Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SoZAexjEpZkiaLxa9JZNaULrf0E.roa
File: SoZAexjEpZkiaLxa9JZNaULrf0E.roa (raw, json)
Hash identifier: +kyKr44Op6koaLHEAmyUIt2ccROr9rOJUIcjnBHN6/I=
Subject key identifier: 4A:86:40:7B:18:C4:A5:99:22:68:BC:5A:F4:96:4D:69:42:EB:7F:41
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C1D3D824DAEA8E783E81106851DF4
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SoZAexjEpZkiaLxa9JZNaULrf0E.roa
Signing time: Mon 02 Jan 2023 05:54:57 +0000
ROA not before: Mon 02 Jan 2023 05:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43077
IP address blocks: 45.142.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:1d:3d:82:4d:ae:a8:e7:83:e8:11:06:85:1d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a86407b18c4a5992268bc5af4964d6942eb7f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f7:74:c8:ee:12:ab:dd:e2:75:f8:08:3c:97:
32:96:69:49:1c:20:9a:58:e2:cf:a9:a8:0f:79:23:
12:9e:04:57:14:e8:01:b8:2b:dd:83:a9:99:0f:df:
17:2a:76:1b:d4:da:e3:eb:7a:4e:f4:70:2e:2e:db:
7e:a3:7f:f9:95:36:a1:ae:88:7f:22:47:42:76:c3:
d4:73:e5:2e:b8:e0:97:0d:9a:9f:84:f5:02:1f:8c:
45:34:4c:03:b0:71:2e:e3:35:c3:61:96:9f:4b:7a:
5e:18:f4:a1:6b:24:28:5e:75:cb:df:f9:59:53:b8:
ed:48:4a:ed:16:cb:04:5b:0a:7b:52:29:d9:4f:b0:
c0:8a:b2:03:68:fe:5d:fe:c7:05:f2:e4:10:04:79:
57:5c:f2:cc:5c:4f:f5:48:48:35:b4:3f:15:af:94:
44:70:5c:0e:9c:b0:73:a0:af:1c:06:a8:c1:32:36:
13:a1:af:f3:1a:3a:12:03:d9:ba:a4:8c:72:6a:27:
ee:8c:ba:99:21:76:41:e3:3a:9d:59:3b:4d:1c:31:
b2:34:70:7d:1e:ce:db:08:48:e7:26:a9:06:c0:3b:
42:50:b4:df:9b:c3:b6:8d:33:39:e8:ed:b4:6e:f2:
89:43:f9:c1:4e:cf:ec:0f:ba:9b:3d:e8:27:a9:e1:
74:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:86:40:7B:18:C4:A5:99:22:68:BC:5A:F4:96:4D:69:42:EB:7F:41
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SoZAexjEpZkiaLxa9JZNaULrf0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.121.0/24
Signature Algorithm: sha256WithRSAEncryption
58:f7:78:d5:a2:3f:95:a7:e7:e7:3d:1e:06:c2:06:7a:a0:24:
11:e3:16:38:4e:68:8e:b3:16:75:f8:ff:02:6f:14:d9:7a:32:
0c:45:98:d0:f7:88:9d:cd:48:09:4a:66:9a:91:aa:96:c9:d7:
53:40:ff:81:74:94:cd:b8:73:d7:1a:a2:34:f7:83:42:7c:ee:
78:02:3f:dc:76:d5:be:73:32:5b:12:ce:da:b7:21:f9:6f:bb:
b9:16:c0:c7:a9:8c:c0:0d:21:90:0c:8e:15:c6:16:d5:14:fc:
29:ad:ae:7d:f7:99:15:9a:b9:70:e3:2a:e1:e9:7a:d8:43:61:
93:a7:58:67:3a:f3:52:78:1a:52:d1:a6:7e:b1:c5:e9:9b:fe:
a4:81:b1:eb:5b:bc:70:36:3a:66:a1:eb:d4:92:8b:ae:b8:15:
30:0a:ab:40:24:10:cb:7d:dc:11:55:66:0d:ed:95:09:e9:c1:
52:ef:ee:7b:c4:c3:f5:3f:79:ff:c1:69:d8:bc:4b:aa:95:12:
2f:1c:b3:a1:a2:c9:85:f7:7c:92:a6:35:64:18:f9:b5:6e:96:
7f:64:36:82:62:e3:83:35:83:8e:8e:97:45:93:2c:4b:14:bb:
5c:3a:ba:a3:5b:98:e6:17:55:fd:a8:fa:58:3b:14:f9:c7:a4:
be:85:82:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org