Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/K2QhlTEd2X1b6ysRW-XpFie43QA.roa
File: K2QhlTEd2X1b6ysRW-XpFie43QA.roa (raw, json)
Hash identifier: YoNSJxuGmRTkeF+ZuGmavAwA++hY51aHMss8s2s8/ho=
Subject key identifier: 2B:64:21:95:31:1D:D9:7D:5B:EB:2B:11:5B:E5:E9:16:27:B8:DD:00
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 0190DC8DCD74049BEEB3AC7D6BEDFA24A7A6
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/K2QhlTEd2X1b6ysRW-XpFie43QA.roa
Signing time: Mon 22 Jul 2024 22:26:38 +0000
ROA not before: Mon 22 Jul 2024 22:26:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 45.158.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:dc:8d:cd:74:04:9b:ee:b3:ac:7d:6b:ed:fa:24:a7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jul 22 22:26:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b642195311dd97d5beb2b115be5e91627b8dd00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:c5:39:db:fc:09:d7:21:be:ae:91:d8:97:
f6:2c:07:e9:af:20:0a:9c:13:48:f4:0e:5a:79:17:
53:b2:e9:a0:d8:91:97:be:e2:d0:fc:16:48:ce:55:
34:0e:ab:28:73:ee:5c:52:29:89:cc:ee:3d:c0:27:
cb:33:dc:55:c0:f1:5b:07:66:f9:a0:ba:70:bf:e3:
64:63:f1:97:37:02:24:3d:dd:01:6b:d5:67:9e:9a:
81:b6:1a:10:a1:ef:e9:5c:f8:88:24:b3:db:88:91:
c4:61:f9:d2:96:9a:db:16:b5:27:3c:95:ea:dc:40:
49:7a:57:e9:63:bf:79:2e:18:75:01:3d:41:af:3b:
e1:67:87:96:0b:a3:3e:62:6a:2c:64:fa:1c:23:b4:
6a:70:83:40:ca:2f:59:0d:ca:c7:ff:00:e3:76:e5:
28:68:12:3d:d0:e1:22:d2:3b:bc:a9:91:09:99:a1:
49:33:51:6a:d9:89:8f:3e:1d:8b:3b:78:b4:c3:1f:
4c:84:9f:6a:64:3e:12:1b:97:c7:46:22:eb:40:f3:
8f:71:08:69:51:7f:4e:a8:5f:1c:84:44:e7:2a:72:
3d:e7:16:b2:d3:fa:5b:b1:31:b6:35:f1:4a:57:c6:
9e:ca:37:e1:73:e1:30:70:30:be:a1:cc:5c:45:dc:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:64:21:95:31:1D:D9:7D:5B:EB:2B:11:5B:E5:E9:16:27:B8:DD:00
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/K2QhlTEd2X1b6ysRW-XpFie43QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
12:32:e2:17:03:d2:ee:33:28:76:5b:3a:54:4e:52:04:b2:35:
13:c6:44:86:0a:c3:a4:e4:e6:25:0a:d8:86:de:7b:fb:d3:67:
fd:49:5f:5d:65:2e:2c:84:27:ef:6a:f9:c2:fc:56:a6:10:2d:
6f:8c:1b:99:18:74:49:57:7c:93:87:c9:9d:7a:b0:45:4e:bf:
63:f1:3a:02:5e:aa:87:17:8b:fd:ec:d4:eb:3f:0f:b6:34:e9:
3c:4f:b1:ad:18:79:f6:dd:b4:98:7c:6d:43:de:03:d3:49:66:
62:e8:99:5e:a5:53:22:1b:13:3f:ea:c6:12:78:fd:62:ba:06:
5e:52:7f:d8:5d:d8:9a:d6:65:02:65:7e:d9:3f:c8:a0:3d:43:
cb:46:8c:72:e3:a1:c4:91:84:75:76:c4:66:42:97:a7:4c:43:
a6:95:d6:57:45:18:a2:be:9c:06:20:9e:45:4f:88:dd:7c:b0:
42:0c:16:52:bf:c5:ce:1b:75:0e:0d:42:8a:24:3f:2f:62:18:
4e:ea:2e:dd:49:0a:58:65:24:1e:96:fb:f1:67:1e:f0:1a:22:
97:07:21:39:9a:6f:a5:88:01:57:0e:87:e4:52:34:85:9c:c2:
40:80:e8:f0:ec:f5:51:7a:63:84:19:09:cd:37:6e:b3:21:88:
b1:30:38:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 13:14:59 2024 by rpki-client on console-ams.rpki-client.org