Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/b9PfqaoT_kGNcXDDClb93dV8-DE.roa
File: b9PfqaoT_kGNcXDDClb93dV8-DE.roa (raw, json)
Hash identifier: PnkGeAP/s836ma7yGxDd3QwriqyoEO/dAkTV2AHKAPQ=
Subject key identifier: 6F:D3:DF:A9:AA:13:FE:41:8D:71:70:C3:0A:56:FD:DD:D5:7C:F8:31
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 0189308501B3FBA4A8B161B23C30D7C0C2DE
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/b9PfqaoT_kGNcXDDClb93dV8-DE.roa
Signing time: Fri 07 Jul 2023 13:22:50 +0000
ROA not before: Fri 07 Jul 2023 13:22:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 45.155.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:30:85:01:b3:fb:a4:a8:b1:61:b2:3c:30:d7:c0:c2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jul 7 13:22:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fd3dfa9aa13fe418d7170c30a56fdddd57cf831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1f:e1:a5:f4:a6:34:4b:0a:b4:25:ee:8c:f8:
a7:6f:63:ff:d5:30:cb:b6:36:df:0a:d1:aa:07:be:
7c:da:c4:74:45:cf:36:de:e9:e3:7c:3a:de:83:91:
fa:ca:7c:3b:13:4d:58:f5:b7:1f:4d:74:6d:36:78:
12:54:2c:cc:b0:48:79:a1:b7:f7:0f:7b:ef:a2:3b:
00:ab:df:f8:77:0f:c4:b5:3b:01:22:db:94:26:fc:
ca:9d:2b:4e:b7:09:9c:b4:c8:fd:91:6e:e1:59:ae:
b3:38:5f:d3:fc:2e:25:39:2f:83:e7:9c:9d:9b:14:
8a:96:bd:d1:9a:2d:16:5f:a7:a1:89:fc:a1:e1:4b:
0c:3a:88:5a:52:2f:5e:09:84:59:3c:91:f1:12:56:
2d:2a:e9:14:9c:b7:d8:ca:5e:94:ee:04:cf:38:30:
7f:11:15:62:98:3a:93:a0:5e:5d:eb:88:76:b9:83:
b0:b3:49:ee:8d:c4:f7:67:47:5d:a3:55:79:14:9f:
8b:d1:a4:15:5d:8e:60:1b:6e:8c:06:b4:f2:e4:2e:
ed:4c:49:a8:ab:2a:33:5d:f3:f3:e9:7a:e8:b0:9d:
a0:c5:ec:eb:f6:a5:54:fa:3f:f2:25:88:5d:cb:a8:
26:77:4a:99:a8:3d:62:74:b7:c5:79:94:58:27:69:
96:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D3:DF:A9:AA:13:FE:41:8D:71:70:C3:0A:56:FD:DD:D5:7C:F8:31
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/b9PfqaoT_kGNcXDDClb93dV8-DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:cd:f4:13:ff:b6:b7:f5:d4:8b:de:80:2d:d5:ec:46:30:d0:
2f:31:00:da:46:9c:07:a6:f0:24:bb:89:5e:2e:a5:f2:b3:f6:
41:36:ec:e4:d1:0f:e9:c5:5d:66:cb:07:3a:6d:9e:eb:55:a9:
f8:7b:38:a6:a4:d6:81:a2:a8:9a:8a:bb:80:b0:8c:bf:b9:ed:
be:fb:ca:40:b8:e0:de:16:37:78:25:7e:d4:f3:39:57:f1:ff:
66:a1:49:3a:e3:52:98:15:08:96:90:3d:cc:4a:bf:7a:e6:b9:
e5:bb:6d:a4:af:ce:66:7c:ec:c1:fb:3e:29:ff:84:80:2c:45:
3f:43:46:e0:f8:36:30:1a:4b:85:05:3a:a5:ba:99:1f:ac:8b:
de:00:29:21:c9:90:05:7a:6e:f6:ae:b5:2f:c8:ce:37:23:4a:
5f:9e:f0:d9:7d:33:c8:83:77:36:e1:6b:e4:9f:58:c4:c7:17:
e2:37:b0:db:94:e5:ca:ed:8f:5e:cc:23:d2:82:bc:f2:2b:19:
b1:29:32:3d:50:a3:5d:d2:13:41:d9:81:d5:9e:c0:59:8b:0c:
45:5d:fc:45:23:43:a9:1a:d4:05:34:bb:57:54:18:34:41:47:
23:7d:86:41:0d:20:21:3e:d9:06:de:7b:5e:ae:98:ad:10:ea:
d6:d6:5e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:23 2024 by rpki-client on console-fra.rpki-client.org