Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tqB9hvU2NWJ5EaC55GMNoHvkzVw.roa
File: tqB9hvU2NWJ5EaC55GMNoHvkzVw.roa (raw, json)
Hash identifier: QgyKDdWOWAx9IwIZL/YDKhBeBmCJ83MRZH2i7vub+Ks=
Subject key identifier: B6:A0:7D:86:F5:36:35:62:79:11:A0:B9:E4:63:0D:A0:7B:E4:CD:5C
Certificate issuer: /CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Certificate serial: 0185729EC4EF348879283A478E1DF3078962
Authority key identifier: B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tqB9hvU2NWJ5EaC55GMNoHvkzVw.roa
Signing time: Mon 02 Jan 2023 13:14:45 +0000
ROA not before: Mon 02 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.136.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:c4:ef:34:88:79:28:3a:47:8e:1d:f3:07:89:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Validity
Not Before: Jan 2 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6a07d86f53635627911a0b9e4630da07be4cd5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:43:0c:b3:34:8f:84:89:9d:ac:dc:8c:5c:4e:
63:66:e9:a2:e6:5d:16:e5:e4:04:ca:51:9a:40:42:
e5:a1:ac:c1:a9:5a:19:97:dc:3b:11:d3:84:cd:13:
9e:48:2d:34:ee:50:b1:78:5a:a8:3f:f7:03:13:10:
c4:e4:07:70:20:80:f0:f4:fe:9d:1b:db:64:c5:86:
eb:4b:a6:c9:5b:65:01:ec:21:e7:af:9d:1c:93:44:
e3:09:c8:d1:a0:36:77:59:55:87:54:5a:00:56:a6:
eb:63:0e:ea:5b:fb:73:3a:1e:54:ca:0b:64:44:50:
91:9f:81:83:05:ec:8f:cc:f7:da:2e:93:17:cb:98:
82:5c:02:3d:ff:a1:8a:34:12:ab:bd:dc:d6:aa:00:
ea:2f:36:16:9f:c2:11:30:98:dc:44:b3:89:7d:bf:
9e:fd:26:25:61:a7:72:20:90:3c:92:52:0d:ee:95:
68:06:d2:0b:73:42:ae:08:78:60:8b:81:bd:8b:17:
2a:7a:f2:33:d5:df:be:a0:14:f0:8c:e7:54:47:33:
12:56:62:93:68:08:22:c4:30:d0:ce:cc:63:48:3a:
d1:03:e8:1d:60:d4:8e:29:88:cb:79:d2:c2:49:6c:
8e:4c:bc:52:fa:d5:4e:2f:e1:c7:50:9b:af:97:76:
11:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A0:7D:86:F5:36:35:62:79:11:A0:B9:E4:63:0D:A0:7B:E4:CD:5C
X509v3 Authority Key Identifier:
keyid:B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tqB9hvU2NWJ5EaC55GMNoHvkzVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.240.0/22
Signature Algorithm: sha256WithRSAEncryption
24:4e:c0:9d:b3:19:83:2b:ee:07:db:fb:0f:7d:2a:60:0e:8b:
73:87:e4:41:cc:a4:03:28:8a:d5:f1:b7:0c:81:0f:40:15:1e:
71:8a:0f:25:07:3c:8c:8b:72:45:55:73:15:50:28:3c:ea:5f:
c5:01:7a:d8:a2:6c:20:7a:57:08:bd:90:b0:a7:09:53:f8:d1:
78:f9:62:22:62:cf:db:c6:e2:86:96:79:82:33:4b:32:cf:bf:
4d:80:34:e8:96:14:ae:d2:b8:0c:1b:20:be:c6:6d:e2:f1:ab:
41:89:cd:e3:df:7b:55:f8:c9:f2:4a:7d:58:bd:ff:73:d6:41:
09:65:6a:39:2e:fc:ce:b8:67:41:27:27:57:c4:9e:87:12:27:
7d:45:a5:a0:32:73:32:96:b2:c4:30:9d:6c:60:ab:6d:fa:d7:
3e:3c:be:93:b3:24:9b:f0:be:22:03:5f:a8:f2:bc:af:b7:b1:
4f:72:ff:a1:97:4a:f0:25:d6:5d:e2:3d:6f:83:13:91:7b:a9:
fd:14:47:69:c2:5d:cc:2d:36:be:b9:a1:18:c7:53:ee:56:c3:
b0:80:f8:49:29:1b:d4:4c:db:01:72:ba:7b:99:49:96:3f:1c:
d2:8d:8a:82:88:e1:17:92:89:53:d6:2d:95:97:1d:a8:af:4c:
4d:39:cf:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:07 2024 by rpki-client on console-ams.rpki-client.org