Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/49e20f-ffb7-4b6e-9bfe-a798e3df8a88/1/lXwqH8pbVCRJ-y7V0rSkpbQF8Qk.roa
File: lXwqH8pbVCRJ-y7V0rSkpbQF8Qk.roa (raw, json)
Hash identifier: ntXkl17tSKf1UGyMfJJFc/+c3UOZt3T21HR/MrmjIUw=
Subject key identifier: 95:7C:2A:1F:CA:5B:54:24:49:FB:2E:D5:D2:B4:A4:A5:B4:05:F1:09
Certificate issuer: /CN=661cb5d3f8fc87c16b2df927d7c396626f124554
Certificate serial: 018DEAB07114B0AAA9AC685B589E125D1C97
Authority key identifier: 66:1C:B5:D3:F8:FC:87:C1:6B:2D:F9:27:D7:C3:96:62:6F:12:45:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhy10_j8h8FrLfkn18OWYm8SRVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/49e20f-ffb7-4b6e-9bfe-a798e3df8a88/1/lXwqH8pbVCRJ-y7V0rSkpbQF8Qk.roa
Signing time: Tue 27 Feb 2024 13:10:48 +0000
ROA not before: Tue 27 Feb 2024 13:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199783
IP address blocks: 185.45.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 09:29:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ea:b0:71:14:b0:aa:a9:ac:68:5b:58:9e:12:5d:1c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=661cb5d3f8fc87c16b2df927d7c396626f124554
Validity
Not Before: Feb 27 13:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=957c2a1fca5b542449fb2ed5d2b4a4a5b405f109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6b:3d:db:f4:cd:43:9c:7c:47:55:26:89:e0:
72:07:b8:a5:95:52:d1:0a:90:84:ee:58:a9:8d:70:
9a:2a:aa:76:9d:3c:29:04:a5:8a:58:71:ef:cb:d6:
3b:35:3e:d7:4f:d7:d4:71:8a:0f:94:5f:05:21:33:
10:99:1e:4a:e7:c9:d6:4b:5a:1c:aa:ee:df:54:9d:
12:0c:01:5e:0c:4c:de:15:9c:1e:c5:68:90:5d:3c:
d0:1f:6b:e8:b7:fd:2e:35:e6:99:af:ec:1e:ae:2e:
3a:47:59:2f:0d:07:52:f9:5c:47:67:12:d2:eb:a2:
76:11:a0:36:35:c2:e7:60:b3:b9:8f:35:90:94:ed:
20:17:a0:8a:6f:97:30:d5:71:fc:07:85:c3:e4:20:
d0:b5:b4:be:e1:a5:cb:c7:56:53:94:5e:77:f1:96:
5c:46:f7:f7:9a:11:5b:fb:99:3c:aa:2e:65:cd:8c:
08:50:c0:20:32:8e:d4:43:c1:43:29:d5:e2:3f:44:
01:42:1c:9a:72:36:a4:9f:a3:2a:0b:f5:28:e2:39:
81:2c:4b:f2:3d:17:74:79:24:13:93:7a:c2:f0:11:
8f:9b:44:79:44:a9:58:8b:c9:39:d6:00:0e:9f:90:
e7:11:b9:30:6f:38:b3:a8:5b:49:c6:4b:34:c5:a3:
fa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7C:2A:1F:CA:5B:54:24:49:FB:2E:D5:D2:B4:A4:A5:B4:05:F1:09
X509v3 Authority Key Identifier:
keyid:66:1C:B5:D3:F8:FC:87:C1:6B:2D:F9:27:D7:C3:96:62:6F:12:45:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhy10_j8h8FrLfkn18OWYm8SRVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/49e20f-ffb7-4b6e-9bfe-a798e3df8a88/1/lXwqH8pbVCRJ-y7V0rSkpbQF8Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/49e20f-ffb7-4b6e-9bfe-a798e3df8a88/1/Zhy10_j8h8FrLfkn18OWYm8SRVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.253.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f0:20:17:12:77:49:2f:07:ef:bb:44:52:3d:74:b9:97:86:
34:be:0a:e5:73:52:3b:92:39:7d:a6:c2:5e:ca:8a:fa:c6:d9:
d8:6a:9b:b1:13:fe:31:15:85:d9:fc:14:3b:1a:61:58:b1:cc:
e6:26:38:e9:4a:4b:2d:b0:b3:5a:fc:d8:ab:bf:79:e0:45:7f:
b3:b6:28:2a:4a:de:7e:df:69:a5:9b:8a:d8:5f:3e:84:2b:9e:
f2:e6:7f:b1:d1:29:4f:7c:8f:ee:50:5e:e7:90:1f:97:93:41:
32:f1:82:15:98:b7:44:c7:8b:ff:8a:fb:d6:ca:dc:b8:c5:67:
3a:e2:03:0d:e3:88:40:c4:2d:9c:fd:b0:60:22:51:d7:37:86:
99:cf:1b:23:6f:8e:85:78:a9:76:56:90:1a:f5:c7:3f:ea:c7:
63:94:74:f9:72:2f:3c:16:f0:d4:de:b9:93:1c:94:03:24:f6:
be:57:e2:ad:b3:73:ab:2e:13:5d:09:b5:b4:e8:8a:4b:dc:00:
f2:08:51:2f:ab:d5:2a:f0:06:21:2d:72:de:4c:18:33:6c:f4:
07:21:c8:4e:53:81:db:b9:14:91:eb:2e:fc:65:84:99:8d:03:
eb:5b:18:97:ab:d2:6b:44:1e:b6:d3:98:12:5b:51:75:16:ce:
a2:2f:00:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 12:43:29 2024 by rpki-client on console-fra.rpki-client.org