Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/WChoWNqBSSOF6KcKXJpClH6fiuI.roa
File: WChoWNqBSSOF6KcKXJpClH6fiuI.roa (raw, json)
Hash identifier: QSeWZUNdk9zia1WAHdhGz00uX6DvzAgwKyNtXPJzz/o=
Subject key identifier: 58:28:68:58:DA:81:49:23:85:E8:A7:0A:5C:9A:42:94:7E:9F:8A:E2
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 01892010A082FEBB2A71E63BC528A977B1AD
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/WChoWNqBSSOF6KcKXJpClH6fiuI.roa
Signing time: Tue 04 Jul 2023 08:41:47 +0000
ROA not before: Tue 04 Jul 2023 08:41:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.95.224.0/24 maxlen: 24
45.95.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 14:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:10:a0:82:fe:bb:2a:71:e6:3b:c5:28:a9:77:b1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jul 4 08:41:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58286858da81492385e8a70a5c9a42947e9f8ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:82:bf:0b:2d:4f:00:81:3e:7c:c9:2a:bb:
03:1f:12:51:e4:c9:d7:ea:9d:97:f7:29:2c:2a:6e:
7e:d9:88:68:af:f1:3c:7d:49:46:dc:2b:24:0a:a2:
ef:85:27:80:54:f8:41:99:29:82:51:d4:8f:f4:56:
c2:63:f2:c5:ce:75:61:6e:bf:32:85:8f:42:37:44:
ce:42:ec:46:e1:6d:4d:b6:57:d7:bd:c0:9b:fc:45:
b4:6c:c6:94:9b:9e:94:b9:26:f1:38:c6:b8:f7:b8:
a0:ca:90:c5:5b:b6:0d:ae:53:57:4d:1e:33:45:e6:
3d:0e:f5:57:56:5f:9c:df:83:b5:31:fa:1b:dc:de:
bf:9f:04:e5:53:63:5a:32:2b:43:ef:10:bb:58:b0:
1b:ce:3b:bd:87:7c:e1:6c:b0:69:e8:e1:c4:2a:2d:
03:43:38:64:6d:3d:71:4d:2e:44:16:4c:c7:71:c4:
ce:b1:96:40:d4:9a:ae:ba:15:47:cd:5c:30:76:d7:
c7:50:e7:55:78:e5:4d:60:94:85:56:96:f6:37:1d:
3c:db:c6:ab:d3:19:61:ad:0a:72:83:fa:4d:4f:35:
81:74:76:22:38:53:18:83:29:c9:73:eb:53:3e:bf:
9b:a5:fd:ba:41:a2:bc:94:29:86:cf:1a:b1:ac:17:
55:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:28:68:58:DA:81:49:23:85:E8:A7:0A:5C:9A:42:94:7E:9F:8A:E2
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/WChoWNqBSSOF6KcKXJpClH6fiuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0/24
45.95.226.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b7:86:54:4a:24:36:f4:3f:63:a1:d8:a5:7c:5d:40:75:76:
f1:59:ff:bc:e4:5b:a6:68:0d:21:8f:bb:c7:c9:31:fb:cd:a6:
15:02:bf:76:58:47:48:23:32:70:c1:e1:20:75:3d:06:d8:7a:
75:30:de:e6:8b:62:50:51:52:bc:f3:91:8f:07:72:bd:e7:bc:
c9:bf:17:b1:24:f6:aa:ca:56:87:b6:00:0a:22:cf:5c:e5:fc:
4d:4d:3f:24:e2:01:27:e7:dd:cf:4a:fa:3d:ff:e5:af:aa:1f:
11:12:e1:ed:c2:c8:1c:33:26:a9:5e:f9:02:5f:d9:d8:f9:7e:
b0:05:39:d8:bc:99:f4:87:ac:1d:6b:28:4f:de:ef:07:ff:f2:
d3:66:47:9a:f8:8e:15:44:9c:f0:5f:8c:f2:85:04:5d:12:15:
bd:2f:4e:3f:32:f6:7c:f5:be:a8:a8:44:09:80:35:a8:1a:45:
69:9e:4a:87:92:e3:2a:af:ec:60:75:01:4c:c9:e1:c9:3a:46:
c8:ac:0e:d4:e7:f7:9a:ca:c0:38:35:dc:38:24:60:a1:d9:e9:
e8:10:12:9d:bb:93:b6:9b:73:7b:41:fc:75:82:2b:66:dd:f4:
5d:55:fa:df:03:78:ec:e7:9b:a4:dd:64:4f:74:6a:7d:73:76:
d5:60:0f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org