Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/H51QLi8SopukHLnJpADtdg9V8B8.roa
File: H51QLi8SopukHLnJpADtdg9V8B8.roa (raw, json)
Hash identifier: +wL6YFZQshbp4nXT9SQcVYjPhZk/iDQdqPYG58H24eI=
Subject key identifier: 1F:9D:50:2E:2F:12:A2:9B:A4:1C:B9:C9:A4:00:ED:76:0F:55:F0:1F
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 01929F2729BBF4BAD5E1171491C4AD14E338
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/H51QLi8SopukHLnJpADtdg9V8B8.roa
Signing time: Fri 18 Oct 2024 10:23:16 +0000
ROA not before: Fri 18 Oct 2024 10:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33652
IP address blocks: 45.147.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 08:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9f:27:29:bb:f4:ba:d5:e1:17:14:91:c4:ad:14:e3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Oct 18 10:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f9d502e2f12a29ba41cb9c9a400ed760f55f01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b8:1b:ae:8b:1c:9e:07:a6:43:e2:cc:ef:54:
6d:0f:dd:e1:73:11:a1:7e:33:7d:e6:7e:bc:14:27:
d2:11:84:f7:70:63:d2:90:13:fa:ae:8a:c8:57:f6:
a7:18:ec:18:be:71:9e:1a:53:2e:75:b0:99:12:9f:
31:92:fe:47:b1:e4:3c:33:fc:e2:a4:a3:8d:95:fb:
03:7a:b0:49:93:8d:7e:bd:59:5a:b7:f1:2f:8d:9a:
95:b9:be:3a:39:61:15:25:81:37:c9:57:7b:55:58:
3f:73:17:55:71:e8:b3:4d:82:de:72:b2:b7:b5:a6:
2d:93:35:1f:1b:73:53:0a:b2:39:02:54:3a:6f:ec:
64:46:79:6e:62:b9:92:54:49:ab:2f:b7:d8:ab:b1:
46:a1:21:d6:65:9e:60:aa:57:68:be:6c:f6:1d:6e:
f1:bd:38:b5:8d:8b:e9:79:16:5a:28:a0:2a:64:e2:
28:dc:68:45:2b:64:b5:41:ec:4a:7d:27:1f:bc:26:
65:4d:25:cb:81:78:46:4a:39:64:d8:18:c5:ac:b3:
e3:53:56:cb:2b:57:8e:5a:b1:3b:24:69:16:78:09:
e9:2c:db:d4:d1:63:e7:35:d6:de:a2:81:bb:bf:e8:
6f:da:88:91:54:c9:ec:86:b8:34:03:da:fd:16:98:
cb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9D:50:2E:2F:12:A2:9B:A4:1C:B9:C9:A4:00:ED:76:0F:55:F0:1F
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/H51QLi8SopukHLnJpADtdg9V8B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.159.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:07:53:c9:83:f8:4f:65:c3:77:dc:c3:7e:24:a2:24:58:db:
7c:f5:ec:65:61:e9:3e:1e:66:9e:43:19:a5:7d:59:24:2f:57:
3b:31:7b:f4:32:71:7a:49:35:4a:84:18:1f:19:6b:7d:14:78:
0f:73:3c:a2:70:ee:ab:ac:a4:e7:5c:06:64:6c:ae:d8:96:0e:
d8:b8:ca:80:70:78:46:68:23:1b:87:39:ae:5d:11:3c:52:78:
64:3f:69:7f:2a:03:d9:54:c1:5a:d0:81:16:fd:df:db:24:e0:
1d:1d:bd:e3:5f:88:20:6e:a9:b1:ca:58:94:41:5b:ae:8b:6c:
0f:2f:c6:42:9f:34:59:1e:f0:00:5c:4f:9b:bf:0c:44:bb:89:
37:4c:3b:b4:be:f1:25:76:e4:1e:35:17:5c:c0:fa:b9:d1:f7:
07:b4:bf:eb:96:e5:c0:e8:f1:bc:7c:62:50:a1:ee:2e:50:a1:
5f:e6:ba:12:92:8b:03:b7:aa:29:29:38:87:da:2c:2e:49:6f:
55:40:12:bc:8a:2f:ba:49:71:de:d2:a6:25:7a:21:a5:20:6b:
a0:07:b2:66:75:8e:f8:e3:7a:13:a8:52:b7:7e:8f:93:d5:27:
7f:ee:ff:e6:51:02:9d:fe:ff:f2:7e:a5:06:6a:b7:21:5b:28:
47:9c:31:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 11:00:17 2024 by rpki-client on console-ams.rpki-client.org