Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/Uhntlib1Sp7DhzeB21vJQNeCz_M.roa
File: Uhntlib1Sp7DhzeB21vJQNeCz_M.roa (raw, json)
Hash identifier: 8ZegWhHKclW+kk2YGoBJqhMviwIPL+ekMjiYJG4P09A=
Subject key identifier: 52:19:ED:96:26:F5:4A:9E:C3:87:37:81:DB:5B:C9:40:D7:82:CF:F3
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 01918E26A4D744319D46AD7ACA5117D342D5
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/Uhntlib1Sp7DhzeB21vJQNeCz_M.roa
Signing time: Mon 26 Aug 2024 10:06:22 +0000
ROA not before: Mon 26 Aug 2024 10:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
45.158.126.0/24 maxlen: 24
45.158.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 22:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:26:a4:d7:44:31:9d:46:ad:7a:ca:51:17:d3:42:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Aug 26 10:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5219ed9626f54a9ec3873781db5bc940d782cff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:30:ba:0f:3d:f6:77:63:ce:e1:2b:0a:aa:
a6:c9:53:f7:2b:d2:97:f9:77:19:2e:50:16:02:34:
6e:f4:f3:fe:4d:ec:01:b4:95:95:35:89:9e:4a:45:
ac:65:1f:b2:22:06:f1:7a:95:83:e7:a5:4f:e6:db:
b3:4b:c3:27:40:a7:93:d8:36:26:14:52:ea:70:30:
ce:92:10:bc:c9:25:d0:bf:ac:3f:2b:57:be:fc:96:
5f:9d:42:ff:a4:5c:7d:b3:f8:49:ad:7f:a9:38:52:
1b:bf:03:ef:1e:3b:1d:eb:40:b2:8f:42:ea:53:49:
bb:b4:5e:ff:64:4a:bf:0b:96:9b:87:47:2a:c4:6d:
39:dc:7c:25:b7:35:fc:c5:44:24:37:36:ee:18:4d:
d6:56:e4:71:3a:ac:eb:36:df:91:21:32:c7:55:1c:
c9:c3:c3:ae:ba:49:45:1b:ec:be:f6:c4:17:cf:3c:
09:01:03:20:a7:f4:d0:dd:7c:db:8e:ed:b0:d2:b8:
12:eb:6c:30:1f:01:f4:df:d7:e0:05:f7:97:9d:1e:
6b:69:7a:42:fc:28:81:cc:81:c4:9b:ee:d0:e3:44:
48:4e:8a:26:8f:91:f9:de:d8:3a:35:e2:62:93:da:
f0:5c:ff:c1:10:43:5b:40:dd:d3:5f:9f:cb:91:2e:
3c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:19:ED:96:26:F5:4A:9E:C3:87:37:81:DB:5B:C9:40:D7:82:CF:F3
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/Uhntlib1Sp7DhzeB21vJQNeCz_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0-45.158.127.255
Signature Algorithm: sha256WithRSAEncryption
1f:50:ef:1d:37:03:5f:6a:1e:1c:a5:23:8f:95:46:49:08:2e:
75:2d:ba:8f:b2:25:a0:bc:22:bf:c5:20:53:1a:75:d3:28:27:
46:c7:12:cc:bc:3f:ac:e2:2c:4f:fc:84:f1:ca:1b:85:48:14:
a8:dd:08:03:0f:b4:a5:5f:9b:cd:a4:7e:bc:e3:c4:9a:f5:70:
03:d7:49:a8:e2:54:af:e8:c3:cf:02:30:a1:e5:41:68:cb:83:
88:84:79:1c:97:08:18:83:f3:4e:56:37:8a:e8:3d:47:72:d1:
83:c2:b7:61:67:b3:51:52:a5:e3:d8:7d:90:84:f4:04:22:c9:
37:4d:a3:ae:67:5c:04:90:a6:25:01:cf:6c:7f:e0:0c:33:a4:
6b:5f:21:ab:5e:20:b0:1a:99:9a:07:3d:43:43:9c:b9:be:d3:
55:ec:7a:48:57:6d:b4:92:e4:78:27:82:9c:5b:cd:d0:05:46:
6c:ab:d9:2b:78:ee:f3:ed:22:61:e8:1d:63:9c:bc:84:1e:06:
df:c3:95:6a:a0:a7:a2:02:da:c4:bc:d6:ef:3d:7f:dd:96:aa:
75:8d:b0:1b:b0:54:e1:3e:7d:b7:36:f4:be:7a:50:60:11:df:
79:a9:53:ef:3b:9d:60:a2:75:ee:d8:2f:5a:56:23:a3:04:99:
c1:b5:4e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 01:54:33 2024 by rpki-client on console-ams.rpki-client.org