Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/FxC70kmsbI3PsWWu1AoS_9QIvR4.roa
File: FxC70kmsbI3PsWWu1AoS_9QIvR4.roa (raw, json)
Hash identifier: ozYRCAh1lITf4vmtIZ8drpjsZReSw7QqNvhXtc3w/NY=
Subject key identifier: 17:10:BB:D2:49:AC:6C:8D:CF:B1:65:AE:D4:0A:12:FF:D4:08:BD:1E
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018BFD1F31C221F012D82585DB5F28CC7C05
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/FxC70kmsbI3PsWWu1AoS_9QIvR4.roa
Signing time: Thu 23 Nov 2023 16:59:21 +0000
ROA not before: Thu 23 Nov 2023 16:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8849
IP address blocks: 45.132.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 16:36:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fd:1f:31:c2:21:f0:12:d8:25:85:db:5f:28:cc:7c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Nov 23 16:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1710bbd249ac6c8dcfb165aed40a12ffd408bd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ba:90:1c:c5:79:43:50:ee:97:ee:64:2d:ce:
ba:58:59:71:7d:e1:0d:5c:ed:cf:db:47:65:1e:25:
f8:77:df:01:64:11:15:80:58:6c:e9:24:a9:ec:fa:
c3:39:43:60:42:10:bf:cd:0b:76:08:98:bd:e8:5c:
8a:b1:8d:10:a2:cf:1a:e4:b5:0f:04:92:61:06:70:
de:0f:9d:0e:ef:9a:87:ab:e0:ab:33:9a:dd:07:e0:
8e:7b:fa:4b:63:41:71:01:0d:15:4c:bf:70:ed:9e:
7d:cd:5a:a0:99:f7:f0:4f:7e:3a:38:43:b9:e2:3a:
4f:45:72:95:81:70:de:ab:bb:e0:ac:09:81:48:c6:
dc:13:87:f2:19:4c:cf:06:31:8b:eb:36:e9:bc:fc:
1e:5a:d2:ee:bf:13:49:84:bc:3a:25:2c:0c:72:cf:
16:25:0d:ef:70:92:3d:0f:89:14:ad:fb:ee:24:51:
c0:24:d1:62:d3:14:1c:e3:5f:48:11:02:05:8c:8b:
62:34:1d:b6:61:f9:6b:62:25:85:a7:ef:bd:76:b2:
03:b0:0f:34:be:95:57:26:12:6e:47:c3:8c:d0:07:
b9:ac:d2:ec:e9:b7:09:55:4a:54:da:e9:ca:13:81:
22:e2:91:3b:97:15:21:e6:ba:fa:fe:fc:71:22:83:
b5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:10:BB:D2:49:AC:6C:8D:CF:B1:65:AE:D4:0A:12:FF:D4:08:BD:1E
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/FxC70kmsbI3PsWWu1AoS_9QIvR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.255.0/24
Signature Algorithm: sha256WithRSAEncryption
91:cf:09:4a:2b:ba:25:08:70:65:46:39:63:fe:3d:c3:8f:95:
b1:95:c2:7c:48:2f:d1:0c:2f:fa:26:d0:a9:9a:37:0b:e2:3f:
3c:f6:25:33:99:b5:7b:25:d5:d2:52:8c:a8:1e:68:f0:4e:f5:
e8:3b:c0:2e:cd:28:48:14:d0:81:7f:6d:22:52:2f:ff:7a:e4:
0b:77:30:00:44:80:98:c2:f7:14:ed:de:46:46:20:67:7d:09:
55:b8:ee:bd:06:08:d0:34:ef:9c:34:d2:d8:b2:5a:99:1a:e6:
5f:ca:65:df:44:20:68:01:9b:c0:e1:54:8d:d8:a4:2d:6d:db:
62:93:d0:a0:e8:0a:69:ae:e0:da:e3:f6:d1:30:5a:d6:57:f9:
f9:79:1b:7b:2e:0d:66:75:1b:3d:16:1f:d8:14:54:d9:a1:40:
4c:73:53:97:15:57:af:94:de:e0:23:06:44:70:31:7e:80:b0:
35:61:c1:ea:91:6f:70:ed:ae:c3:62:c2:b9:ea:8c:dd:c9:21:
76:91:41:14:37:1b:24:bc:53:60:15:f3:f5:d6:50:1d:c0:42:
be:83:7a:05:95:47:0d:f5:bf:34:d0:87:94:0b:f6:15:cb:8f:
44:09:c8:15:08:bc:9b:e5:af:48:1e:28:fc:7d:b4:bc:9d:53:
fd:99:89:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org