Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tXQx9jnYCN8kpUQ9NMKYt2qk3BY.roa
File: tXQx9jnYCN8kpUQ9NMKYt2qk3BY.roa (raw, json)
Hash identifier: TAjFYm+3XN8U7Jritf0IwvZzSUp3byf8uwoi15bmBMM=
Subject key identifier: B5:74:31:F6:39:D8:08:DF:24:A5:44:3D:34:C2:98:B7:6A:A4:DC:16
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018CC7946364167CFDC713DA9A75C2043048
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tXQx9jnYCN8kpUQ9NMKYt2qk3BY.roa
Signing time: Tue 02 Jan 2024 00:30:39 +0000
ROA not before: Tue 02 Jan 2024 00:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 20:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:63:64:16:7c:fd:c7:13:da:9a:75:c2:04:30:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 2 00:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b57431f639d808df24a5443d34c298b76aa4dc16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c4:f5:f2:be:0a:df:ed:ea:bf:ac:e0:c7:ea:
61:ae:c1:08:7e:dd:df:de:24:a9:32:74:87:53:81:
a8:4e:01:05:94:50:0c:f4:12:f8:13:11:91:8a:ee:
f9:fc:9c:d9:13:bc:fc:a1:75:bb:44:af:be:a0:ec:
03:d1:82:e5:77:20:18:4c:20:2a:ab:ae:b6:86:74:
44:80:a3:91:4e:ef:93:f7:9b:bf:29:53:54:83:c7:
0c:96:54:ad:6c:e3:6b:9b:a0:43:a2:b1:e8:a3:96:
a9:2c:93:b6:d5:aa:9e:87:59:53:d1:dc:9b:ec:4a:
8e:f2:98:97:d3:c5:8d:9e:5d:73:6e:ba:77:56:5e:
66:db:72:53:b3:bf:63:98:3f:ea:b3:3d:6d:20:81:
21:e4:50:81:93:ee:d8:b0:b2:36:d8:4d:ae:0c:94:
54:12:03:bb:f7:13:2b:29:05:29:33:29:9f:56:3d:
a2:db:8a:cb:46:71:82:25:87:07:1b:0a:1d:19:42:
cb:7b:4b:d9:3b:d4:ae:a2:45:02:3d:fa:d9:11:29:
78:b2:20:6c:74:08:a0:cc:1e:e4:d3:db:ff:99:29:
f8:5a:74:74:6f:be:27:07:9b:c8:71:b4:de:e3:bc:
ad:61:a9:8b:f9:3b:e0:1b:2f:dd:56:4b:77:5b:66:
91:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:74:31:F6:39:D8:08:DF:24:A5:44:3D:34:C2:98:B7:6A:A4:DC:16
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tXQx9jnYCN8kpUQ9NMKYt2qk3BY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.6.0/24
Signature Algorithm: sha256WithRSAEncryption
01:40:6e:f3:c4:a4:f9:66:e7:03:ef:48:20:ee:65:28:c4:aa:
d1:36:2a:d8:5d:c6:54:85:bb:f6:a4:8b:34:70:1b:15:47:c1:
29:23:1e:4e:2d:45:1d:2b:75:37:87:a7:92:f4:62:3b:ee:32:
7e:55:6e:71:0b:a5:1c:56:64:69:53:17:ca:f5:fd:07:53:e9:
4c:d5:85:c1:bb:23:e0:06:5a:47:9f:e2:ad:c9:88:69:6a:f0:
37:17:59:44:3f:d1:35:f2:6d:f1:0a:e4:d8:fe:cf:eb:5c:a8:
4c:2b:51:5b:89:f3:d6:3f:88:ef:d8:79:15:94:fd:b5:3e:06:
3c:86:38:a3:b2:24:d1:31:00:18:61:34:c7:c0:89:e7:7d:e2:
c9:70:42:d9:63:2a:fa:40:5e:28:fe:ae:f9:74:f7:ae:6d:72:
39:42:de:4a:52:78:a9:10:ce:31:74:f4:26:1c:d6:7e:f6:7f:
c4:a9:48:cc:83:db:e5:3b:0e:38:98:6f:7f:ce:97:20:28:ee:
4b:e4:cd:1b:94:2a:3d:17:6d:60:29:75:a8:6d:05:9a:08:d7:
88:d5:bc:2a:9d:f8:4e:4e:45:49:9f:e2:98:f2:79:0e:4b:e9:
87:29:a3:2b:e9:25:74:c9:1e:4c:22:40:2e:3e:9b:91:ff:12:
cc:b2:6f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org