Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/qAUr1aMoM4H05X_P5ys9PuM6Uxg.roa
File: qAUr1aMoM4H05X_P5ys9PuM6Uxg.roa (raw, json)
Hash identifier: KOXg3sVhbu7s1BKjzdGNUMmbgoCqkUDcTBvMzADhAaw=
Subject key identifier: A8:05:2B:D5:A3:28:33:81:F4:E5:7F:CF:E7:2B:3D:3E:E3:3A:53:18
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 01856C78193F1F04CCE74166EAB5AAC12633
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/qAUr1aMoM4H05X_P5ys9PuM6Uxg.roa
Signing time: Sun 01 Jan 2023 08:34:48 +0000
ROA not before: Sun 01 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 45.129.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:19:3f:1f:04:cc:e7:41:66:ea:b5:aa:c1:26:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Jan 1 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8052bd5a3283381f4e57fcfe72b3d3ee33a5318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:29:27:cf:50:02:c6:0d:b6:77:67:65:b8:d0:
49:b2:01:27:a1:fa:6b:2a:59:eb:7a:00:8e:22:a3:
ba:9c:06:5e:2b:79:3c:d9:a0:dc:d8:ae:06:76:c6:
0d:ae:2a:99:e9:fc:86:41:6d:cb:b7:8e:d4:a3:93:
d0:26:a0:0e:90:ca:d8:4c:f8:1d:e6:91:a0:d6:eb:
ca:a0:37:22:38:ec:9f:4e:65:d9:e8:ed:9f:45:b9:
a4:5e:53:88:8c:7d:ce:38:f7:c9:29:6e:ba:c2:75:
9a:fe:0b:f7:ac:76:52:05:19:3a:6f:b6:45:b4:c3:
08:fa:63:7a:b5:4d:15:f4:09:e6:8d:65:4b:b5:fd:
97:66:bb:f5:21:d5:02:29:4f:cd:c3:e2:59:71:75:
0d:6d:93:77:c1:5a:da:5c:8d:6f:21:c0:06:2a:fe:
7a:41:ca:40:51:cb:fa:1b:58:f6:6b:c0:4c:01:12:
b2:b0:80:07:08:41:f6:60:7b:2d:16:1d:18:5e:b5:
c1:28:29:0e:93:d0:43:42:0b:1e:27:c0:41:01:df:
4a:eb:45:f1:2f:67:2b:c0:ab:49:88:43:86:c9:4a:
e8:b3:a7:f2:88:8a:ef:b3:e1:2a:83:38:1e:0e:23:
86:02:6b:ec:bf:c7:11:1c:a6:e0:ec:ee:dc:60:8e:
0a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:05:2B:D5:A3:28:33:81:F4:E5:7F:CF:E7:2B:3D:3E:E3:3A:53:18
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/qAUr1aMoM4H05X_P5ys9PuM6Uxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.69.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a9:65:7d:98:19:6d:d4:88:cf:b5:83:1a:f0:f0:4f:96:8f:
a1:d3:5a:47:7b:34:09:65:4a:6c:56:f8:b8:50:98:a2:31:55:
f1:5a:5c:9f:8e:4f:4f:e4:68:5d:5b:14:7c:f3:8f:fc:57:ae:
86:21:28:41:50:a4:3f:41:b3:32:e5:25:8d:b8:b1:f4:0e:96:
5a:b4:0e:52:6a:e4:5b:3e:3c:d0:b9:d7:f0:f1:50:f5:be:d2:
10:b6:d3:d2:a2:53:6b:eb:c1:62:c4:b4:92:2e:e6:74:d1:c7:
d7:a8:5f:db:d1:b5:fb:d5:b2:d7:7a:a8:21:de:16:49:3d:b8:
48:84:8c:b7:96:ca:2e:6b:50:29:c0:b0:17:e9:a9:28:59:1a:
52:c3:df:c3:59:f9:b3:53:eb:61:45:c4:8d:f9:72:ba:de:38:
fb:c2:21:a4:b6:64:7e:4e:05:b1:1d:81:3b:79:dd:4d:2f:8a:
df:fc:01:a6:84:1c:d2:7a:86:2a:53:bf:97:8b:78:a1:01:a3:
8f:cb:2e:87:f7:aa:f1:3a:b8:e1:b3:bd:40:6b:1d:c1:40:eb:
e8:6f:e5:e2:5a:c7:80:39:bd:e6:35:50:29:0f:47:19:37:af:
d3:76:7c:30:8d:fc:83:75:e4:1f:c8:76:76:58:37:51:27:db:
9b:a1:0f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org