Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/QuAxY-DQaO1JpPuhFNENSUKP5Gg.roa
File: QuAxY-DQaO1JpPuhFNENSUKP5Gg.roa (raw, json)
Hash identifier: 8xiYrpZUSUcmgZn98OEizIYqlEF69oURHCkOU1anS3Q=
Subject key identifier: 42:E0:31:63:E0:D0:68:ED:49:A4:FB:A1:14:D1:0D:49:42:8F:E4:68
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 018A298B7370C95FE81B80E4706CB50B2A23
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/QuAxY-DQaO1JpPuhFNENSUKP5Gg.roa
Signing time: Thu 24 Aug 2023 21:55:19 +0000
ROA not before: Thu 24 Aug 2023 21:55:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26042
IP address blocks: 45.155.78.0/24 maxlen: 24
45.155.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:29:8b:73:70:c9:5f:e8:1b:80:e4:70:6c:b5:0b:2a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Aug 24 21:55:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42e03163e0d068ed49a4fba114d10d49428fe468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:89:86:50:a7:24:c8:ab:f1:62:19:d4:68:
ea:bf:ab:76:94:11:d0:07:d1:47:7c:26:b1:fc:e7:
e8:2a:83:ed:c0:0d:c9:a4:87:d3:8d:c4:d9:71:5b:
d5:36:40:59:b3:d0:9b:75:39:0f:ca:16:11:16:f4:
a1:f8:2c:19:8a:3b:df:8b:4a:72:fd:6b:54:a3:5f:
3b:80:19:d0:b7:56:c4:f3:62:f3:3c:5a:56:25:44:
4a:1e:0f:e7:33:91:f4:a7:5c:f8:1d:23:05:f2:33:
e5:48:f4:f2:66:0b:1c:c5:4b:11:c2:a5:0b:9f:cb:
93:35:4b:99:b7:4b:c3:e1:ac:83:ad:57:38:9e:f1:
ea:1d:c3:3d:97:3b:94:63:6e:5e:6a:a5:c8:a0:69:
0e:99:62:59:f8:4c:c5:02:57:bc:ac:5d:40:3a:f5:
3b:da:c1:ff:9a:f7:7a:76:0c:c8:58:28:0b:9b:62:
c1:a5:1c:5e:b9:06:eb:49:09:3a:e6:e4:2d:98:93:
43:19:a8:02:c0:b7:44:6f:90:60:16:95:cd:b7:e9:
78:95:96:b7:2b:64:73:88:b2:74:c6:86:8d:99:82:
f0:32:6b:fd:ad:ca:6e:96:4e:17:45:97:12:17:be:
42:94:d4:81:42:60:f9:98:d8:21:bc:ca:39:ae:5d:
01:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E0:31:63:E0:D0:68:ED:49:A4:FB:A1:14:D1:0D:49:42:8F:E4:68
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/QuAxY-DQaO1JpPuhFNENSUKP5Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:eb:fa:a9:d0:b2:e9:17:f0:03:c6:5f:f2:b3:a9:bd:e3:13:
8f:04:63:0b:81:d0:00:72:9d:ba:7b:ef:24:99:34:f1:33:57:
e4:d1:d0:f2:b8:50:69:3e:90:26:00:45:9f:9f:27:13:21:18:
8c:cf:01:09:c6:51:b6:7d:66:0f:57:37:3d:b7:2c:d1:56:9b:
ff:cc:f3:d6:a2:b0:88:43:f6:a6:03:45:50:15:fb:2b:22:54:
50:6a:d2:22:10:85:20:3f:29:83:dc:16:5f:ca:92:67:ee:7e:
15:d5:84:70:9e:18:d8:d8:fd:3d:5c:b2:fb:d0:e9:82:15:63:
4a:db:ee:a5:25:82:8f:02:99:71:ce:5b:7c:bd:34:f4:69:cc:
e0:c6:02:1d:fb:80:9b:d1:2a:e6:cc:6f:f9:f1:33:11:63:ed:
f8:b4:d9:e9:4d:d2:c3:03:e5:3c:87:ef:6d:a6:04:fe:49:16:
c1:46:dc:ca:dc:be:17:ba:27:c1:41:9b:ad:35:66:d0:30:d8:
2c:da:f1:c0:c4:59:0f:6d:d1:dc:b4:0f:df:17:a8:28:bd:26:
aa:8e:94:70:9f:22:c4:68:62:cb:5d:30:45:ac:69:01:32:58:
83:f4:a0:4c:c6:89:fc:7e:33:da:b8:b3:bf:28:f0:0d:e8:c5:
e7:5b:23:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:34 2024 by rpki-client on console-ams.rpki-client.org