Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/sRxUPTjJVlT9a8BOpVjG5hj-B7M.roa
File: sRxUPTjJVlT9a8BOpVjG5hj-B7M.roa (raw, json)
Hash identifier: l4dtq2k7JAvtlhlieC94QoYI77y6H+nvZWHevjWrt30=
Subject key identifier: B1:1C:54:3D:38:C9:56:54:FD:6B:C0:4E:A5:58:C6:E6:18:FE:07:B3
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018E5D231A9EF68A45E693CF2E51DDDBE1CC
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/sRxUPTjJVlT9a8BOpVjG5hj-B7M.roa
Signing time: Wed 20 Mar 2024 18:32:45 +0000
ROA not before: Wed 20 Mar 2024 18:32:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 13:51:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5d:23:1a:9e:f6:8a:45:e6:93:cf:2e:51:dd:db:e1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Mar 20 18:32:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b11c543d38c95654fd6bc04ea558c6e618fe07b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d5:32:50:3d:3c:fc:a8:c8:81:d7:6d:23:6c:
e8:a0:97:db:bb:a6:7e:a0:d7:81:4e:20:2e:9b:ab:
0f:a1:b2:52:7b:18:5c:a4:1c:cd:cc:f8:e1:c4:b8:
ab:74:57:ba:53:2b:11:df:87:32:e8:47:e8:29:79:
3c:f1:ea:f2:98:be:ee:05:e6:54:d2:46:05:86:9d:
64:f8:7d:06:d0:42:92:69:4d:4f:00:2f:0d:59:0e:
03:e9:57:01:7c:f4:d7:f3:ae:c8:0f:a8:7d:e1:b7:
04:1d:db:c7:1d:2f:d0:0f:3d:84:9c:cd:1c:8c:93:
6b:f9:3f:f2:57:23:ea:3a:ba:32:8f:40:b7:e5:b8:
19:c1:17:16:71:cd:8d:47:de:ca:1e:87:84:5b:d6:
27:35:51:7f:d3:97:84:3f:10:0c:8f:35:84:0f:a3:
45:57:f4:10:a5:b2:74:c2:89:57:11:b7:07:1e:e1:
25:ce:fb:67:e2:30:db:76:88:aa:3d:4d:75:e0:5e:
e4:9f:50:95:c8:67:b5:43:a6:63:73:7f:28:1a:f6:
5f:bf:06:48:ca:5d:8a:21:3a:49:ac:a6:d1:2e:c6:
ac:18:eb:08:3e:f6:75:d7:d7:8b:48:bc:70:31:5b:
66:9c:2b:35:40:12:a8:da:b4:9d:80:5b:6e:6e:1f:
c3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1C:54:3D:38:C9:56:54:FD:6B:C0:4E:A5:58:C6:E6:18:FE:07:B3
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/sRxUPTjJVlT9a8BOpVjG5hj-B7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f5:ad:0e:1f:5d:7a:b8:e9:a7:a0:51:d0:84:d1:b2:43:ee:
47:81:b1:43:9b:50:76:8f:53:b0:95:57:23:4f:a5:c3:f0:ed:
9e:7d:ff:7c:72:44:2f:6d:57:36:20:f8:6b:cd:71:33:45:f2:
52:0b:f7:47:b7:0b:41:e3:e4:9b:ee:bb:3b:b5:7c:1f:56:77:
2a:29:94:ca:98:cb:6c:51:c6:d6:3d:7d:36:2b:7e:4a:ce:95:
4b:36:2b:72:1a:55:38:a9:aa:70:86:d3:90:a5:fb:39:be:1a:
a1:15:fb:b9:5a:67:f4:52:0f:78:26:a4:71:24:ee:9c:27:0a:
ec:65:f1:c7:2b:6b:51:48:a5:6a:1a:77:45:a3:ed:22:24:b2:
c9:f3:cf:49:90:93:aa:14:56:6f:ad:77:e7:14:89:39:d2:6d:
6e:f3:c7:1c:cb:56:eb:0f:66:08:24:e1:ed:a0:a5:f2:20:99:
4b:2f:0e:c1:27:7e:08:18:aa:fe:31:ec:64:61:1b:83:85:93:
19:13:b5:3f:1c:51:8f:81:44:85:96:a4:88:f8:d8:8b:cd:a9:
15:cc:14:bb:1f:4d:4e:e6:b7:cf:6a:f0:3a:d7:88:5e:3d:b8:
fc:02:6b:3d:1a:8f:4d:45:b3:69:1e:38:66:68:2b:a6:48:c4:
bd:2d:94:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org