Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/Twd855HBL4r4xykPhxcfoZ_kdU8.roa
File: Twd855HBL4r4xykPhxcfoZ_kdU8.roa (raw, json)
Hash identifier: l0pGqmn+9/UUrXqAeFVUzW1vSYCm66w5GlytYiYlOtw=
Subject key identifier: 4F:07:7C:E7:91:C1:2F:8A:F8:C7:29:0F:87:17:1F:A1:9F:E4:75:4F
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 01915A8615D7CE037ABF0322A5BB8766B9EE
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/Twd855HBL4r4xykPhxcfoZ_kdU8.roa
Signing time: Fri 16 Aug 2024 09:30:22 +0000
ROA not before: Fri 16 Aug 2024 09:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16262
IP address blocks: 45.10.174.0/24 maxlen: 24
45.81.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 11:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:86:15:d7:ce:03:7a:bf:03:22:a5:bb:87:66:b9:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Aug 16 09:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f077ce791c12f8af8c7290f87171fa19fe4754f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6c:f8:ad:51:5d:f1:68:9b:31:cb:e5:d5:5f:
5a:ef:88:29:09:6e:b0:f3:24:ac:37:04:00:c4:c3:
b2:83:60:72:54:9d:12:52:0b:7b:2c:c9:0a:39:a4:
d7:c6:fe:5f:90:36:d5:24:75:9f:73:be:95:a5:77:
75:a2:6f:06:df:05:2b:da:1e:aa:64:93:85:c9:ac:
00:cd:ac:6a:35:e8:5e:3f:76:3e:61:7d:77:21:7a:
65:38:82:9d:06:f5:16:fa:69:8b:af:4d:66:99:e0:
f4:e7:61:cf:9b:ff:ce:d9:9e:07:19:fe:50:f3:e0:
2c:1e:14:c1:a5:41:bc:8b:4e:6f:8f:01:cb:28:90:
9e:c1:9e:16:4d:46:74:5d:1f:88:ab:b7:60:01:ea:
bd:98:f3:04:cd:78:c0:ac:27:9f:f6:3c:39:a0:79:
79:03:b0:1f:21:15:96:a3:80:1d:01:1b:10:ca:af:
4f:52:55:f2:3b:ef:e1:1d:0b:f7:e1:18:76:99:00:
10:08:91:2b:0e:1f:de:55:c5:da:68:85:29:22:ba:
be:b9:04:3a:7f:d9:de:66:57:60:1b:60:19:93:19:
1f:3c:75:a0:ad:a0:35:d5:e5:55:8d:57:b9:fd:80:
02:25:fc:a1:10:46:66:7a:16:f4:bf:54:7d:a1:39:
e0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:07:7C:E7:91:C1:2F:8A:F8:C7:29:0F:87:17:1F:A1:9F:E4:75:4F
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/Twd855HBL4r4xykPhxcfoZ_kdU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.174.0/24
45.81.33.0/24
Signature Algorithm: sha256WithRSAEncryption
53:28:c6:40:55:2d:6b:30:11:fd:2b:8a:44:1e:e7:a2:8b:46:
05:d4:58:1f:0e:62:fd:62:43:09:bd:8b:8f:c4:74:48:51:86:
61:78:cd:fd:93:32:bf:6e:d8:d2:3d:5c:f9:31:72:01:46:7b:
aa:77:9d:a4:ba:e9:3f:46:bc:c9:26:e8:d0:bf:73:69:77:a8:
c8:6f:c0:64:dd:c8:36:8b:b9:7e:51:d1:f0:40:19:22:b6:78:
8b:b8:c8:73:e7:ec:17:f6:ac:a5:d6:42:d7:f2:ce:38:b0:fb:
02:64:fd:30:7e:d3:f4:30:26:a5:59:cb:96:d8:74:19:bd:f1:
25:8a:85:16:14:98:4b:4c:d3:81:25:da:6b:8b:96:3c:97:d9:
3c:ed:00:86:6e:21:94:a0:04:8c:03:4e:61:62:f5:cf:92:9a:
9a:0f:34:c0:1f:fe:c1:bb:1d:fc:49:f8:c1:36:ab:6a:28:21:
f5:51:6c:f4:2f:25:47:00:04:28:9a:dd:d6:ce:82:1f:c0:9e:
4b:b5:c1:f2:af:d9:23:3a:fb:9b:c1:83:1d:8d:87:1f:16:fa:
51:47:9e:27:b7:57:3e:03:a7:0d:06:e8:d5:ce:b0:d6:0a:34:
13:f1:8c:8f:4c:5d:87:ae:09:a7:0f:29:a2:87:bb:23:da:16:
f8:24:5d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 15:22:08 2024 by rpki-client on console-fra.rpki-client.org