Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/Kc6MNFgPBKqIwXTRUqVo1dSGC48.roa
File: Kc6MNFgPBKqIwXTRUqVo1dSGC48.roa (raw, json)
Hash identifier: 52CZ+7J5p9R9Qwp6/XwoDxXfX+weEZ5Vpocq+dJRiJ0=
Subject key identifier: 29:CE:8C:34:58:0F:04:AA:88:C1:74:D1:52:A5:68:D5:D4:86:0B:8F
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018C402A2D94A356DB5F0D5B71B140FB169A
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/Kc6MNFgPBKqIwXTRUqVo1dSGC48.roa
Signing time: Wed 06 Dec 2023 17:25:54 +0000
ROA not before: Wed 06 Dec 2023 17:25:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 45.15.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:40:2a:2d:94:a3:56:db:5f:0d:5b:71:b1:40:fb:16:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Dec 6 17:25:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ce8c34580f04aa88c174d152a568d5d4860b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9b:57:36:c4:fa:f6:bb:61:80:49:84:42:f6:
d1:df:ac:c5:4b:ec:e7:fa:8f:5e:6c:9c:6d:2d:6a:
45:1b:d1:64:7a:f0:29:40:9e:d9:01:ed:9e:83:44:
89:9e:d5:3b:9d:20:ec:d4:ee:66:fc:8f:10:0e:50:
dc:2a:89:2e:0b:85:7e:25:51:13:78:8d:f4:e0:02:
ce:d0:aa:b2:90:4a:0e:b4:5d:8f:63:d2:4b:5b:61:
02:42:9b:d0:ed:ba:53:57:08:48:61:da:46:c7:a0:
40:4b:e1:3b:69:16:a3:4f:14:f8:72:43:f6:2a:41:
3a:45:1a:4d:db:6a:cf:65:38:b1:a6:a0:1c:55:aa:
72:0f:d8:63:06:29:5e:f3:1e:0d:ca:91:15:be:07:
2d:b0:79:bc:35:65:c5:87:f7:8a:47:fc:be:e8:cc:
ff:06:06:e5:f0:33:6d:fb:e2:6a:de:c9:72:35:9b:
d1:02:df:f4:a7:73:2b:79:a4:c9:1d:be:45:c3:a4:
f7:ae:bc:02:2b:4d:06:8a:ae:85:eb:60:01:e5:36:
35:d4:8c:e3:a2:57:46:ee:c4:73:75:55:b0:99:a1:
ae:44:1a:0e:a5:98:c7:d5:5d:aa:dc:13:54:38:ad:
c1:a1:90:84:98:20:3d:b9:29:6b:c4:3d:7f:fb:9d:
5a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CE:8C:34:58:0F:04:AA:88:C1:74:D1:52:A5:68:D5:D4:86:0B:8F
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/Kc6MNFgPBKqIwXTRUqVo1dSGC48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.157.0/24
Signature Algorithm: sha256WithRSAEncryption
22:e6:ae:41:d7:98:12:fd:82:29:65:57:89:79:b5:33:b7:22:
6f:a9:3c:a4:e5:86:66:d2:7f:c0:14:25:87:da:8c:38:80:9c:
cf:1b:29:e8:a7:68:01:a9:dc:12:b9:98:a3:8e:0c:d6:1e:50:
b8:11:d9:4f:22:e4:6a:28:88:47:ed:f0:06:2e:31:eb:79:51:
a7:f1:b5:6f:8f:dc:bf:6d:53:31:fb:ba:47:94:a8:db:51:1c:
76:96:af:44:f9:1c:9e:ec:51:0b:51:e8:25:17:e3:e1:c9:a5:
a1:c8:1e:0f:15:4d:ce:2a:de:82:43:b2:6f:7f:80:9f:f8:df:
b3:b9:87:bd:c9:d6:31:bf:b8:0c:56:b3:9d:1b:6a:6c:bd:b3:
25:ec:02:67:19:d6:d4:ce:2a:aa:fb:6b:74:8c:cd:fc:c7:92:
57:20:f7:a6:28:f2:a4:01:4b:a0:51:99:ca:2f:f9:c2:1c:0a:
5c:91:a8:70:85:a3:58:70:19:48:a7:3b:52:7e:b4:93:7d:21:
ec:97:0a:e1:cd:6c:29:a4:04:41:19:82:3b:b9:f8:ea:f6:3d:
19:91:14:c2:62:f1:ad:af:76:27:e7:e3:12:b6:93:c4:d0:f2:
4e:a8:01:2d:7f:ed:75:13:8c:9f:6d:3d:78:49:e5:78:2d:8c:
30:c0:19:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org