Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7BQiSsM-ijjy4kMBPl5IjYwOgho.roa
File: 7BQiSsM-ijjy4kMBPl5IjYwOgho.roa (raw, json)
Hash identifier: vQzGLa9jaCncNA0kWjNWpdBxpJo+nahoy0TTKAfmEXE=
Subject key identifier: EC:14:22:4A:C3:3E:8A:38:F2:E2:43:01:3E:5E:48:8D:8C:0E:82:1A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01923D309C58F888167948F32A73EE5BC9C5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7BQiSsM-ijjy4kMBPl5IjYwOgho.roa
Signing time: Sun 29 Sep 2024 09:50:48 +0000
ROA not before: Sun 29 Sep 2024 09:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214114
IP address blocks: 45.144.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 16:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3d:30:9c:58:f8:88:16:79:48:f3:2a:73:ee:5b:c9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 29 09:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec14224ac33e8a38f2e243013e5e488d8c0e821a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:96:cf:de:af:c1:82:04:3e:88:10:ba:16:
f6:5f:fa:c3:61:b6:0b:50:ff:b1:7c:c1:51:63:16:
35:51:71:27:b0:b1:59:df:9f:ce:52:a4:73:75:f2:
1c:26:7e:58:36:90:62:36:31:b2:c1:b6:fe:57:10:
c0:c9:aa:0e:5e:52:ff:32:52:6c:6b:32:0e:24:59:
f0:90:7b:91:12:e0:cf:22:0a:3b:62:46:4f:91:c4:
ef:1f:34:6d:10:95:d2:b7:f8:47:5b:9e:db:3a:73:
42:3b:0b:64:2c:c1:4d:82:7f:ce:29:0d:6d:f3:e0:
46:4a:a5:8e:a2:70:fe:7b:d2:1e:ab:0c:75:13:79:
07:45:64:72:38:b0:49:c8:73:1c:6d:fd:1b:1f:4e:
15:a3:cd:52:b3:fe:47:ec:1f:af:51:18:91:1d:d5:
ed:fe:a0:cf:c6:d0:ed:f8:92:7f:26:0d:1c:74:74:
15:96:d2:61:3e:38:08:d2:36:db:de:c1:69:c4:6b:
f2:73:57:48:93:a6:7b:f4:ce:50:3f:b8:8a:6b:00:
34:d6:d7:22:70:12:d3:97:c5:a2:e6:8b:ae:3c:c4:
ad:33:5a:2f:09:0d:12:9d:f1:3b:aa:cd:75:d4:ac:
2b:4c:b6:de:a2:1e:ee:62:4f:50:1c:40:63:9b:e5:
c3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:14:22:4A:C3:3E:8A:38:F2:E2:43:01:3E:5E:48:8D:8C:0E:82:1A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7BQiSsM-ijjy4kMBPl5IjYwOgho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.173.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f0:a9:e5:9e:e4:31:b4:e3:9a:43:df:00:7a:8e:fd:ed:4b:
1a:4f:cc:64:12:11:6c:31:c3:9f:4a:15:49:4b:3b:94:b2:37:
48:30:1e:6c:9d:f7:19:59:90:f5:02:09:60:b3:ea:7f:70:ff:
50:39:4b:d0:83:20:db:d7:ee:e9:e6:7f:48:bc:f7:e4:89:1f:
0a:f5:dd:ec:b9:03:c5:ee:d8:91:20:2a:c2:f2:e1:88:f5:5b:
47:b8:47:cc:35:21:85:7a:e4:53:6c:bc:47:6a:d7:37:c5:6b:
87:67:cf:20:10:60:41:d9:de:d3:c9:00:f3:b1:aa:0e:a6:3f:
c0:06:b4:ce:e7:c7:42:36:9b:8a:ec:97:7c:91:5d:2f:0e:d5:
fb:35:37:1b:cd:4e:a6:2e:c4:9e:0a:ac:01:ed:31:37:7c:c7:
d6:6a:f8:a8:09:bb:28:d4:53:18:03:20:ad:c5:0d:e9:5d:d9:
b5:1d:ab:95:64:50:6b:c1:cc:73:c4:85:85:82:e3:78:37:19:
4c:02:e1:37:13:dd:5e:a5:d2:b9:db:ce:aa:b7:a6:f9:c8:7d:
ec:7c:07:a7:38:ba:e1:b8:5c:38:d5:ef:a7:d4:72:55:5e:4c:
06:70:d6:b5:ee:09:03:b6:aa:91:01:0f:25:70:2f:58:62:ad:
b9:03:a0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 20:13:12 2024 by rpki-client on console-fra.rpki-client.org