Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/lbAL6aLAi8IZnuzqHqFETzf2jLA.roa
File: lbAL6aLAi8IZnuzqHqFETzf2jLA.roa (raw, json)
Hash identifier: eNFFJ1DHloAEnLKBNaHbs/OtmF1JbEuy9oVtrNMXzHY=
Subject key identifier: 95:B0:0B:E9:A2:C0:8B:C2:19:9E:EC:EA:1E:A1:44:4F:37:F6:8C:B0
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F7990CA75D60C4F9C32A483F426E479
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/lbAL6aLAi8IZnuzqHqFETzf2jLA.roa
Signing time: Sun 01 Jan 2023 22:35:15 +0000
ROA not before: Sun 01 Jan 2023 22:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205491
IP address blocks: 45.131.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:90:ca:75:d6:0c:4f:9c:32:a4:83:f4:26:e4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95b00be9a2c08bc2199eecea1ea1444f37f68cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e2:ba:20:29:26:53:0b:b1:7c:2e:6b:f0:5c:
82:c6:61:73:d0:62:83:34:55:bd:17:c6:51:bc:d3:
18:92:20:8b:00:35:0e:d1:8d:b1:e1:28:e5:ca:28:
10:54:6c:41:48:43:60:7f:00:5a:9e:ac:40:01:41:
76:7f:9e:bb:3b:d0:24:9f:b7:12:ef:63:9d:9d:05:
21:d3:af:d6:d1:72:3d:df:8e:63:55:ed:0f:a4:f1:
eb:42:4a:5c:63:93:b3:aa:71:40:bb:96:82:d8:1c:
a7:b5:a0:c4:7d:8f:66:24:06:17:dd:90:45:18:f7:
06:0e:f8:bc:fd:16:8b:a1:33:50:e2:ca:ce:54:67:
82:58:6c:c5:80:98:4c:42:76:76:97:a6:5c:6a:f8:
bd:35:b7:92:09:06:ce:09:fa:6f:b6:23:52:29:93:
d8:bb:d1:49:bb:10:16:9c:2d:73:bb:ba:4c:0a:0c:
7c:c9:b3:10:fc:c1:94:e2:e5:b9:91:90:f0:a5:7a:
63:3d:05:3f:8d:db:14:45:e0:d1:51:11:7a:c5:a0:
04:10:cf:85:7e:65:ab:53:40:ce:42:8f:91:3f:91:
24:33:6d:35:03:ff:ab:61:40:bc:cf:68:93:2c:37:
15:1b:eb:65:fd:fe:5f:a1:22:3d:99:cc:98:42:86:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B0:0B:E9:A2:C0:8B:C2:19:9E:EC:EA:1E:A1:44:4F:37:F6:8C:B0
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/lbAL6aLAi8IZnuzqHqFETzf2jLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.61.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e3:27:a2:9f:33:b0:5b:6b:10:d6:3c:a1:ae:bc:dc:e0:11:
a1:7d:c8:28:f0:3f:6a:72:ec:89:e8:e9:26:56:10:1f:3f:d8:
c8:95:f2:89:0f:55:5d:a1:7f:5d:15:ec:99:f7:c1:7a:ee:14:
c6:38:68:66:6e:b7:a4:f9:c2:eb:d1:b5:c8:1d:fe:83:fa:35:
fe:66:77:41:84:2d:45:2e:aa:75:10:5b:76:34:44:ff:61:14:
fe:2c:20:21:df:59:39:58:43:b4:cb:b6:2a:1d:08:69:82:a4:
68:60:dd:28:f8:95:fd:a3:1d:d9:00:77:49:e7:fd:9b:4a:e8:
97:0d:81:0f:b5:3f:e3:79:fe:50:29:0c:13:97:a5:5b:23:68:
b4:07:25:0f:11:55:22:46:e3:36:9c:e0:db:24:f1:34:0d:f2:
52:05:0f:e9:a3:b1:4b:88:89:93:a6:34:b5:9d:d1:8f:86:69:
98:9d:84:ab:0b:a5:04:74:b9:ef:49:a5:14:af:e8:d4:7b:90:
27:f8:ae:1c:e7:97:dc:d4:66:bc:53:d5:93:df:d6:e6:2d:d6:
b5:c1:c7:9f:9e:fe:30:8b:2b:b6:54:d8:2c:16:28:91:37:8b:
ff:b9:68:b1:56:ca:a4:ee:b3:f6:8a:75:ae:24:c1:5e:40:09:
12:b4:d1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org