Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq4sTj4bgl0Ely3-rUcD41U6Ou8.roa
File: Uq4sTj4bgl0Ely3-rUcD41U6Ou8.roa (raw, json)
Hash identifier: mNsQRpz3FvEP+Obos/iCG3jiy1BF4fiz3p4cbvDzww4=
Subject key identifier: 52:AE:2C:4E:3E:1B:82:5D:04:97:2D:FE:AD:47:03:E3:55:3A:3A:EF
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C5408C1D390A614E86575B9DE6D5FA3
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq4sTj4bgl0Ely3-rUcD41U6Ou8.roa
Signing time: Sun 01 Jan 2023 07:55:24 +0000
ROA not before: Sun 01 Jan 2023 07:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149485
IP address blocks: 45.138.211.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:08:c1:d3:90:a6:14:e8:65:75:b9:de:6d:5f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ae2c4e3e1b825d04972dfead4703e3553a3aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:55:c1:ef:54:e6:83:37:e6:ae:cb:f8:57:
73:cb:48:86:e0:2a:04:3b:c9:b9:56:9a:1c:e0:25:
6c:c5:a1:0a:fa:11:ed:39:4c:ff:bf:fd:0e:70:dd:
37:9e:c0:d7:03:9a:33:af:9a:d2:dd:b8:fc:53:f2:
fc:92:55:7d:c2:49:a7:91:b6:2e:c8:8e:a5:9a:53:
e4:bd:11:04:fd:d1:69:92:7b:33:40:d1:41:76:b6:
01:2a:0a:47:95:5f:d5:ab:67:9b:24:98:7e:7b:80:
f5:1f:b9:7a:db:65:1b:44:43:d7:04:ea:a9:b6:fb:
24:46:88:dc:cd:ce:e3:0d:7b:14:e1:ad:82:d8:62:
ea:bb:63:d0:50:29:d9:88:06:1b:bb:80:ec:f8:a1:
3c:74:3a:04:7f:41:27:71:ea:60:89:b7:46:39:3a:
89:0c:6e:42:ad:ab:65:29:4c:75:a5:09:48:c1:ae:
4f:27:14:93:6a:d5:44:38:36:dd:05:3c:46:f5:dd:
36:b7:a4:d6:0a:79:be:75:05:f8:43:86:84:54:20:
cb:1c:f6:fd:be:04:b2:e3:0b:74:db:5b:b5:75:b2:
8d:9c:c4:c2:2c:1b:de:f3:cf:6e:cd:30:f0:63:bb:
77:bc:73:2c:b6:cb:c8:56:35:dd:3e:d5:03:e9:69:
d2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AE:2C:4E:3E:1B:82:5D:04:97:2D:FE:AD:47:03:E3:55:3A:3A:EF
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq4sTj4bgl0Ely3-rUcD41U6Ou8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.211.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:aa:93:0f:0a:0b:3e:d9:59:09:97:f8:83:a7:a5:c4:46:e7:
1c:ac:d8:12:89:5f:da:5b:a7:aa:33:36:9f:d8:76:41:6c:8f:
9c:ad:16:e7:6b:d4:d3:02:99:4e:7f:42:33:61:13:1e:7e:fc:
94:b4:d0:18:27:b8:d7:10:a3:6e:dc:aa:b3:9a:94:46:e3:12:
08:9f:e8:e8:b4:01:f2:c7:dd:00:c8:33:d3:4b:64:e2:6b:76:
33:02:8c:92:fe:aa:18:9b:0d:81:fa:97:37:76:fe:9a:e1:d6:
cf:b2:27:1f:2e:25:d5:4b:d6:94:b2:6a:ed:5a:f4:b4:9f:a3:
0d:3b:d7:c3:da:40:7e:19:1a:c5:45:b9:7d:0b:f9:0b:01:5e:
11:51:5e:56:cb:96:8b:c5:31:68:bf:88:88:3b:58:64:e0:1e:
ee:c7:96:32:26:6f:e3:ba:f9:6f:8c:dd:46:c9:82:9c:3c:e3:
9d:82:a8:15:f9:34:a9:4d:5e:25:c7:da:6b:4a:7d:4d:11:7f:
7b:a2:cf:25:8f:5e:32:35:b9:df:72:eb:1e:e2:d9:ee:df:91:
57:c5:f1:a8:f0:eb:af:81:50:55:42:45:1b:63:a5:24:0d:e1:
5a:17:25:f3:23:c0:67:ad:ab:a6:28:9b:63:44:26:d3:1b:42:
cb:ed:aa:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org