Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0fb69d-cefc-46ec-be39-85bd34bd4e5a/1/Q7WdQ5YIYt6ffFTH2Z7UaJZHI0I.roa
File: Q7WdQ5YIYt6ffFTH2Z7UaJZHI0I.roa (raw, json)
Hash identifier: InUMaNYoehb3C+UhRDjbB1rOOJ40xYpWpheT9T/fDSk=
Subject key identifier: 43:B5:9D:43:96:08:62:DE:9F:7C:54:C7:D9:9E:D4:68:96:47:23:42
Certificate issuer: /CN=74774b7b530edacf8fa73353a9014a5638949bfb
Certificate serial: 0185706737E61651314B0EC640A4DE8CC078
Authority key identifier: 74:77:4B:7B:53:0E:DA:CF:8F:A7:33:53:A9:01:4A:56:38:94:9B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHdLe1MO2s-PpzNTqQFKVjiUm_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0fb69d-cefc-46ec-be39-85bd34bd4e5a/1/Q7WdQ5YIYt6ffFTH2Z7UaJZHI0I.roa
Signing time: Mon 02 Jan 2023 02:54:50 +0000
ROA not before: Mon 02 Jan 2023 02:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42280
IP address blocks: 45.87.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:37:e6:16:51:31:4b:0e:c6:40:a4:de:8c:c0:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74774b7b530edacf8fa73353a9014a5638949bfb
Validity
Not Before: Jan 2 02:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43b59d43960862de9f7c54c7d99ed46896472342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:aa:29:55:5b:29:b4:2d:75:ad:cd:3c:d5:60:
72:65:94:17:1c:a3:e8:34:c4:89:1f:9a:70:9d:f0:
23:46:8d:1c:88:f7:d3:3f:34:35:a9:99:54:ea:42:
c8:03:e0:24:38:30:75:12:1c:7b:9c:7c:8a:96:16:
4f:a7:31:d1:40:16:01:70:77:09:36:15:97:69:18:
c9:50:dd:64:fc:65:1e:62:58:f0:78:12:26:23:3d:
40:25:70:62:55:96:c1:83:ab:b2:bf:99:2a:79:54:
42:b4:a2:40:be:72:9a:65:4e:f3:a7:38:a8:92:11:
a3:49:dd:da:39:3e:5f:f0:25:59:4e:ea:a7:c3:29:
7f:a4:c8:43:0e:13:c9:aa:48:a0:11:b6:56:fb:b9:
05:bd:97:f4:bc:09:f7:1c:f0:f6:66:8e:c3:d2:a7:
2d:4c:1f:a5:2f:90:f7:bd:00:59:b3:25:4e:e5:dd:
7b:ea:6d:b0:60:9f:53:9e:e9:44:b4:31:2b:19:0b:
61:d6:0c:1f:33:de:cc:25:9a:d3:3c:42:76:16:6c:
cd:a9:a7:25:51:88:82:f4:dc:08:db:cf:b8:52:2a:
fc:30:1c:8e:e9:4c:48:52:ee:f7:ca:fd:38:ba:4b:
1a:b6:c4:f5:61:e1:27:a5:e6:9d:53:c1:10:f7:80:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B5:9D:43:96:08:62:DE:9F:7C:54:C7:D9:9E:D4:68:96:47:23:42
X509v3 Authority Key Identifier:
keyid:74:77:4B:7B:53:0E:DA:CF:8F:A7:33:53:A9:01:4A:56:38:94:9B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHdLe1MO2s-PpzNTqQFKVjiUm_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0fb69d-cefc-46ec-be39-85bd34bd4e5a/1/Q7WdQ5YIYt6ffFTH2Z7UaJZHI0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0fb69d-cefc-46ec-be39-85bd34bd4e5a/1/dHdLe1MO2s-PpzNTqQFKVjiUm_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.122.0/24
Signature Algorithm: sha256WithRSAEncryption
95:e0:b9:d6:34:ce:ac:8b:89:51:05:41:10:5c:f4:52:8e:bb:
bd:dc:63:e2:01:27:18:30:05:70:d7:b9:12:ef:10:2e:38:2f:
8f:f3:26:89:0d:7a:a9:0e:74:3a:68:27:3f:2a:40:33:5c:9b:
4d:67:52:a5:fa:8e:ec:c9:1a:d0:bb:a4:2b:ed:0d:d8:71:f1:
bc:40:e3:b1:2e:31:81:7e:f1:87:4b:61:b4:c1:8b:ab:8d:14:
1b:80:99:0e:5a:89:8a:65:eb:dc:35:87:24:87:e8:b2:06:97:
64:b5:0a:26:6c:8e:52:89:b7:82:78:85:5e:05:1c:f9:10:82:
e6:bf:26:02:d5:0f:80:c7:eb:d3:d1:d1:5e:55:b2:16:ae:13:
39:24:ea:94:61:cc:03:f3:a6:cc:d4:d5:f8:57:0c:42:cf:50:
93:ce:17:21:49:54:be:11:c7:e3:4f:59:80:cf:d1:f1:3f:35:
c9:65:bc:d8:79:86:3a:44:4e:bf:8a:a8:84:7f:60:f8:dd:82:
5c:f1:66:43:bb:77:8c:7f:1d:4a:c5:7c:5f:89:c3:75:07:ed:
ad:c8:87:74:1a:36:98:c5:4e:d6:77:ee:dc:5e:9b:38:ae:93:
d0:03:5d:49:be:ba:96:2e:2b:9e:d4:e6:2f:cb:da:04:6e:f4:
96:52:e6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:33 2024 by rpki-client on console-ams.rpki-client.org