Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/346a23-1181-4a80-9f55-dd7d47cf5c18/1/ujtjwX7VsNIkFxl6Xhdu_RHEuGg.roa
File: ujtjwX7VsNIkFxl6Xhdu_RHEuGg.roa (raw, json)
Hash identifier: Uoi5mIrcWb/IzROg/QBvgghjhLgjIhkzLLM1nwvbTxw=
Subject key identifier: BA:3B:63:C1:7E:D5:B0:D2:24:17:19:7A:5E:17:6E:FD:11:C4:B8:68
Certificate issuer: /CN=c4add5ba7662b731dd08bcf8738f135d93aed451
Certificate serial: 01857014F6F3BD8040803D101B50E5B2A09A
Authority key identifier: C4:AD:D5:BA:76:62:B7:31:DD:08:BC:F8:73:8F:13:5D:93:AE:D4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xK3VunZitzHdCLz4c48TXZOu1FE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/346a23-1181-4a80-9f55-dd7d47cf5c18/1/ujtjwX7VsNIkFxl6Xhdu_RHEuGg.roa
Signing time: Mon 02 Jan 2023 01:25:00 +0000
ROA not before: Mon 02 Jan 2023 01:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.149.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:14:f6:f3:bd:80:40:80:3d:10:1b:50:e5:b2:a0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4add5ba7662b731dd08bcf8738f135d93aed451
Validity
Not Before: Jan 2 01:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba3b63c17ed5b0d22417197a5e176efd11c4b868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fe:95:86:07:d1:8a:a2:2e:db:c3:53:18:cd:
41:be:63:f6:27:a5:09:4f:28:63:64:73:0d:e2:99:
08:43:07:a9:1b:61:2a:c8:18:13:1e:17:cb:59:af:
88:d9:ac:4c:80:cf:1c:ee:4f:e1:43:70:52:fe:b1:
da:3a:8b:a6:a1:45:f6:b9:47:bc:77:63:9d:ae:ee:
b7:09:e8:7e:d9:4f:3a:24:1b:69:73:72:06:09:86:
46:f2:5c:80:5b:3a:41:fd:a6:08:64:69:80:fd:9e:
c5:57:04:4b:18:ab:54:97:16:08:15:05:58:41:86:
c2:85:23:0b:96:8b:90:f5:57:c5:ca:10:7d:1e:9f:
83:91:d4:68:44:96:c4:30:7a:63:07:91:99:76:7d:
6d:42:c1:dd:f0:c0:e6:f6:ab:01:f6:11:56:2f:6e:
df:6e:43:48:c2:d4:d4:11:ce:74:71:5f:48:d0:d0:
95:f5:83:a4:30:71:c0:bc:11:c8:2a:9f:c5:37:75:
4a:58:70:a6:a2:1f:c4:0e:b2:34:12:f8:cb:a7:0c:
25:17:ea:df:2a:bb:b6:ca:42:ab:9d:4c:34:22:af:
ab:6f:0a:9e:86:7f:cd:a9:17:09:20:63:91:4d:a5:
e7:fe:04:98:49:e6:b8:e4:a4:80:c8:60:3c:91:76:
1c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3B:63:C1:7E:D5:B0:D2:24:17:19:7A:5E:17:6E:FD:11:C4:B8:68
X509v3 Authority Key Identifier:
keyid:C4:AD:D5:BA:76:62:B7:31:DD:08:BC:F8:73:8F:13:5D:93:AE:D4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xK3VunZitzHdCLz4c48TXZOu1FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/346a23-1181-4a80-9f55-dd7d47cf5c18/1/ujtjwX7VsNIkFxl6Xhdu_RHEuGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/346a23-1181-4a80-9f55-dd7d47cf5c18/1/xK3VunZitzHdCLz4c48TXZOu1FE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.108.0/22
Signature Algorithm: sha256WithRSAEncryption
31:8e:a2:22:61:68:2f:b5:43:dc:5c:e9:1b:ac:22:78:92:7f:
76:4f:03:9e:c3:4d:08:66:50:c4:35:78:0b:46:a1:37:0f:92:
a4:ac:29:e9:21:d2:ef:f7:7b:f2:88:6a:81:10:dd:6a:86:80:
1b:f7:31:35:5c:6b:81:4b:28:e8:7f:1c:c5:e6:82:39:10:e7:
bd:91:17:bc:39:ee:78:42:af:54:a3:32:79:14:87:e7:d3:f3:
0f:e8:b0:f8:01:1c:a7:2a:12:f8:47:2c:98:c5:34:c0:28:d9:
26:39:9b:a6:3c:3b:eb:4b:eb:ac:ee:ce:12:ce:9d:eb:14:58:
ff:9c:a5:7d:30:d1:9f:3f:3e:d8:e7:40:04:9c:61:1d:7f:d5:
43:38:42:f4:59:43:c4:0d:51:b5:7e:ee:df:3a:27:14:bf:70:
d3:1f:00:58:f1:c4:f1:58:a5:11:7b:1e:fd:69:b0:bd:3d:2f:
94:61:2a:9d:80:70:bd:77:01:a7:bd:cd:5d:17:56:8c:28:82:
10:ed:5f:79:fc:a4:3b:94:0b:ae:f1:3c:65:89:f9:a2:71:f3:
5c:21:e2:84:10:91:02:90:97:6b:fd:ad:2d:32:0b:54:79:cc:
d5:c6:bd:e2:6e:25:bd:3f:80:80:b4:63:8f:71:11:71:9c:10:
49:16:f4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:12 2024 by rpki-client on console-fra.rpki-client.org