Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/eqHAJwKEzq9TnWjX7Lpwqek3uBM.roa
File: eqHAJwKEzq9TnWjX7Lpwqek3uBM.roa (raw, json)
Hash identifier: km1LYn9s6s5zH+LwrVfp7OG4t43TtisSzflx21TBhM0=
Subject key identifier: 7A:A1:C0:27:02:84:CE:AF:53:9D:68:D7:EC:BA:70:A9:E9:37:B8:13
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 018A8B490165F8138EDC28D48A55CCCEB0B1
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/eqHAJwKEzq9TnWjX7Lpwqek3uBM.roa
Signing time: Tue 12 Sep 2023 21:25:32 +0000
ROA not before: Tue 12 Sep 2023 21:25:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35771
IP address blocks: 45.135.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8b:49:01:65:f8:13:8e:dc:28:d4:8a:55:cc:ce:b0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Sep 12 21:25:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7aa1c0270284ceaf539d68d7ecba70a9e937b813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:be:e7:81:0a:61:6c:b3:ff:a8:fa:4f:d6:fa:
b8:f7:f4:f4:30:a5:e5:38:6a:e6:a2:b0:a2:d8:ac:
52:21:9f:1b:35:ce:70:9c:d2:3f:f9:99:da:ed:2a:
d9:32:95:48:6e:92:87:b3:b5:a1:b6:9d:b8:72:e3:
b6:25:ee:3b:1d:77:50:89:41:c8:cb:e7:26:70:db:
1b:eb:34:2a:52:a6:45:e9:21:d5:d2:8a:fd:d4:60:
57:7c:7f:0e:f1:27:81:20:e0:8b:6e:5f:a8:5d:a2:
b6:9a:76:a5:a5:2a:39:e9:66:16:48:80:5d:b7:0d:
10:d6:21:19:50:f7:91:6d:f6:60:b6:78:f2:6e:f7:
f1:01:59:d8:46:bd:0f:9d:84:6a:cf:47:47:71:be:
a2:fb:6c:cd:b8:64:6f:a0:d8:9b:c9:d0:0a:ae:f1:
c4:1a:10:62:ca:54:63:99:fb:15:eb:9f:c0:ba:e3:
6f:af:3e:fe:ad:c4:2f:17:2f:7c:4e:9a:74:9e:ce:
e0:20:ec:5b:eb:85:87:97:7f:98:d3:8a:14:34:f1:
61:37:0e:86:b7:a1:76:2f:d3:2a:3a:23:59:5d:58:
c9:50:4f:41:93:1e:42:7e:3d:bd:44:37:90:0e:dd:
92:e9:79:6a:ef:a0:c0:65:d4:b9:62:d8:2d:1c:e7:
24:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A1:C0:27:02:84:CE:AF:53:9D:68:D7:EC:BA:70:A9:E9:37:B8:13
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/eqHAJwKEzq9TnWjX7Lpwqek3uBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.225.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:34:c9:13:11:60:95:9c:29:5d:da:83:05:6f:3e:6b:6c:f7:
2d:a8:dc:93:f4:ff:e2:30:40:24:ef:42:89:28:72:e4:76:51:
ee:93:24:6a:25:2b:68:55:b1:7b:b6:28:0c:09:23:b9:43:b4:
0d:ea:ee:91:f5:c7:af:28:14:29:9d:14:04:18:a3:db:25:14:
3d:0e:08:5a:26:90:c9:70:e1:14:60:f5:85:fc:a7:38:75:1d:
a7:9d:95:aa:b7:10:f8:02:ff:62:ed:f6:b8:f3:27:39:f4:de:
8c:ea:90:c3:03:8b:34:58:a3:91:a0:c7:be:f7:f3:4d:a4:bc:
35:52:cc:a6:76:28:33:97:24:6e:0c:dc:06:7b:3c:ef:b8:19:
f5:93:bd:87:d1:45:0f:7a:09:7d:bf:cc:3f:f0:63:a1:47:be:
ed:5b:13:a1:d6:30:26:c6:57:96:75:96:77:cb:32:35:b9:cc:
69:1e:c3:cf:80:b3:b8:a4:d3:5f:ed:fa:06:c3:89:78:b5:97:
3f:9c:08:56:0e:3e:22:c9:c6:6a:15:09:8e:62:43:17:dc:29:
d9:74:62:9e:44:76:71:91:aa:77:8e:de:b2:b7:2f:df:e9:20:
9e:80:c7:38:07:0f:28:42:c3:8d:e9:11:4a:2e:f3:fb:85:f3:
ab:95:11:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:47 2024 by rpki-client on console-ams.rpki-client.org