Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/AO34jYVDVPO0v5Ve3Vlb9ZAPUhA.roa
File: AO34jYVDVPO0v5Ve3Vlb9ZAPUhA.roa (raw, json)
Hash identifier: UO1BsxOmImovgsXqLilnttGodxbL5Oo8GImitCCMi/o=
Subject key identifier: 00:ED:F8:8D:85:43:54:F3:B4:BF:95:5E:DD:59:5B:F5:90:0F:52:10
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01856EA6CDD2C8E75648B3C42B1585840E47
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/AO34jYVDVPO0v5Ve3Vlb9ZAPUhA.roa
Signing time: Sun 01 Jan 2023 18:45:03 +0000
ROA not before: Sun 01 Jan 2023 18:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 45.143.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Feb 2023 12:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:cd:d2:c8:e7:56:48:b3:c4:2b:15:85:84:0e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jan 1 18:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00edf88d854354f3b4bf955edd595bf5900f5210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0d:b6:8b:02:5e:67:84:d4:ac:c7:42:05:28:
df:95:b6:60:10:c5:a1:fe:89:3a:70:9e:47:38:29:
2c:6a:22:08:5e:ea:0f:ac:58:9f:10:e8:6f:7e:a0:
24:63:65:6b:9b:5c:ab:b9:2a:64:ce:9f:29:6f:02:
11:0f:db:1e:72:13:81:76:0e:a0:3f:1b:d4:77:6b:
2f:f2:a0:9a:33:c7:7f:0e:44:21:2d:1c:d5:76:24:
cd:b9:a8:3a:f8:af:68:be:34:9f:2b:52:7c:5b:0b:
27:36:8d:9b:2d:30:24:f1:2f:ca:9c:a0:01:7b:cd:
2c:02:6a:a1:9e:ee:fb:89:ad:69:e5:3e:6f:23:a5:
7e:f3:2c:02:b7:92:41:73:fb:39:9a:25:90:7c:41:
46:ef:b6:c7:01:5a:e7:bb:40:fd:a8:eb:b0:a5:b5:
cf:72:f7:99:96:16:43:48:64:e5:1d:5a:22:a6:fa:
6b:a8:87:bf:09:d0:7a:f6:ad:74:54:ad:e3:1a:7a:
eb:8c:5b:43:ab:5e:da:49:6f:3c:86:19:f6:c4:79:
a9:1c:7a:6e:be:4e:be:20:57:bd:f4:21:73:f0:a8:
1e:06:73:0b:cb:a4:5c:38:48:40:b9:0e:75:42:12:
a7:ff:fa:65:cb:6f:d8:58:76:0a:da:0e:80:1f:fb:
9a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:ED:F8:8D:85:43:54:F3:B4:BF:95:5E:DD:59:5B:F5:90:0F:52:10
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/AO34jYVDVPO0v5Ve3Vlb9ZAPUhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.161.0/24
Signature Algorithm: sha256WithRSAEncryption
87:07:72:64:92:88:5a:50:15:ea:01:28:53:66:bf:9b:77:35:
a3:da:00:a7:0b:02:83:f6:49:54:61:83:d7:bb:54:ab:e8:5f:
43:ff:af:80:ff:96:d9:d7:e7:4b:09:63:b8:70:54:03:07:08:
a9:c6:d5:39:a9:ed:91:47:84:5a:5f:97:6a:4a:9d:a5:32:ca:
34:de:6e:32:34:e5:22:56:a1:d5:dc:d7:42:31:77:db:a3:18:
8f:6a:79:54:bc:86:96:74:23:6e:a8:34:c3:cb:6c:df:94:c7:
35:58:9d:f0:86:46:bd:e2:8c:3a:a1:58:36:c5:aa:3d:6a:23:
76:5f:33:3a:9a:7d:de:e8:76:e4:e1:0f:24:3f:71:15:7b:e0:
5c:9b:ae:7d:f7:c6:dc:f1:e5:5d:14:9e:87:fd:db:6a:b0:ef:
9e:8f:a0:5e:a8:05:11:95:a7:c9:5f:b6:d7:c0:5a:f3:94:0f:
e3:9b:ea:3d:0e:47:96:45:23:11:a6:b0:7a:c0:dc:41:42:72:
3d:63:0f:77:83:a6:22:48:35:bd:df:f7:26:9b:4e:7f:ed:f5:
71:65:a5:4f:8d:82:1d:07:c7:f5:4e:d0:c9:af:3e:38:bf:c4:
e4:e7:19:df:30:c5:64:cc:7e:e5:74:90:7b:e5:40:6d:1b:de:
c4:e7:bb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:08 2024 by rpki-client on console-ams.rpki-client.org