Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/180gkTSEQKAAIvSAwvmT6PLkubk.roa
File: 180gkTSEQKAAIvSAwvmT6PLkubk.roa (raw, json)
Hash identifier: DJg0RQKUii8XsByqW9qq+GAGBHlT0SQF+fDFExnWwSo=
Subject key identifier: D7:CD:20:91:34:84:40:A0:00:22:F4:80:C2:F9:93:E8:F2:E4:B9:B9
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 019091BEBC52E46E76C6AB74E3028BA368E6
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/180gkTSEQKAAIvSAwvmT6PLkubk.roa
Signing time: Mon 08 Jul 2024 09:48:34 +0000
ROA not before: Mon 08 Jul 2024 09:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 08:42:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:be:bc:52:e4:6e:76:c6:ab:74:e3:02:8b:a3:68:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jul 8 09:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7cd2091348440a00022f480c2f993e8f2e4b9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:94:32:97:8f:63:d6:c0:02:bc:34:e8:60:94:
30:ae:73:99:0b:52:ac:0a:13:bf:4c:be:b9:1b:0c:
5c:27:c9:f2:14:b5:9f:d0:bb:9b:cf:79:7b:f6:60:
9d:bf:c2:02:45:76:94:e9:77:7b:33:34:1b:8d:c4:
e0:be:00:ce:b3:b0:77:aa:e5:31:2f:4d:b1:c1:be:
ec:4f:37:f2:d8:2a:2c:d2:e6:b8:bd:91:fb:f6:e8:
7a:3c:08:c5:5d:fd:c4:99:2a:a6:a3:e0:ad:ce:40:
39:3a:1b:51:11:30:a4:4e:df:5c:ba:7d:55:94:b5:
48:95:b5:c4:80:f6:9b:88:3e:8e:ed:52:08:cb:57:
4b:54:63:da:85:f8:2d:17:6a:97:1a:1e:cc:f7:d2:
33:2a:4d:0b:8d:c6:63:96:d2:38:ed:2b:0d:3e:f2:
23:bd:39:cc:0f:d1:5e:3e:00:3a:89:25:38:9c:ce:
c0:65:19:b0:1d:87:53:02:54:2f:08:8a:9f:10:69:
98:8f:b0:bc:18:70:44:26:9d:d3:72:37:e2:bf:2f:
75:63:ef:46:d3:d6:a5:e0:18:92:e5:ed:5f:43:ad:
e2:8c:dc:1c:8b:1c:cd:c4:b7:e9:a5:33:8e:3d:0c:
f9:65:71:56:3e:55:5c:68:c9:32:cf:5b:72:0d:93:
f3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CD:20:91:34:84:40:A0:00:22:F4:80:C2:F9:93:E8:F2:E4:B9:B9
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/180gkTSEQKAAIvSAwvmT6PLkubk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
50:27:a0:cd:db:4d:9f:1a:9a:47:39:54:35:5c:50:b7:33:87:
70:76:ba:2d:41:fd:0b:da:15:22:2e:fb:17:9d:62:6c:89:0d:
00:74:b0:31:fb:5f:a6:49:fd:db:e7:b1:3f:27:ae:30:f3:55:
8d:b4:96:8a:b3:d8:33:d2:38:dc:b9:f2:d6:3d:35:74:b7:c1:
2e:48:85:71:ca:e1:9d:c5:d0:04:06:f3:38:b1:aa:b5:6f:88:
94:65:90:49:1d:88:07:50:79:d6:a5:14:0e:05:2d:60:9d:93:
c6:16:5e:d6:ef:a0:5f:31:a0:4a:ea:5b:5d:1d:19:9f:f4:d7:
f4:18:92:f2:b0:b8:5c:1d:d1:d8:b3:09:f6:3f:ad:a7:7c:88:
34:5f:68:ee:1b:26:03:0c:0b:3b:6e:be:56:23:01:7b:12:ba:
f7:77:ef:b8:a3:4e:a4:9f:07:a7:2a:02:34:0b:df:42:23:0a:
25:b0:f8:d4:10:75:0c:4f:0b:7b:ec:80:94:f3:18:31:71:83:
88:db:81:86:cd:60:7e:ce:ab:71:23:6e:d0:8f:c5:38:54:d4:
1d:e8:b6:26:3b:f8:bc:b4:7e:40:1c:2a:0c:92:83:ca:fd:78:
53:f0:ed:a2:a6:04:68:af:6d:a5:8c:09:d1:8b:76:c6:91:63:
c7:43:05:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 10:50:31 2024 by rpki-client on console-fra.rpki-client.org