Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/47iqQ3hreqyPv9jRp3btymzeEcY.roa
File: 47iqQ3hreqyPv9jRp3btymzeEcY.roa (raw, json)
Hash identifier: 7Fa4oFBPQF700GWPAbLLuXwgXis9xWth6mmanPAsPo4=
Subject key identifier: E3:B8:AA:43:78:6B:7A:AC:8F:BF:D8:D1:A7:76:ED:CA:6C:DE:11:C6
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 018D165F6542612D10363CA57A6C350D7DBE
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/47iqQ3hreqyPv9jRp3btymzeEcY.roa
Signing time: Wed 17 Jan 2024 07:42:47 +0000
ROA not before: Wed 17 Jan 2024 07:42:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43754
IP address blocks: 45.159.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jan 2024 15:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:5f:65:42:61:2d:10:36:3c:a5:7a:6c:35:0d:7d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Jan 17 07:42:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3b8aa43786b7aac8fbfd8d1a776edca6cde11c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:27:6e:f6:af:1c:72:c8:1e:f5:1a:60:cc:59:
04:02:bf:0f:d5:49:38:33:51:6d:65:2b:b5:3f:b0:
d4:91:b3:b9:fb:b4:f0:4d:b2:3d:af:41:02:ed:0a:
68:5f:df:e2:3f:9d:44:f6:20:c0:55:7f:63:a3:1c:
c0:66:bf:e7:3f:f5:d8:62:73:f6:94:34:17:fd:ac:
42:86:72:33:6c:6b:3e:95:b2:27:27:3c:0d:df:66:
9a:e6:11:84:cb:78:99:4f:9c:77:ee:43:ac:3a:fd:
35:a8:0d:15:2e:3e:b8:f1:86:ee:41:61:b9:60:8a:
56:04:d6:62:e0:80:a4:51:fa:f9:4b:1d:80:27:a9:
c0:69:9a:bc:3a:73:35:99:cf:53:ce:a0:9c:0d:94:
7d:26:ea:18:66:2d:df:c8:88:f4:97:db:11:c6:d8:
16:31:13:d9:26:02:75:3e:34:04:d4:b7:fc:d8:69:
0b:2e:38:98:b3:03:5e:b3:79:94:2f:5a:59:8f:15:
e3:52:dc:26:de:f4:be:93:68:0a:f2:f6:79:2c:32:
15:fd:51:4b:65:90:21:79:b1:27:f6:94:8e:e7:ea:
d1:52:4e:52:77:c6:f4:b4:27:f9:02:57:f3:5e:07:
45:0e:fb:0b:ea:89:46:f3:8c:26:34:84:9a:73:92:
46:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B8:AA:43:78:6B:7A:AC:8F:BF:D8:D1:A7:76:ED:CA:6C:DE:11:C6
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/47iqQ3hreqyPv9jRp3btymzeEcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.148.0/24
Signature Algorithm: sha256WithRSAEncryption
62:c2:e5:88:40:51:0a:34:12:ce:11:10:ab:7b:6c:c4:cd:bf:
17:e4:ca:ac:ce:8d:d3:c6:dc:b4:d7:4b:70:43:89:40:e6:5d:
ce:b9:cc:d9:72:67:39:5a:0b:bb:b1:94:1f:5c:37:2a:c7:7d:
d0:0a:c9:7f:38:e6:65:ef:2d:20:42:b0:e6:2c:a2:78:e8:4e:
e8:fb:09:22:96:d2:7d:f0:5d:2a:a4:1d:7c:78:01:f1:68:10:
8a:d9:54:17:27:bc:d5:87:c6:2e:e7:15:a1:3a:7c:fa:bb:50:
be:5e:1c:e4:1b:e0:7a:0c:c8:c5:49:72:e5:5d:c5:ed:2b:e0:
35:8c:2f:4f:bf:25:b6:54:e9:7f:db:f7:69:41:b8:0a:54:47:
50:12:8c:e2:92:59:ba:b2:a1:e6:01:3f:77:d9:a9:f5:13:f7:
d5:70:dd:77:cb:2f:c8:88:03:6d:d6:ed:5b:dc:ca:45:47:e5:
68:94:2a:36:79:1b:16:0f:30:41:1a:e3:d3:af:89:e3:13:89:
ad:02:b8:11:7b:68:29:cc:e4:75:ac:8b:32:80:21:da:5d:04:
de:ba:0a:a4:e8:ff:2b:3f:75:10:ea:17:a6:ae:6e:1e:b9:ce:
64:36:22:1c:63:27:01:72:31:01:e6:84:48:b0:c1:37:a5:55:
62:87:b2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 27 19:42:00 2024 by rpki-client on console-fra.rpki-client.org