Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/tj7XIpiSlRNT_0CQMXmtrHbvZ3E.roa
File: tj7XIpiSlRNT_0CQMXmtrHbvZ3E.roa (raw, json)
Hash identifier: VLZH1JO72Vp58IDjVcpHOBE0A264Mn7pYJigeLnPRsQ=
Subject key identifier: B6:3E:D7:22:98:92:95:13:53:FF:40:90:31:79:AD:AC:76:EF:67:71
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018DD0942D24CF9E5114FB21A45DC1A0A141
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/tj7XIpiSlRNT_0CQMXmtrHbvZ3E.roa
Signing time: Thu 22 Feb 2024 11:29:48 +0000
ROA not before: Thu 22 Feb 2024 11:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.146.202.0/23 maxlen: 24
45.146.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 08:04:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:94:2d:24:cf:9e:51:14:fb:21:a4:5d:c1:a0:a1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Feb 22 11:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b63ed7229892951353ff40903179adac76ef6771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ee:08:a3:ab:fc:75:76:18:43:31:5e:2e:df:
0f:85:32:41:57:24:e1:c0:f8:5c:50:a6:29:7f:2c:
4f:cf:f0:26:21:45:71:12:ba:85:9e:b5:19:8b:b5:
71:99:bb:16:65:ec:52:d0:4d:64:b0:4b:8a:4a:88:
fe:1d:76:2c:76:19:99:80:1a:2e:7c:fa:68:e8:31:
fd:3d:fc:44:b7:48:b4:2a:fe:5a:14:0c:4c:1a:c8:
ac:b0:77:42:33:5f:dd:a5:6b:81:2c:48:fd:db:a8:
91:d9:52:50:c4:16:a6:c4:ec:1d:d8:2c:7a:35:c3:
dc:db:ca:ca:c0:34:bb:6d:9f:c9:6a:d2:bb:9c:53:
2d:30:4b:23:0d:2f:67:df:c7:4c:bf:2b:cd:83:b5:
0f:b7:f3:23:4d:05:4c:99:1a:da:92:ec:72:07:3b:
14:28:44:7b:2e:c8:10:b4:79:e5:ee:87:56:74:e8:
01:c2:0b:f2:2d:34:05:73:ea:d7:2a:a7:86:d5:31:
03:63:02:f0:b7:89:ec:ec:d0:58:e0:cf:a0:d2:81:
54:0f:e8:f6:af:61:85:36:16:68:a7:eb:b0:70:34:
cb:a2:6c:12:91:dd:a0:bf:19:1b:e9:ec:f1:12:bc:
7c:e0:68:54:57:1e:24:b4:bc:fa:82:cf:dc:e1:e4:
cc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3E:D7:22:98:92:95:13:53:FF:40:90:31:79:AD:AC:76:EF:67:71
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/tj7XIpiSlRNT_0CQMXmtrHbvZ3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:9e:d8:7a:93:e0:73:79:51:0d:f4:3c:04:0a:95:30:82:6a:
b2:d8:f7:29:f0:42:c4:b9:8f:64:54:75:57:83:aa:d1:53:1a:
70:31:71:86:b8:ce:7e:33:77:dd:56:d1:6a:81:c6:99:93:63:
d0:e6:69:c5:00:af:46:d0:65:ff:84:7d:62:5a:b8:0b:de:95:
13:a1:b1:e4:a0:e0:29:7f:8c:9a:78:89:d0:e4:00:64:8b:51:
30:b4:02:a1:74:7f:0e:d0:a4:f6:9c:f2:31:ad:0e:db:03:67:
5d:2a:97:17:ea:f6:43:92:54:48:21:6f:20:e5:bc:40:75:cd:
c6:dc:89:c7:85:c7:4d:b8:ec:55:db:36:b4:3b:1e:5a:57:a8:
f6:63:7d:50:80:62:b0:c0:9a:24:6c:ea:ba:ca:a5:4e:34:c3:
b1:d3:04:29:37:98:62:cd:2f:c8:0b:4f:07:8d:1a:f4:bb:49:
e4:93:bc:e6:50:b4:c7:3c:2c:af:cb:12:55:88:d9:28:a5:df:
a6:b8:a0:03:61:67:e8:a6:57:12:44:e5:94:d0:f3:0b:ee:da:
68:9e:5a:45:1a:77:a0:f6:74:79:fd:03:a2:37:1f:9b:48:0e:
7c:ed:18:b5:62:ec:93:a3:00:52:6c:5b:b7:3e:7d:bf:cd:a7:
ee:af:f6:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org