Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/QhXIieCCUHA58pr80adztXNLLxU.roa
File: QhXIieCCUHA58pr80adztXNLLxU.roa (raw, json)
Hash identifier: T2ysBv+5Qx0dGl4v299NDGZXqt1UWcm2e613tdeAQSE=
Subject key identifier: 42:15:C8:89:E0:82:50:70:39:F2:9A:FC:D1:A7:73:B5:73:4B:2F:15
Certificate issuer: /CN=304e59a223f4bcb823492fb1096c3a82310c03da
Certificate serial: 018572B40E4AFDA3BCA59843B661F391FB15
Authority key identifier: 30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/QhXIieCCUHA58pr80adztXNLLxU.roa
Signing time: Mon 02 Jan 2023 13:38:00 +0000
ROA not before: Mon 02 Jan 2023 13:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42032
IP address blocks: 45.14.60.0/22 maxlen: 22
2a0e:b581::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0e:4a:fd:a3:bc:a5:98:43:b6:61:f3:91:fb:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304e59a223f4bcb823492fb1096c3a82310c03da
Validity
Not Before: Jan 2 13:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4215c889e082507039f29afcd1a773b5734b2f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e3:cb:10:21:08:f6:d4:e0:a5:68:41:31:4c:
2c:ce:b1:b7:56:5c:fc:7f:50:bb:2f:da:f8:56:9a:
fe:24:cf:81:0d:56:3f:0a:64:6a:e3:7f:c4:b1:c0:
c6:27:5d:49:7c:62:a9:65:80:cc:39:01:ef:ea:fa:
ef:74:f7:54:d4:37:b0:5e:10:bf:fe:31:14:7b:cc:
83:e9:79:93:f4:89:7a:63:9f:08:06:c2:d0:46:22:
92:42:86:cf:ed:7f:e2:a8:5f:b7:94:da:50:f4:84:
93:d9:1c:c3:bf:00:3b:03:67:1a:b9:b9:20:dd:56:
13:e0:01:e2:8e:8c:31:69:c3:e0:8c:cc:bc:f0:10:
cf:93:c0:a2:bb:17:db:8e:a9:14:3f:7d:63:7d:8f:
1c:a4:27:a2:fe:b4:fe:70:f9:80:2d:0e:15:56:19:
69:16:7f:e0:c4:5b:4f:5e:9a:c0:28:bb:c5:8f:e1:
df:db:ca:b6:9c:b8:99:21:b8:3d:ac:b4:48:27:e9:
e8:57:96:a6:f1:b5:13:3a:17:56:aa:a1:93:59:da:
3c:5a:74:cd:a1:e3:7c:48:ab:ed:21:27:87:71:ae:
79:f7:81:33:24:19:21:7e:a6:bc:38:e4:aa:40:58:
61:7f:9e:f3:1d:cb:95:b4:df:68:47:91:d8:3c:ab:
ac:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:15:C8:89:E0:82:50:70:39:F2:9A:FC:D1:A7:73:B5:73:4B:2F:15
X509v3 Authority Key Identifier:
keyid:30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/QhXIieCCUHA58pr80adztXNLLxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.60.0/22
IPv6:
2a0e:b581::/32
Signature Algorithm: sha256WithRSAEncryption
76:14:62:82:28:93:7d:1c:39:4e:44:ba:d8:0d:67:ab:e0:8b:
23:4b:17:d2:c1:3b:93:4f:3e:86:aa:b4:b5:85:c6:e5:04:c7:
71:a4:8d:fc:2b:61:cf:b4:fa:c1:3c:0f:c7:e8:ea:a6:e3:ad:
ae:9a:91:b3:f3:ce:45:21:c7:fe:63:3c:ec:a3:16:fc:4f:ac:
f7:20:07:ca:5c:f1:6a:42:a4:88:07:b8:07:a4:af:14:2f:10:
0a:f5:4a:3c:de:45:db:0a:96:03:02:d4:c6:27:02:ee:6c:23:
a0:5e:c0:b2:8b:7b:07:c8:53:06:a6:75:49:4f:aa:47:04:97:
19:00:29:7f:89:d9:d6:39:4d:c7:2c:a3:89:7a:42:d9:40:bf:
cf:1e:f2:95:f3:11:4c:a5:a5:94:dd:90:8a:51:55:02:7f:3d:
42:93:79:ba:6c:76:8b:8b:ff:d1:b7:ae:4a:4e:84:c3:1f:ed:
dd:b6:47:c2:a8:a3:80:8c:bf:81:76:ea:7c:05:82:a3:8e:7c:
c9:72:ce:09:3c:7f:ab:12:8b:2f:a0:36:02:7c:7c:55:4b:0b:
26:73:00:46:f5:95:72:a4:34:29:6f:32:d2:af:d5:8e:69:6e:
fe:07:cf:8a:65:34:20:95:42:34:09:cb:59:90:3d:6d:2d:fd:
43:99:76:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:54 2024 by rpki-client on console-ams.rpki-client.org