Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/lcNxE8RpjlFAu3q6fCPX-U-9NJ0.roa
File: lcNxE8RpjlFAu3q6fCPX-U-9NJ0.roa (raw, json)
Hash identifier: zYKihuD5N13jJRmyL2UbISIqYbOb9/oXH267PUb0euQ=
Subject key identifier: 95:C3:71:13:C4:69:8E:51:40:BB:7A:BA:7C:23:D7:F9:4F:BD:34:9D
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 018B7108FCF4DBA8B276A6D591FE9912B676
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/lcNxE8RpjlFAu3q6fCPX-U-9NJ0.roa
Signing time: Fri 27 Oct 2023 12:08:16 +0000
ROA not before: Fri 27 Oct 2023 12:08:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 45.149.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:71:08:fc:f4:db:a8:b2:76:a6:d5:91:fe:99:12:b6:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Oct 27 12:08:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95c37113c4698e5140bb7aba7c23d7f94fbd349d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:4e:9c:d6:c9:24:87:88:9b:cb:05:8f:d9:2d:
ac:9c:46:0b:4a:d4:8a:5f:c7:0c:b9:85:96:86:9c:
49:b3:83:6a:6b:71:e6:9e:b1:f7:09:56:d4:10:5f:
65:5b:03:35:a8:03:f7:c9:f1:c9:22:f1:b4:17:00:
01:7e:9b:a5:08:ee:b3:6a:86:2f:34:b5:cc:d6:ab:
ad:45:43:97:e4:6b:a3:0f:70:5a:dc:bd:69:cf:5b:
79:2e:fc:5c:5d:89:b3:83:9c:41:0f:17:07:5f:45:
78:4b:b7:d7:f8:7f:52:6f:95:72:2c:da:ff:79:7d:
56:db:ad:49:e5:66:0e:cf:46:2f:29:e6:4c:65:01:
ce:20:5a:14:75:66:7d:ab:b7:c2:55:cd:81:d6:30:
a1:5e:77:d2:b8:f7:af:be:f5:3c:81:de:c4:63:be:
0f:a3:7f:43:bc:50:32:f6:b2:c5:78:9f:6f:80:24:
66:9d:d5:12:8f:5a:d3:49:cd:70:58:30:ad:ec:ff:
62:0a:ad:50:77:89:07:30:be:77:a7:dc:4a:48:22:
d1:6f:9d:a9:23:73:b4:df:33:61:68:e7:86:24:3f:
46:d5:b0:c4:2f:dd:ca:ab:e7:59:7a:65:a6:5e:f7:
70:36:26:69:95:de:dc:98:92:f6:69:6a:49:2d:14:
b7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C3:71:13:C4:69:8E:51:40:BB:7A:BA:7C:23:D7:F9:4F:BD:34:9D
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/lcNxE8RpjlFAu3q6fCPX-U-9NJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.39.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d4:8a:ad:66:83:89:c8:1f:60:41:74:c9:33:7d:6d:95:d1:
c6:0a:d5:50:dd:8d:07:7a:d2:16:3f:d8:dd:de:a6:c8:38:eb:
d3:74:30:09:90:0a:3e:2c:22:aa:ed:87:c2:88:3a:4f:71:1f:
7d:e4:51:54:c0:99:8c:20:42:aa:dc:a1:e5:40:53:ee:72:5f:
54:eb:6f:19:a8:1b:3d:75:1d:7e:d7:d0:3f:30:e2:fe:c9:04:
37:7a:c7:4d:58:c2:55:3a:8e:f2:d0:58:dc:63:c3:65:5d:ff:
43:a1:29:11:bb:e4:b4:be:51:5d:42:24:2a:8a:90:35:43:64:
b0:81:f4:94:3c:5d:8a:f1:f9:fc:be:85:9c:90:da:8a:6d:8e:
53:7d:6c:b7:b9:83:ae:45:02:10:e9:2c:c6:38:83:00:a1:9b:
b1:4e:6e:6b:27:6a:ae:80:ed:6d:6e:2d:3d:a4:52:88:bc:96:
ea:fe:a4:f1:82:92:69:4e:dc:01:51:8b:61:03:9f:0d:64:d8:
68:f2:7f:d8:98:d1:c2:79:fe:51:91:cf:62:a9:00:26:1f:d4:
eb:73:a7:61:9b:2c:19:7a:33:32:f0:4e:fd:bf:42:ce:3c:47:
3e:67:6c:a8:47:f6:3f:6f:f7:0c:f8:a1:6e:70:55:f3:d9:12:
72:ec:8c:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:02 2024 by rpki-client on console-fra.rpki-client.org