Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/SNop42WFNULD1Grv5cO-L8jLC_U.roa
File: SNop42WFNULD1Grv5cO-L8jLC_U.roa (raw, json)
Hash identifier: J+oVpPefrtY3eTiNXBa//BFfD6ee/SCHrrFHlgYtneE=
Subject key identifier: 48:DA:29:E3:65:85:35:42:C3:D4:6A:EF:E5:C3:BE:2F:C8:CB:0B:F5
Certificate issuer: /CN=b814345affd1506af9af32ec0d77399b7664aa3f
Certificate serial: 01929F52316402B24D65CAFC9F9BBB415BB4
Authority key identifier: B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/SNop42WFNULD1Grv5cO-L8jLC_U.roa
Signing time: Fri 18 Oct 2024 11:10:16 +0000
ROA not before: Fri 18 Oct 2024 11:10:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197641
IP address blocks: 45.144.104.0/22 maxlen: 24
2a0e:ec40::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 19 Oct 2024 13:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9f:52:31:64:02:b2:4d:65:ca:fc:9f:9b:bb:41:5b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b814345affd1506af9af32ec0d77399b7664aa3f
Validity
Not Before: Oct 18 11:10:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48da29e365853542c3d46aefe5c3be2fc8cb0bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:de:6a:e5:92:d4:a6:b9:1e:fa:62:70:78:c8:
d3:77:c1:9f:86:24:a0:58:22:21:7f:df:7a:3d:1f:
e0:ea:9d:e8:1a:33:87:91:f3:a6:6f:c8:ab:67:77:
e5:43:b4:36:b6:d3:db:8b:31:ed:e2:77:54:b9:30:
c6:d5:66:db:53:af:f0:3e:ad:dd:70:ed:23:85:f2:
5d:f3:25:2d:63:28:27:c4:b1:88:a4:b9:78:3a:3c:
e2:13:be:35:c5:5b:82:ff:d6:a7:d8:a3:0b:01:ba:
c5:b2:e4:20:86:16:fe:9a:ac:80:79:e2:fa:b6:d5:
fe:dd:b0:7b:e3:41:74:4f:7e:a1:68:e4:e9:5a:87:
d5:0c:a3:ad:49:21:10:c8:b1:64:25:a7:55:d5:43:
71:34:a4:df:08:cf:6d:a0:6a:17:00:9b:78:16:36:
aa:e9:6f:3b:57:18:0e:3f:a9:34:1e:8f:be:4f:9c:
4c:6e:00:fa:46:12:30:8e:7a:c2:e2:35:1c:64:00:
b4:46:10:bd:07:07:2e:73:a8:33:31:9d:7e:d9:43:
a1:1f:33:93:45:81:2a:71:2c:ba:94:8c:4e:4e:3c:
d6:0d:d1:02:50:da:84:39:c2:18:12:9a:6b:c8:59:
e7:6f:e5:71:83:41:06:a4:33:40:5f:e4:c2:d6:13:
92:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DA:29:E3:65:85:35:42:C3:D4:6A:EF:E5:C3:BE:2F:C8:CB:0B:F5
X509v3 Authority Key Identifier:
keyid:B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/SNop42WFNULD1Grv5cO-L8jLC_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.104.0/22
IPv6:
2a0e:ec40::/29
Signature Algorithm: sha256WithRSAEncryption
b3:a3:2b:00:d6:33:0f:dc:3c:14:f0:7c:c9:c1:f5:22:8e:bd:
07:39:5a:15:dd:aa:9c:fa:38:7e:37:f0:ac:0d:1d:c5:f3:7e:
7d:6a:a0:0d:ae:49:83:4a:2b:25:e5:95:cc:fc:3e:23:70:18:
20:22:21:ea:a4:e9:0c:cb:e9:9c:47:27:de:e9:ae:dc:71:39:
6b:24:cc:4a:85:ba:d3:16:19:e2:4e:92:e2:33:d5:5f:5b:2d:
47:99:78:70:a6:72:f6:d3:0e:c7:07:1a:18:93:38:4c:4c:11:
27:0e:f2:e6:1a:13:2a:c4:75:ca:ec:9b:6b:29:67:ea:33:9d:
a5:0a:3e:a8:33:7d:8d:f5:09:ec:b4:59:20:c8:b3:6c:44:43:
e1:c4:9a:fd:9e:b3:c3:6a:40:e0:8e:b6:d4:fb:4a:5a:22:73:
7a:17:90:83:53:6e:ab:e8:50:61:ff:5e:fe:41:8b:02:90:43:
19:98:8f:3d:03:01:98:f7:b7:0f:88:04:8b:64:44:65:75:c4:
bd:af:29:53:61:d5:84:82:03:71:f2:f7:47:68:ec:a3:03:d9:
e8:7e:1d:e2:37:8c:d3:14:86:db:6f:4c:2a:9e:47:6c:ae:6c:
73:17:38:4f:20:78:9e:45:39:fd:b4:f1:07:7c:9c:2d:85:79:
62:f6:ea:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 19 15:37:43 2024 by rpki-client on console-fra.rpki-client.org