Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/LFxen0_95NGjqw39soSzLG15d6k.roa
File: LFxen0_95NGjqw39soSzLG15d6k.roa (raw, json)
Hash identifier: ucDKAwZApd9Ri05vXedPlleLmGu5baVj+t7VSqK6ZN8=
Subject key identifier: 2C:5C:5E:9F:4F:FD:E4:D1:A3:AB:0D:FD:B2:84:B3:2C:6D:79:77:A9
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 01856F66E986F51D10E7D771EE730866AF95
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/LFxen0_95NGjqw39soSzLG15d6k.roa
Signing time: Sun 01 Jan 2023 22:14:53 +0000
ROA not before: Sun 01 Jan 2023 22:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209835
IP address blocks: 45.149.182.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 13:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:e9:86:f5:1d:10:e7:d7:71:ee:73:08:66:af:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 22:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c5c5e9f4ffde4d1a3ab0dfdb284b32c6d7977a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a9:8a:13:6e:f1:3a:ed:d5:4c:92:10:04:92:
a0:22:a9:90:6a:1e:a4:ae:8e:ad:c3:58:f5:9b:a3:
79:8f:87:40:cb:e1:c4:70:58:80:4f:33:d4:a3:e5:
ed:30:40:a1:98:c2:64:0e:67:94:d5:e3:16:75:2f:
4e:0b:99:56:a7:8d:67:e3:10:d5:77:80:b6:e8:33:
a7:db:27:88:40:d4:90:2b:a1:70:30:81:43:2d:81:
34:bd:45:f5:50:ec:45:26:6c:6e:39:e2:b0:e8:23:
52:47:1a:8c:e9:fb:e4:d7:5a:23:74:4d:f0:4c:bb:
15:5c:2c:fa:5c:58:06:c1:e3:b0:7b:1e:1c:af:41:
d8:29:e5:9d:13:f9:4c:8a:56:a5:af:c3:c3:a8:43:
d7:f9:7c:71:78:8a:5d:22:34:7d:d1:61:fa:44:c6:
ac:e5:cf:86:5f:2d:98:be:2b:d7:d2:6d:66:8d:55:
bd:97:99:95:a1:14:18:d4:29:8c:2c:37:f2:52:14:
3d:f2:10:ae:7d:bf:85:3b:74:a6:af:1c:13:e4:e7:
11:de:7c:dc:85:8f:be:36:1c:c3:1e:90:6d:94:c1:
3a:b9:f6:7f:f4:f3:6c:29:bc:7d:14:e3:ad:f4:fe:
60:30:f4:c2:fb:69:fa:10:df:81:7a:98:60:7f:bb:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5C:5E:9F:4F:FD:E4:D1:A3:AB:0D:FD:B2:84:B3:2C:6D:79:77:A9
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/LFxen0_95NGjqw39soSzLG15d6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.182.0/23
Signature Algorithm: sha256WithRSAEncryption
94:72:c6:01:51:9e:45:8a:e7:f2:0d:2d:9f:1c:bd:01:5d:db:
4d:9a:04:4d:b6:92:42:10:d9:df:a4:c7:05:21:2c:c2:dd:d6:
64:06:53:05:18:9c:fb:c7:1f:1a:65:7a:e0:d8:8a:5a:ca:eb:
97:97:11:42:63:ab:70:be:7a:cc:fc:b4:13:37:dc:74:d8:4a:
3c:b0:ff:0f:16:61:fc:f4:4d:8d:1e:f4:ea:86:5f:6c:99:35:
cc:91:79:cc:44:f9:15:69:d7:2e:ee:aa:4e:b6:b1:42:58:dc:
07:d5:e5:53:02:1b:20:0d:91:d3:6b:5b:c3:33:29:33:78:ac:
51:fa:6c:6e:41:69:99:5e:c2:32:12:e7:35:24:5b:57:e7:c8:
79:8a:4b:a0:58:57:6e:c3:77:3b:b3:f1:dd:1d:2f:95:a1:e0:
50:62:5d:96:0b:71:87:5b:ea:a0:92:83:93:1b:12:a2:5c:76:
ad:b4:c3:da:87:77:63:0b:39:8c:ce:97:7a:91:07:2a:db:5f:
0e:eb:8e:d7:85:48:0d:53:1a:6b:9c:60:a6:78:67:1f:99:c2:
2f:22:f7:6f:ed:dd:dd:2d:b8:d5:41:b0:51:47:95:62:78:cf:
7a:b2:c5:33:f3:5a:fa:fa:46:f9:ef:cf:c5:1a:9c:5d:88:a3:
bc:3a:8e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:36 2024 by rpki-client on console-ams.rpki-client.org