Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/OT4FnVRDsj-fny0vf8ASEDb9KaU.roa
File: OT4FnVRDsj-fny0vf8ASEDb9KaU.roa (raw, json)
Hash identifier: QdmObwsexHV+VbcheHhLA4h/gJh0mgUDXwE4x/GgggE=
Subject key identifier: 39:3E:05:9D:54:43:B2:3F:9F:9F:2D:2F:7F:C0:12:10:36:FD:29:A5
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018CD11253D99BE6CF9DAA2A67A7216E08E9
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/OT4FnVRDsj-fny0vf8ASEDb9KaU.roa
Signing time: Wed 03 Jan 2024 20:44:48 +0000
ROA not before: Wed 03 Jan 2024 20:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.158.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jan 2024 10:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d1:12:53:d9:9b:e6:cf:9d:aa:2a:67:a7:21:6e:08:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jan 3 20:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=393e059d5443b23f9f9f2d2f7fc0121036fd29a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f6:f7:a3:ff:cd:9f:a4:0e:d4:9b:40:cc:18:
af:54:09:f5:6a:5a:ae:51:f9:96:25:42:19:e0:a8:
cf:ba:d9:58:9a:6e:bc:30:3c:ef:67:c3:9b:31:6e:
20:f9:c0:b2:d0:73:2c:12:23:24:11:34:a7:ea:d5:
03:0e:b7:90:cb:85:54:9c:73:a8:61:24:8e:c7:08:
0b:b0:51:36:db:ce:db:4d:99:0e:5f:92:4c:6c:3c:
bd:08:d2:b5:d7:3d:7f:10:5e:6c:10:e0:55:86:ca:
b3:53:ab:ae:78:98:f6:1c:4f:42:09:3c:41:e5:c7:
80:66:b1:06:ec:52:26:bc:77:ad:ae:15:7a:7a:e5:
48:f1:4e:41:29:53:73:58:67:e5:2c:13:c6:29:b6:
65:42:b0:9b:3a:ad:4b:2f:43:83:7a:b6:2b:f0:25:
d9:9e:f4:91:a7:0e:35:d9:c4:66:08:55:02:9f:7c:
58:63:02:7e:4f:32:68:7a:63:5e:d3:7d:4a:30:20:
ef:eb:1e:4f:ed:10:11:a1:99:a7:e4:cb:35:59:09:
ea:e2:4b:44:a8:3b:21:a1:0e:f8:01:d3:2e:4b:29:
6d:4b:4d:31:b5:e7:32:13:f7:4f:cd:17:47:ad:ef:
f1:39:52:54:0b:e2:d5:38:3d:f9:0a:d6:cc:41:8b:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3E:05:9D:54:43:B2:3F:9F:9F:2D:2F:7F:C0:12:10:36:FD:29:A5
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/OT4FnVRDsj-fny0vf8ASEDb9KaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a8:c0:b3:74:7c:a1:e4:a5:54:06:d1:11:1b:de:87:51:49:
5e:47:35:9e:8e:e6:a4:bb:d3:1d:2b:07:ab:44:95:f7:78:20:
8b:ec:65:f0:4a:20:4e:17:ca:36:ac:cc:87:e5:31:b6:ca:28:
5c:52:a1:4a:86:4f:0a:78:54:f2:ef:20:6b:16:38:24:5d:9b:
82:11:23:5a:21:1b:02:2c:a8:02:4c:48:3a:b1:cc:a1:7b:02:
7a:27:46:c3:c6:a6:0f:36:f1:78:62:c4:60:73:ad:de:b0:4d:
95:29:ca:80:16:b2:96:ef:c7:2a:5d:98:38:ea:ca:a7:3c:99:
a8:17:e8:84:c9:bc:aa:65:81:74:39:07:87:57:e0:69:00:42:
90:0d:10:86:2c:f1:e7:d1:ed:8e:ea:d7:86:21:fc:d0:32:5a:
54:bd:6e:0e:1d:a0:74:84:37:39:e1:c7:a7:31:0a:b1:67:a6:
6c:39:0c:48:4b:8a:3a:0b:9c:b5:91:ca:8d:75:1c:df:74:5b:
1f:1c:24:c1:84:ce:8a:03:78:f8:f6:6e:b9:7b:a9:f8:79:be:
be:e4:c8:c0:fe:74:b7:d6:6d:9b:a6:e6:75:15:d0:c0:1f:53:
74:fa:36:cf:0a:82:46:4b:16:df:04:c0:25:fb:0e:7a:92:15:
41:f5:f9:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org