Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/uDeZQRuy-f7WoMqkTh9Yi99SDTE.roa
File: uDeZQRuy-f7WoMqkTh9Yi99SDTE.roa (raw, json)
Hash identifier: c8s8ceV9B0PsOC4T9l64V5DwqK3yhV+kSJYkrsiT7qA=
Subject key identifier: B8:37:99:41:1B:B2:F9:FE:D6:A0:CA:A4:4E:1F:58:8B:DF:52:0D:31
Certificate issuer: /CN=1f53c06ca7976d737b23bc72768a228c397faf2f
Certificate serial: 018CC8DFAD1D9F6617E6F644723CB8CB3290
Authority key identifier: 1F:53:C0:6C:A7:97:6D:73:7B:23:BC:72:76:8A:22:8C:39:7F:AF:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1PAbKeXbXN7I7xydooijDl_ry8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/uDeZQRuy-f7WoMqkTh9Yi99SDTE.roa
Signing time: Tue 02 Jan 2024 06:32:31 +0000
ROA not before: Tue 02 Jan 2024 06:32:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29657
IP address blocks: 45.132.100.0/24 maxlen: 24
45.132.101.0/24 maxlen: 24
2a14:4d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 08 Jan 2024 13:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:ad:1d:9f:66:17:e6:f6:44:72:3c:b8:cb:32:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f53c06ca7976d737b23bc72768a228c397faf2f
Validity
Not Before: Jan 2 06:32:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b83799411bb2f9fed6a0caa44e1f588bdf520d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ff:14:e8:9e:b4:f0:2b:89:10:c3:ea:12:03:
ee:00:16:f6:8b:ae:fa:c0:56:89:f7:46:3c:f5:81:
da:ba:46:2c:ad:69:57:6f:1d:bd:c5:d5:1e:fb:56:
da:05:63:d5:f1:a1:ca:6e:ae:4c:95:c0:dd:dd:fd:
2f:46:7b:61:fe:66:f8:37:54:45:52:9f:54:30:6d:
b4:eb:b8:e8:db:d2:41:ff:c5:13:ae:f4:6c:21:da:
4a:54:fc:e6:15:7f:93:93:ba:eb:f4:5e:3e:a3:4b:
a5:8b:cc:f8:0f:46:22:17:03:a3:91:e5:c7:36:0d:
59:22:5d:4c:44:99:7c:de:be:66:b2:71:b3:47:53:
9f:d9:35:3c:0b:c0:65:b8:85:da:8b:bd:1a:72:02:
a5:b9:fb:0c:b6:92:39:3f:e4:87:b4:dd:4a:e8:3b:
55:1a:c2:26:11:2c:ef:af:a4:27:67:10:64:8d:8a:
8b:fd:f9:85:11:62:e0:9f:a9:37:de:79:7d:83:f3:
b3:f8:61:0c:39:61:02:9c:48:61:82:03:48:4d:eb:
96:c7:88:52:fb:2e:c3:07:ef:3b:7b:35:54:c5:b7:
fa:ce:8f:53:73:26:c0:36:f1:61:87:ae:0b:19:f0:
d1:00:5f:c5:ab:1b:8a:4d:aa:e4:ea:cf:8a:06:2d:
5c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:37:99:41:1B:B2:F9:FE:D6:A0:CA:A4:4E:1F:58:8B:DF:52:0D:31
X509v3 Authority Key Identifier:
keyid:1F:53:C0:6C:A7:97:6D:73:7B:23:BC:72:76:8A:22:8C:39:7F:AF:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1PAbKeXbXN7I7xydooijDl_ry8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/uDeZQRuy-f7WoMqkTh9Yi99SDTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/H1PAbKeXbXN7I7xydooijDl_ry8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.100.0/23
IPv6:
2a14:4d80::/32
Signature Algorithm: sha256WithRSAEncryption
9f:aa:33:cc:7e:84:0c:f8:f0:17:6a:3a:9b:3a:50:bd:76:21:
84:3a:e2:81:ed:de:71:a0:a9:6d:92:c0:c5:f3:58:56:c4:be:
a3:59:78:34:82:b1:38:cd:5a:b7:29:54:da:31:dc:20:39:d2:
32:f8:e8:da:53:80:14:04:6a:6d:ab:03:ea:ab:27:51:44:8d:
7c:6f:7a:5c:8f:f9:01:1d:02:9f:31:8a:93:e1:29:10:24:06:
ec:e2:20:57:b2:56:06:f1:c6:8c:4c:d4:3d:f1:f7:e5:d7:36:
97:f8:33:09:57:f0:fa:51:6d:c7:89:fa:0e:1c:35:20:0a:11:
b9:9d:35:f2:28:bf:ce:8d:ba:8b:c6:22:a8:70:36:eb:55:83:
1d:7f:aa:2d:ab:52:f8:ed:90:90:25:1f:c2:a2:74:86:db:c3:
d3:68:93:ef:d5:18:f3:65:f9:c2:8b:84:bc:40:4d:78:df:cc:
d2:f2:ed:25:df:b5:b4:0d:e7:93:9c:ca:04:f6:2d:a5:c0:15:
a8:39:2a:e2:cf:4c:2a:e9:13:e6:3b:51:70:39:e5:74:c8:ca:
bc:47:b5:ac:3b:42:f3:33:9f:4d:89:50:24:b3:a3:dd:c0:6f:
6d:df:6a:cf:e9:20:45:da:ec:db:3f:88:d6:50:53:87:8c:f3:
ab:91:e7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:00 2024 by rpki-client on console-fra.rpki-client.org