Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/uzqDuFNoh1QvxssFTpqEQr-QAks.roa
File: uzqDuFNoh1QvxssFTpqEQr-QAks.roa (raw, json)
Hash identifier: 9ypMvuw8fYHQG2ElMdrWEP/SrQyQVLj/BNArj6HZjJg=
Subject key identifier: BB:3A:83:B8:53:68:87:54:2F:C6:CB:05:4E:9A:84:42:BF:90:02:4B
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 0190E8D8DD66F1D35AFF9BC60B709D6D770C
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/uzqDuFNoh1QvxssFTpqEQr-QAks.roa
Signing time: Thu 25 Jul 2024 07:44:04 +0000
ROA not before: Thu 25 Jul 2024 07:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:d8:dd:66:f1:d3:5a:ff:9b:c6:0b:70:9d:6d:77:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jul 25 07:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb3a83b8536887542fc6cb054e9a8442bf90024b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:df:1f:9b:a2:8c:81:ff:de:85:33:36:90:01:
68:01:26:74:d7:ba:ec:50:2b:11:4c:04:19:ad:0a:
31:57:1d:2c:42:e6:50:b0:44:d5:39:5a:e7:c4:da:
a2:6f:33:6c:15:70:df:89:00:3e:53:b6:4d:7c:13:
1d:08:9b:d1:75:c8:44:31:a9:11:b0:4d:8b:17:d6:
68:ff:9d:06:8e:fa:23:06:44:0a:ea:3d:16:48:5b:
27:89:1e:a8:54:ee:53:77:7a:ab:59:8c:22:58:e3:
50:f8:e0:3f:51:b5:34:3f:a9:50:18:5f:57:c8:b7:
b4:81:8a:d4:95:44:77:37:1f:dd:94:a1:d6:59:00:
37:73:1b:a0:1c:57:43:20:7d:73:09:e1:b3:bf:58:
e1:4d:6b:8d:7e:b5:7b:83:4f:08:c1:55:24:c3:de:
11:a9:da:37:ea:b9:42:4c:91:66:df:d7:36:65:2a:
75:28:87:68:df:a6:8c:8a:35:f7:d1:e2:10:b5:26:
cd:c7:01:f7:bc:cd:65:22:8b:16:6d:ed:c1:99:2b:
bb:f8:57:c8:91:c0:eb:01:da:0d:21:46:b5:6c:62:
a7:68:80:38:09:a6:6b:fe:38:77:3c:e9:06:d5:5e:
e7:cd:aa:3b:61:7d:0a:07:67:19:3f:73:60:54:54:
da:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3A:83:B8:53:68:87:54:2F:C6:CB:05:4E:9A:84:42:BF:90:02:4B
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/uzqDuFNoh1QvxssFTpqEQr-QAks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6a:04:a5:d3:5d:23:a2:69:05:e7:3c:06:00:eb:71:8e:e4:
62:d5:81:ae:ee:8a:19:1b:38:ee:73:7b:be:f0:de:b8:67:ef:
a5:d0:4f:0e:cd:8f:79:ae:72:75:3c:1f:32:66:e8:0a:fb:54:
a0:85:af:35:ef:e3:53:8c:df:99:3a:99:53:fd:f4:53:23:a4:
ba:c0:d8:fc:54:2d:f9:79:49:99:e1:89:81:4a:e5:68:a9:c4:
83:ed:a1:4d:cd:b4:56:04:7b:2c:89:2a:14:ff:f2:07:7a:c5:
64:f3:77:b4:35:aa:33:46:5d:6e:c9:39:cf:97:f9:9e:91:2a:
25:4a:00:be:59:f4:e0:d0:a3:1e:44:8d:5b:35:c1:22:c0:a8:
21:64:73:cf:a5:03:8a:8f:aa:d9:c2:2f:e9:6f:ec:cb:25:cc:
aa:66:e0:1f:7a:db:84:88:46:51:df:65:4f:e0:26:c1:28:3a:
92:4d:ab:54:91:f3:53:05:c7:fc:6c:25:0e:a2:61:80:21:af:
0a:8b:ca:8c:b0:c8:b9:b8:a8:c6:8d:57:4d:49:3d:2c:6f:4b:
0e:34:70:9b:b3:e4:26:10:4e:90:0d:87:89:fd:39:e6:5e:e7:
e1:e7:7a:4c:15:c4:b5:8b:c8:15:72:a2:2a:18:c6:35:b0:b0:
0a:4f:96:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 12:49:06 2024 by rpki-client on console-fra.rpki-client.org