Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ae1953-bfc4-42b5-950b-9c98d11197b7/1/x4CYZTPrNV0KvnUMWE-cll3i8Qk.roa
File: x4CYZTPrNV0KvnUMWE-cll3i8Qk.roa (raw, json)
Hash identifier: rKFNoQHN+pmpp0KHGjnZtua8LtDKrqPbnDaN6veL3ik=
Subject key identifier: C7:80:98:65:33:EB:35:5D:0A:BE:75:0C:58:4F:9C:96:5D:E2:F1:09
Certificate issuer: /CN=4142d3f9b31126e0850265715c9fc32174b557a4
Certificate serial: 018572C3865E6CEDB2085DF963BBC090DD85
Authority key identifier: 41:42:D3:F9:B3:11:26:E0:85:02:65:71:5C:9F:C3:21:74:B5:57:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QULT-bMRJuCFAmVxXJ_DIXS1V6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ae1953-bfc4-42b5-950b-9c98d11197b7/1/x4CYZTPrNV0KvnUMWE-cll3i8Qk.roa
Signing time: Mon 02 Jan 2023 13:54:54 +0000
ROA not before: Mon 02 Jan 2023 13:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205953
IP address blocks: 45.159.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:86:5e:6c:ed:b2:08:5d:f9:63:bb:c0:90:dd:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4142d3f9b31126e0850265715c9fc32174b557a4
Validity
Not Before: Jan 2 13:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c780986533eb355d0abe750c584f9c965de2f109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:05:2a:dc:c2:7e:9d:5d:37:fe:7d:aa:1c:
bc:d8:38:b1:e3:83:28:ce:d7:2a:1c:02:ce:1d:d1:
53:20:c4:3e:7a:6d:e6:f6:87:37:43:9e:ee:5f:1b:
c8:5d:77:b8:a0:39:1b:b2:a2:c5:9c:cb:1b:2e:55:
dc:7f:4b:bc:35:5f:0f:1b:e1:82:bf:66:2d:ca:3f:
bb:c0:6d:38:fd:25:38:92:f1:cf:2e:21:8e:f0:87:
94:eb:26:a4:d3:9c:93:72:36:59:2d:95:4d:ce:b3:
a3:32:27:1b:86:5e:77:f4:75:b4:32:1c:24:18:d2:
76:40:5c:92:51:fb:1a:04:3d:8c:72:ab:e0:f7:99:
8e:32:19:21:bf:6f:33:5e:84:41:2d:45:34:86:7d:
88:c2:1a:16:68:5c:48:e7:c8:e6:d7:3f:b7:8e:31:
d5:33:4e:1f:80:d8:c1:79:4e:30:91:c4:63:d6:7f:
ca:1c:d6:ac:bc:b7:60:c9:d6:e8:e8:a1:42:52:36:
57:3b:24:4d:23:99:e4:ce:c3:a3:9f:8f:5d:5f:32:
6c:09:21:b9:ee:d3:42:37:16:f8:42:cf:11:7b:e8:
88:a4:55:8c:38:77:45:2f:75:df:8c:b2:d9:a3:70:
96:dc:51:fd:ee:0e:39:f3:40:fa:80:bf:23:c6:80:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:80:98:65:33:EB:35:5D:0A:BE:75:0C:58:4F:9C:96:5D:E2:F1:09
X509v3 Authority Key Identifier:
keyid:41:42:D3:F9:B3:11:26:E0:85:02:65:71:5C:9F:C3:21:74:B5:57:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QULT-bMRJuCFAmVxXJ_DIXS1V6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ae1953-bfc4-42b5-950b-9c98d11197b7/1/x4CYZTPrNV0KvnUMWE-cll3i8Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ae1953-bfc4-42b5-950b-9c98d11197b7/1/QULT-bMRJuCFAmVxXJ_DIXS1V6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.30.0/24
Signature Algorithm: sha256WithRSAEncryption
69:4c:a7:0f:65:53:97:d8:03:2f:7c:b8:b6:a5:eb:ae:4e:84:
1d:c3:f3:26:29:2f:9d:cf:ed:92:e5:b4:56:02:44:60:7f:f2:
8d:15:63:4f:bc:ba:51:ad:fa:41:6e:55:a3:fc:e8:28:d5:c6:
7b:fc:7d:80:5e:33:a2:03:94:d6:b4:ea:8f:9a:38:95:f6:01:
41:71:89:b2:fa:a9:51:77:fb:db:ed:27:73:53:d8:83:06:02:
42:72:ab:ba:4b:9f:3e:93:ea:4f:90:44:eb:19:90:ef:cd:15:
8e:06:65:3b:7c:7f:97:16:7a:0c:14:fa:ba:33:17:02:cf:fa:
d7:83:96:b5:f2:46:87:35:4e:37:b8:e1:ff:7a:23:ed:56:55:
e2:42:04:b0:6b:b3:fc:88:e9:1a:32:38:20:f4:61:2e:b4:50:
48:9b:a1:fe:34:7d:7e:e3:58:ec:34:db:53:87:ab:c5:ea:b9:
20:89:81:68:d8:1c:28:02:c2:85:a7:9e:91:1b:e1:47:ac:31:
ef:b4:8d:4a:ef:54:ba:cf:26:b1:92:68:b5:ed:7e:ef:75:77:
11:f4:5d:82:fc:d9:17:53:ae:63:64:23:e3:7f:72:11:a4:f3:
27:ab:4e:c8:b1:07:d1:71:74:3e:17:46:8f:e9:f0:33:19:95:
73:01:c1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org