Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/dQjBwHssBPWiz9ad0AsJPe4AHY4.roa
File: dQjBwHssBPWiz9ad0AsJPe4AHY4.roa (raw, json)
Hash identifier: /ES8K6n6nW0Fv1VPGdFljwABj7Oo7i79nFesKNocFbI=
Subject key identifier: 75:08:C1:C0:7B:2C:04:F5:A2:CF:D6:9D:D0:0B:09:3D:EE:00:1D:8E
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018E99EE256AEF9269F5ED6EA4BA28E27BC5
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/dQjBwHssBPWiz9ad0AsJPe4AHY4.roa
Signing time: Mon 01 Apr 2024 13:51:44 +0000
ROA not before: Mon 01 Apr 2024 13:51:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 21:10:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:99:ee:25:6a:ef:92:69:f5:ed:6e:a4:ba:28:e2:7b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Apr 1 13:51:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7508c1c07b2c04f5a2cfd69dd00b093dee001d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:28:23:cf:29:82:15:5c:7f:dc:02:b5:3f:26:
35:09:95:20:85:90:64:3d:74:91:46:b5:f2:68:0f:
ec:ae:cc:73:d7:a6:03:b5:85:76:82:ae:69:b6:f4:
95:dc:2d:d0:6a:3a:3b:b6:e1:bd:6f:83:4a:04:e4:
fd:ef:60:c2:0d:4d:3d:b8:3c:ea:6d:34:72:9b:5f:
89:48:7d:10:b9:00:26:38:b6:34:7e:54:23:35:2d:
4f:8a:f0:17:6c:f8:be:d1:78:9d:de:ee:b5:4f:cb:
0d:ea:6e:80:79:cc:a7:03:78:67:69:f8:52:9e:c4:
14:9c:2b:d1:b4:e2:54:aa:51:f5:24:e5:f2:36:65:
16:21:23:28:71:37:1f:b1:99:9e:ff:32:8f:52:b1:
d4:a2:15:17:7f:b3:0e:42:cd:54:c2:40:5b:c7:a1:
2b:30:90:c1:6d:40:fa:20:e0:ca:10:0a:40:b4:43:
65:90:f4:13:69:95:e6:51:ab:7f:1a:53:84:ab:e2:
5e:32:52:8c:b2:9c:9a:ae:44:0a:1b:e5:27:b0:5c:
fd:37:08:8c:d8:6a:d7:2e:9c:8a:04:dd:4c:5a:d0:
c5:ca:7e:f2:80:d3:81:f6:d8:ac:aa:67:2c:88:71:
a7:c0:04:49:dc:6c:1c:84:2f:2a:44:94:c4:f1:db:
ea:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:08:C1:C0:7B:2C:04:F5:A2:CF:D6:9D:D0:0B:09:3D:EE:00:1D:8E
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/dQjBwHssBPWiz9ad0AsJPe4AHY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6f:58:a7:38:16:5c:b8:5a:04:30:e1:72:60:16:b9:d1:e4:
06:9e:f8:2c:81:12:ed:b4:cd:53:82:b3:0b:69:58:3a:e2:45:
8c:92:52:13:c2:b2:e5:2f:a7:e6:7e:aa:e3:aa:c1:7c:c3:54:
0f:88:9f:1d:e6:7d:ba:70:f4:00:7b:36:c0:c8:fb:b7:8e:b3:
68:a0:2a:3a:5c:26:dc:9a:fb:70:98:85:3e:70:88:79:08:d2:
23:10:67:83:5c:c8:f5:17:1a:50:df:08:d4:97:60:e7:47:4d:
06:ef:bb:63:60:e8:09:9a:69:59:9f:d7:65:a0:f7:d4:66:28:
cb:21:9e:fb:82:35:38:2c:67:4a:c0:22:1c:db:08:b9:40:90:
de:65:1c:24:88:84:f3:e8:40:b6:9d:78:e4:c5:9d:df:8d:16:
7d:a7:f0:85:99:f9:32:7a:9a:d3:fb:de:bb:8d:b0:18:f1:4e:
d5:c9:66:b0:7b:d5:23:43:38:26:3c:cc:df:d8:62:8f:07:0a:
a5:0b:ef:db:c9:2e:fe:1d:dc:fb:5a:e8:22:41:52:7b:2d:44:
87:24:f7:a7:39:c1:83:3b:39:58:72:45:1c:f1:4c:40:59:db:
28:87:13:6f:71:ff:46:f3:aa:70:0a:86:a0:93:98:06:d3:02:
4b:9c:38:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org