Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/XsJfpvY2P9q5y9I_r5sweKjnVSw.roa
File: XsJfpvY2P9q5y9I_r5sweKjnVSw.roa (raw, json)
Hash identifier: EaDuE5JLDMY9CVgzajZ/320393NnF2ERh1Zvza8bl3w=
Subject key identifier: 5E:C2:5F:A6:F6:36:3F:DA:B9:CB:D2:3F:AF:9B:30:78:A8:E7:55:2C
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 0187366FE1CE1EF0C956778B7B7887A7BB2B
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/XsJfpvY2P9q5y9I_r5sweKjnVSw.roa
Signing time: Fri 31 Mar 2023 06:51:54 +0000
ROA not before: Fri 31 Mar 2023 06:51:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200950
IP address blocks: 45.155.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:6f:e1:ce:1e:f0:c9:56:77:8b:7b:78:87:a7:bb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Mar 31 06:51:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ec25fa6f6363fdab9cbd23faf9b3078a8e7552c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:7c:d6:bc:81:5b:9d:67:c5:4e:89:ec:28:
43:a4:aa:e4:48:f0:2e:c9:04:40:aa:fa:64:27:fd:
c3:04:7b:bf:93:13:1e:30:e6:7f:e9:24:33:a9:36:
54:57:b5:05:9e:f9:97:7b:69:28:34:e4:ad:8f:a4:
88:d0:d5:6a:a7:44:91:ca:cf:fe:52:d2:26:ad:9c:
f8:26:b7:04:9c:91:ba:53:30:ef:ff:ae:2d:d3:22:
dc:1d:53:1e:1a:83:11:0a:e8:54:4e:54:34:9a:0f:
c3:c8:15:1f:da:bb:63:a7:47:db:7f:d7:54:04:30:
24:4d:55:dc:52:8f:88:dc:6b:ae:e0:09:ae:c3:ef:
cf:80:b3:7f:66:c6:d8:b5:ff:6f:c4:02:8c:52:b3:
c8:b7:4e:1d:f6:63:38:b5:39:d7:41:5f:36:4c:cf:
18:3f:b9:7a:da:b1:fa:aa:5b:cd:89:65:03:c8:80:
ca:7a:13:ec:eb:07:ff:32:51:16:fd:ef:3a:a8:48:
16:74:c8:40:58:53:da:4e:48:97:a4:5f:da:e5:b4:
d3:f3:c5:67:9d:e3:3c:89:1f:b2:56:f6:21:9e:cd:
86:50:9d:bf:5a:92:55:0f:1a:16:53:6c:8d:cb:8e:
43:1f:57:17:64:b3:8c:80:69:f7:cc:51:a3:90:26:
01:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C2:5F:A6:F6:36:3F:DA:B9:CB:D2:3F:AF:9B:30:78:A8:E7:55:2C
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/XsJfpvY2P9q5y9I_r5sweKjnVSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.77.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:74:c8:68:11:6b:05:64:d9:66:67:1b:fe:bb:2c:35:12:be:
1f:e3:32:dc:f4:d2:e9:8d:fe:11:a8:9b:aa:32:06:56:ab:9c:
15:67:23:44:3a:3e:eb:25:3a:bf:09:7e:0b:08:bc:0c:ff:9c:
bd:4f:b4:80:25:a7:0e:c7:6f:80:61:bd:6c:2b:a4:54:d3:1b:
f3:9e:f0:bc:85:0e:da:3b:35:90:e9:11:be:ea:b5:1a:ac:7a:
17:7d:7a:74:ec:eb:1a:51:e9:cd:62:4e:4f:2e:15:c6:f4:d3:
ed:5c:4f:3d:2e:75:69:17:19:03:38:b0:23:e7:4e:7b:af:00:
e4:3b:a5:61:9d:4d:1f:0e:79:41:98:52:a0:dc:36:58:fa:21:
78:8f:d1:66:bd:b6:31:50:21:53:4a:22:52:27:0f:49:b7:54:
02:1b:7a:aa:4b:62:c7:63:f7:df:9e:44:05:e1:12:a6:56:d5:
7c:c7:1f:98:2e:19:66:62:57:f6:bd:ea:29:83:69:43:fc:70:
fd:7b:8d:8a:8a:81:8d:f7:ea:46:a6:4a:b0:38:94:88:f8:a4:
7c:89:cd:30:6e:4e:28:e4:cf:c7:9d:46:48:55:8a:82:09:db:
22:eb:03:fa:0f:02:22:7a:e7:7f:61:d8:c9:d9:52:7e:83:16:
d2:45:51:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org