Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/upQE_-x3H772G_r_hSH5Ct0B8C8.roa
File: upQE_-x3H772G_r_hSH5Ct0B8C8.roa (raw, json)
Hash identifier: LYi4EAtnUIXZJytyAAkNaipdnwUnjtOljwX5ECqWkkQ=
Subject key identifier: BA:94:04:FF:EC:77:1F:BE:F6:1B:FA:FF:85:21:F9:0A:DD:01:F0:2F
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F7996178CE856D5588BBE8B9915E183
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/upQE_-x3H772G_r_hSH5Ct0B8C8.roa
Signing time: Sun 01 Jan 2023 22:35:17 +0000
ROA not before: Sun 01 Jan 2023 22:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210558
IP address blocks: 45.138.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 06:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:96:17:8c:e8:56:d5:58:8b:be:8b:99:15:e1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba9404ffec771fbef61bfaff8521f90add01f02f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:71:eb:6a:e9:51:f1:77:c4:46:0f:86:04:a1:
dd:a9:36:b3:16:76:48:02:56:f8:aa:2a:a3:39:a5:
ab:7e:3e:d9:6f:b7:0a:7c:47:17:f1:45:80:8a:74:
91:e1:f8:8f:75:a1:7a:a9:6d:b9:da:a0:db:ce:ca:
b6:a9:d1:d6:2c:af:2c:0f:11:d1:ff:f6:3d:4e:3e:
64:bf:ab:d8:80:3d:48:56:e3:50:b5:c5:68:bf:e8:
8d:86:45:a9:d5:96:37:1d:0d:bd:96:90:6a:51:a0:
40:93:52:47:2c:62:3e:14:cb:96:0b:0b:6e:6e:04:
56:e6:d4:93:5c:b2:42:8e:ce:19:1d:49:19:cd:ce:
05:df:e3:35:17:ce:2e:1d:15:f8:c1:cd:35:d5:c0:
2c:92:71:6b:c2:1f:66:ff:9f:cd:84:fa:68:36:e3:
41:8f:bf:25:83:d0:90:10:45:da:db:24:15:27:c8:
5f:43:bc:70:10:1f:ae:92:23:8a:68:97:73:6c:a8:
ec:65:19:d6:8e:43:6c:fc:89:55:85:ae:8e:13:62:
97:be:ad:14:d6:f9:22:8f:af:a9:48:8e:79:a7:47:
e5:6a:0f:79:1c:9d:0b:13:59:04:60:52:a4:7b:7e:
5f:b0:d0:9a:af:dd:7e:31:2e:72:a2:4c:f3:30:5c:
18:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:94:04:FF:EC:77:1F:BE:F6:1B:FA:FF:85:21:F9:0A:DD:01:F0:2F
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/upQE_-x3H772G_r_hSH5Ct0B8C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:bc:94:eb:d6:05:1b:53:bf:50:c2:e4:f8:36:dc:67:19:56:
94:f0:cd:b0:97:27:39:0a:12:bd:28:85:7a:14:45:c4:44:dd:
8b:93:f3:4a:55:7a:86:78:0e:7b:c9:81:35:7b:7d:b9:7b:51:
b2:6d:fe:b8:0b:28:c4:3b:98:f8:05:db:a9:9c:7a:04:96:d3:
5b:e4:a9:5e:70:7e:88:0d:6b:17:20:60:35:e5:a1:0d:80:03:
42:14:54:46:9e:01:f2:f2:0d:91:05:28:46:e4:fb:03:36:b0:
e7:f6:93:0b:37:86:5a:f8:e5:db:96:27:2b:f1:18:b6:dc:62:
4d:db:83:7b:82:92:ef:ad:18:a7:3b:8f:26:48:11:8a:0e:0b:
a2:8f:03:c3:78:18:08:44:19:cc:40:20:7d:e6:a3:c4:9a:d1:
c0:5c:cc:4f:5f:f2:c7:0c:25:ab:67:64:f1:50:a0:b7:c7:d9:
ba:25:56:73:c9:c8:dc:c8:5f:88:70:8c:19:0c:1b:59:08:17:
2e:a6:9a:4b:c4:80:9c:06:5f:29:df:9a:73:56:f5:1b:f1:26:
60:9a:3a:e9:03:79:3c:b2:d5:80:19:0c:e5:75:a3:8d:c5:42:
65:f4:dc:b9:bd:8b:97:3a:ad:9a:b3:b9:3f:66:4e:fe:eb:e2:
8b:60:ae:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org