Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/kxGNcjHG_v7h35nhmL5ZLGazXrA.roa
File: kxGNcjHG_v7h35nhmL5ZLGazXrA.roa (raw, json)
Hash identifier: vS+1F79sbDM2hv87p96vnqFRISt30cIPCV7c4Ckb1Go=
Subject key identifier: 93:11:8D:72:31:C6:FE:FE:E1:DF:99:E1:98:BE:59:2C:66:B3:5E:B0
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 018EA5EDBE018CB6211B46A0D258BFDF5244
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/kxGNcjHG_v7h35nhmL5ZLGazXrA.roa
Signing time: Wed 03 Apr 2024 21:46:45 +0000
ROA not before: Wed 03 Apr 2024 21:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215272
IP address blocks: 45.128.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 07:52:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a5:ed:be:01:8c:b6:21:1b:46:a0:d2:58:bf:df:52:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Apr 3 21:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93118d7231c6fefee1df99e198be592c66b35eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:04:4c:7d:fa:31:ac:93:c6:6f:b0:f4:88:e2:
67:37:70:48:b1:06:55:d6:5f:7e:4f:1c:b2:96:50:
55:59:67:f9:f7:db:8c:e1:83:57:81:f8:f7:87:33:
7d:fe:1b:37:13:81:e5:c0:66:46:01:35:70:0c:3e:
a9:7e:bd:54:f7:d0:a5:14:00:6e:d0:f0:73:cb:b9:
29:a6:4c:16:d9:1b:db:41:21:df:0f:d3:41:8f:51:
8f:3d:e3:f8:81:8d:e1:7a:b6:d3:c9:dd:36:5f:2f:
96:b4:b1:d8:03:e7:5f:ab:68:50:cc:d4:03:57:38:
9b:32:b9:bd:59:21:7e:6f:fa:f7:d0:2e:ed:40:67:
86:b2:82:f4:1c:b4:a3:e7:08:d8:bb:bf:40:cc:6b:
4a:a7:0c:54:e2:de:95:50:c1:ed:57:66:89:5c:a5:
34:ff:00:b4:c0:6e:58:55:73:54:53:94:68:2f:74:
f0:ea:79:a4:74:ca:0f:84:d3:96:77:0f:3b:08:04:
be:9e:60:cb:c8:b8:fd:7a:3e:7c:50:2e:a6:1e:36:
83:75:a8:12:f3:10:c5:47:43:0c:9a:74:58:7d:7a:
73:b2:07:02:7d:d4:00:d6:cb:02:73:13:6f:09:81:
f3:d4:22:b9:0f:b3:4e:09:62:c3:a0:ad:15:b2:2a:
8f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:11:8D:72:31:C6:FE:FE:E1:DF:99:E1:98:BE:59:2C:66:B3:5E:B0
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/kxGNcjHG_v7h35nhmL5ZLGazXrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.205.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ab:62:b9:ee:19:ce:b6:35:8f:50:49:8a:df:ff:4c:25:77:
40:21:e0:37:7c:7e:10:0e:da:98:cb:f3:64:e1:99:3b:bf:64:
4b:e6:3f:6d:ef:5f:b9:db:d9:80:33:7b:fb:6a:be:08:68:f6:
96:92:22:cc:23:be:85:e6:7a:5c:92:68:4a:ab:35:e4:c8:b0:
47:66:78:3f:15:50:b1:c0:ee:17:1c:96:d8:39:a5:4a:37:5d:
c5:ac:05:58:34:5c:cc:9a:f4:11:58:0e:5a:b6:d8:30:47:2c:
11:26:0c:b3:2b:bd:12:93:bc:97:d3:0d:60:cd:7d:0c:f8:13:
7d:8e:38:0f:c3:cc:ab:5d:dc:60:36:34:d9:a3:67:90:46:4e:
19:9a:e5:20:98:f4:42:37:34:ae:75:fe:17:b4:9f:59:57:51:
1b:13:aa:ed:f3:3a:26:27:c8:b8:35:f1:cd:ab:f6:70:44:b9:
38:d4:ba:52:32:9d:58:9f:92:e5:2d:7f:c2:ac:b3:96:62:ba:
0f:f4:e9:84:4e:dc:ae:78:72:55:d1:c8:1f:32:7c:61:db:ba:
93:59:08:51:c8:a9:f5:e0:ea:e6:41:13:6e:d6:ae:ff:15:32:
bb:fb:61:38:f7:2a:b6:40:f2:86:9a:91:54:ad:19:b1:bd:97:
68:c5:79:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:02 2024 by rpki-client on console-ams.rpki-client.org