Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/2mEylTsHnxeKJSGJW6IlSbpPsyM.roa
File: 2mEylTsHnxeKJSGJW6IlSbpPsyM.roa (raw, json)
Hash identifier: BRcbciE8iPcRmW5pPIgXp/kcJMIixSLGQABn3Dtd6f4=
Subject key identifier: DA:61:32:95:3B:07:9F:17:8A:25:21:89:5B:A2:25:49:BA:4F:B3:23
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018C25B5831AD81F0CF691B3823607D7C98F
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/2mEylTsHnxeKJSGJW6IlSbpPsyM.roa
Signing time: Fri 01 Dec 2023 14:08:21 +0000
ROA not before: Fri 01 Dec 2023 14:08:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42979
IP address blocks: 45.95.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:b5:83:1a:d8:1f:0c:f6:91:b3:82:36:07:d7:c9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Dec 1 14:08:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da6132953b079f178a2521895ba22549ba4fb323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:24:36:9b:cb:95:4c:b4:bd:96:2d:fc:52:8c:
e8:f5:33:3d:08:5a:6a:02:0e:2a:e0:c0:bb:3d:87:
5a:3a:6e:db:63:33:11:3f:40:8f:89:ce:d5:16:8d:
f2:dc:69:14:c4:d1:57:5e:4e:6b:b2:46:f4:3a:9e:
9f:f1:47:77:f1:5a:5e:c0:5a:59:73:42:ce:62:13:
cf:c3:4b:38:1f:98:b2:62:1a:da:a7:2b:fd:a5:09:
42:00:16:dc:05:eb:d8:6f:fc:72:c3:de:33:2c:b8:
23:61:ee:d0:a3:cb:c6:ab:ce:35:e0:fa:5e:d9:60:
bc:ba:16:48:1d:dc:74:bb:a6:30:a5:05:0b:07:c1:
4e:ce:c8:cb:f2:c7:f0:3b:76:23:b5:ad:90:81:42:
46:cb:54:0f:07:d5:cd:36:31:06:d2:98:e0:54:6f:
57:0a:f5:b6:c6:37:cc:25:eb:12:79:d6:89:12:26:
70:1d:fc:b3:af:e8:18:a6:ae:21:28:93:40:d5:71:
3c:2f:a8:33:4f:1e:a7:44:3a:b1:54:04:d2:13:5c:
63:36:7e:60:b0:76:56:d6:76:d8:82:7f:b6:8c:43:
6d:db:43:30:58:35:fb:38:15:30:92:cd:d0:5d:8d:
37:2d:35:f0:0f:4c:aa:d9:2d:95:2c:dd:83:c3:61:
c5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:61:32:95:3B:07:9F:17:8A:25:21:89:5B:A2:25:49:BA:4F:B3:23
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/2mEylTsHnxeKJSGJW6IlSbpPsyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.33.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f1:c6:09:a8:42:38:99:94:b1:f1:c5:45:8c:c5:0a:a9:74:
5a:c8:d3:fc:dd:f2:75:bf:c6:6e:5e:76:b8:eb:ce:d5:f3:a6:
cf:af:c1:13:6b:b0:d6:14:c0:6b:af:4e:28:26:55:cd:5b:71:
9a:42:98:4b:6e:fa:d9:bb:d1:d8:da:34:44:df:5b:3b:87:12:
49:4d:c8:78:26:d6:03:31:8f:15:1c:83:b7:07:99:b8:2a:df:
5a:00:e5:56:29:be:3e:05:13:cb:ef:07:73:fc:cd:d6:35:17:
95:05:d6:80:a2:1d:13:e9:bd:a1:43:87:fc:4e:6e:cb:1b:68:
01:cb:e0:ec:d7:f3:15:60:59:59:92:ce:2f:bb:89:24:de:14:
b2:0e:71:61:52:19:ad:a5:4d:0d:52:63:ec:6a:16:53:4f:4f:
c8:3d:e9:0d:9b:c1:24:0b:31:76:4e:31:8d:6b:c2:95:ef:37:
7c:ef:d8:cb:a1:0b:a6:b6:c9:f0:5e:cb:1d:cd:e4:87:9b:ad:
d1:b1:13:fe:61:17:5c:8f:e9:a4:0b:44:86:b5:d5:ca:05:a5:
e2:b2:02:82:0c:3d:f7:e1:57:b3:e3:b5:a4:cf:4e:a0:1b:58:
93:22:81:58:e4:06:74:54:98:36:a6:8f:fc:d9:d0:09:27:a0:
fd:64:98:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org