Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/iV40qXGoyNr4WWTpoIpxaLWcqNA.roa
File: iV40qXGoyNr4WWTpoIpxaLWcqNA.roa (raw, json)
Hash identifier: jOkCxdIHmiEhA5vIrkT48srB/bKiqJAhf3jFfv3joIE=
Subject key identifier: 89:5E:34:A9:71:A8:C8:DA:F8:59:64:E9:A0:8A:71:68:B5:9C:A8:D0
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D2542323393F5B6A7745BDE88F35F3168
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/iV40qXGoyNr4WWTpoIpxaLWcqNA.roa
Signing time: Sat 20 Jan 2024 05:05:11 +0000
ROA not before: Sat 20 Jan 2024 05:05:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 45.135.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 19 Feb 2024 10:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:25:42:32:33:93:f5:b6:a7:74:5b:de:88:f3:5f:31:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 20 05:05:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=895e34a971a8c8daf85964e9a08a7168b59ca8d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c5:8e:e2:92:95:53:3c:54:80:6a:04:b7:fa:
46:d2:d7:5b:b7:39:75:8f:17:07:71:58:32:e0:c6:
1c:65:48:7c:b5:f8:66:f0:fc:a0:66:f4:65:76:e2:
60:12:b3:d3:7c:ea:33:7a:4b:e9:2b:07:c4:41:c2:
50:97:e0:d5:08:5d:a1:15:fc:78:d6:29:e4:f7:dc:
a7:32:b9:85:10:c6:a3:6b:fa:45:75:a0:30:ae:bb:
65:73:dc:de:33:03:1a:54:12:c8:51:50:57:9f:52:
25:26:48:d9:c8:51:09:84:7d:32:ab:f1:b7:f9:bb:
57:06:93:e5:fa:bb:e1:bb:b2:13:31:ef:9e:24:9e:
b1:e9:e8:01:fc:db:aa:46:5b:7d:b5:7c:9a:b0:16:
19:6a:c4:05:f5:81:ca:2b:2f:fb:c6:c5:a9:50:92:
52:54:32:56:17:df:08:94:e6:23:f8:ba:6b:9e:fd:
9a:d2:45:8f:fd:84:d0:5b:9e:27:97:57:b6:e8:3e:
19:cd:91:c2:83:69:f0:73:06:a7:86:f8:39:1b:97:
2c:93:06:8c:e6:7d:e4:61:20:da:97:a1:53:58:a0:
8c:00:0d:69:5e:e9:7b:55:90:50:8f:5c:de:ee:8b:
bc:eb:3f:a8:2f:ec:55:bb:9a:c4:df:b7:df:17:28:
8e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5E:34:A9:71:A8:C8:DA:F8:59:64:E9:A0:8A:71:68:B5:9C:A8:D0
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/iV40qXGoyNr4WWTpoIpxaLWcqNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.180.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:59:71:8c:a1:16:7a:52:d3:dd:4d:a9:62:02:aa:a3:82:a9:
55:47:41:08:08:a8:8e:f3:2f:b8:b0:e1:17:8f:1b:11:5f:12:
4f:f1:1e:1c:1e:ed:3d:40:9a:b1:3e:4d:a3:84:1a:23:17:03:
5e:74:ce:6f:ef:f5:b5:e8:53:fd:78:8d:5c:9d:fc:7f:2b:fb:
6b:e0:1e:12:27:94:2e:fe:45:12:80:72:54:55:bf:18:be:56:
2f:99:1c:e0:3e:00:26:b8:34:61:3c:30:41:49:44:e5:35:6b:
39:91:7a:3c:9b:7c:54:a6:ea:af:b7:f9:af:e5:49:ed:08:46:
49:b1:ac:2f:f2:5a:f8:25:34:b9:e6:73:b3:2b:ac:e8:76:f9:
0e:bd:d0:2c:2f:0f:9f:e2:6e:a2:4f:ab:26:61:0d:45:d6:96:
b9:7e:6a:0c:78:a6:33:00:79:8e:c0:0b:89:35:ab:f1:f5:76:
bd:33:14:7c:38:b6:58:ac:ef:84:33:a1:65:a3:0d:36:0a:bb:
7e:f3:b9:8a:5a:66:0a:81:f9:75:5a:99:a1:72:39:77:e5:60:
b1:92:8b:d9:03:df:04:d3:aa:1f:d7:18:af:e5:66:a3:84:7d:
f3:e6:cd:3a:df:62:f4:f5:fc:64:01:98:20:f5:09:27:2b:67:
bf:ea:ba:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org