRgNmnqTHCayXfXKC8ZPQ370.roa
File: KQDiRgNmnqTHCayXfXKC8ZPQ370.roa (raw, json)
Hash identifier: Wek6phXTfljVPFbqsphbMrvMoopY4a/2vgTLC4KyqJg=
Subject key identifier: 29:00:E2:46:03:66:9E:A4:C7:09:AC:97:7D:72:82:F1:93:D0:DF:BD
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018D1CBAAA63329740C2AF8616FE5D7EE30B
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KQDiRgNmnqTHCayXfXKC8ZPQ370.roa
Signing time: Thu 18 Jan 2024 13:20:11 +0000
ROA not before: Thu 18 Jan 2024 13:20:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36113
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 19:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:ba:aa:63:32:97:40:c2:af:86:16:fe:5d:7e:e3:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 18 13:20:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2900e24603669ea4c709ac977d7282f193d0dfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:89:5f:9d:7c:c4:ae:72:57:12:f8:77:45:2c:
1a:48:ad:88:90:e7:92:8b:55:69:44:95:52:65:43:
b7:ce:74:83:f8:7f:be:a1:15:31:59:00:5a:a8:93:
fb:e0:13:ae:36:b2:7e:6a:09:20:8f:43:d8:03:24:
8f:6a:7c:96:22:06:88:a7:a9:55:b1:e8:f0:fe:80:
4f:df:7f:89:80:3f:e5:cb:ed:3e:05:c8:50:7d:37:
0c:05:78:73:0e:c1:f5:fe:7d:33:75:2d:00:8a:e7:
36:d1:12:d4:1d:b5:f7:7a:6d:df:58:16:ae:88:5b:
92:8b:d8:50:d7:24:4f:94:cb:ba:e1:23:9b:5c:a2:
c8:58:73:52:34:8a:de:39:36:f1:ad:28:a3:63:f0:
c5:db:bf:96:c5:46:48:e3:e9:03:58:d8:b1:56:0e:
a0:56:4e:99:01:86:e2:b3:8b:1b:f6:53:ac:c9:93:
74:b3:90:6e:25:1b:9a:11:9a:b3:27:b6:87:8b:e1:
43:3a:5f:4e:0d:47:fc:93:4c:a6:a2:c3:ba:dc:df:
b1:c2:94:9c:08:9c:f5:37:10:e2:88:90:fa:85:c6:
3c:a6:2f:71:46:49:b3:64:24:f6:28:72:22:e5:94:
7f:fc:67:4f:5d:73:c8:46:0b:fb:c2:97:2d:52:8b:
77:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:00:E2:46:03:66:9E:A4:C7:09:AC:97:7D:72:82:F1:93:D0:DF:BD
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KQDiRgNmnqTHCayXfXKC8ZPQ370.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
03:58:4f:c5:df:65:61:59:db:ea:fd:69:30:e5:c2:15:1b:6d:
bb:20:25:b0:76:86:b7:60:7b:a4:d9:36:f6:e9:52:cd:0a:76:
0d:68:46:42:30:42:65:59:24:7e:df:27:d9:ce:25:b9:35:79:
b1:11:48:1c:78:e6:78:a5:91:49:e4:76:5b:84:4d:da:4b:eb:
d9:31:a7:47:f4:85:a4:08:fd:2d:8b:67:ab:fb:27:93:8a:77:
25:a3:7b:d5:7d:c5:12:9b:b9:40:68:91:81:db:ee:b2:20:8b:
0f:23:1d:e4:06:03:3f:76:85:55:19:c4:49:ca:f9:1a:e4:4c:
1a:50:93:2f:7e:2f:58:61:a9:a6:5e:0f:44:76:61:b8:c6:3d:
5a:2e:d5:f0:50:e1:7d:c9:97:24:11:ec:cd:e1:8c:dc:b6:86:
51:b3:ab:b5:fc:10:0d:8d:63:5c:eb:1d:5c:68:8d:23:20:d9:
25:1d:5c:75:51:68:97:3d:66:89:49:86:03:55:8b:03:de:36:
f2:5f:41:86:e0:5f:ad:31:2a:5c:52:05:76:a6:50:a0:e4:1c:
e9:fc:38:51:b1:d2:61:ba:4e:eb:c1:0f:89:ac:e9:aa:e0:a5:
ee:72:82:e5:aa:71:c8:5d:ab:63:aa:94:4a:9c:1f:e5:0b:1c:
ba:ce:c9:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org