Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/WqWeI9bziIMMP4lllvimGSlMVA4.roa
File: WqWeI9bziIMMP4lllvimGSlMVA4.roa (raw, json)
Hash identifier: DCk26iGp4nQGaUmJUQOwft7OM7u/HZOVrkpnVJiIBAQ=
Subject key identifier: 5A:A5:9E:23:D6:F3:88:83:0C:3F:89:65:96:F8:A6:19:29:4C:54:0E
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 018CA21F6F93EE20C82564B6730EC973DADE
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/WqWeI9bziIMMP4lllvimGSlMVA4.roa
Signing time: Mon 25 Dec 2023 17:56:58 +0000
ROA not before: Mon 25 Dec 2023 17:56:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.155.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a2:1f:6f:93:ee:20:c8:25:64:b6:73:0e:c9:73:da:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Dec 25 17:56:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5aa59e23d6f388830c3f896596f8a619294c540e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3d:ba:ba:39:45:47:bc:96:e5:b0:a2:21:2e:
77:f7:d7:ff:70:86:e4:a1:00:38:0b:ff:49:34:a6:
ba:07:be:83:ce:c4:7b:22:0e:1e:c1:bc:13:51:84:
85:33:fb:b5:84:b7:64:be:d3:52:2b:2e:9d:74:cf:
dd:f8:6b:a4:f4:28:12:88:6b:6f:5e:a5:26:19:04:
56:f3:a9:26:36:15:43:d2:9f:8c:ab:15:bc:bd:75:
e2:26:47:c9:66:11:b7:4c:f9:3b:79:8a:4a:53:f4:
f1:e6:ae:6a:4d:2b:69:05:72:35:17:d0:7b:f7:3f:
4a:54:18:16:b2:ab:f1:bc:ab:50:4f:4b:dc:d9:ea:
b0:57:35:0b:6c:ca:64:6b:bf:e9:bf:49:75:23:a9:
d4:06:b9:f7:69:ac:43:74:67:e7:21:74:de:54:04:
ff:64:e1:26:d8:ea:be:fb:d9:7c:b6:c8:f1:8e:15:
ff:7e:61:79:70:df:81:53:06:e3:d7:d1:19:2b:94:
82:26:77:b7:9c:71:ba:af:0d:29:35:ca:08:3e:c0:
6a:0e:88:ec:4a:ce:6a:e0:7d:00:f7:1b:ff:6b:af:
69:b5:6e:8e:24:89:a5:8d:e5:40:2a:4a:40:a1:d0:
e0:3c:c9:c2:92:c1:a6:0c:bb:48:01:26:70:7f:ae:
04:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A5:9E:23:D6:F3:88:83:0C:3F:89:65:96:F8:A6:19:29:4C:54:0E
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/WqWeI9bziIMMP4lllvimGSlMVA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.243.0/24
Signature Algorithm: sha256WithRSAEncryption
22:c1:b3:52:d3:45:38:c6:e3:49:a2:22:f9:14:f5:fa:73:46:
8c:13:ce:b1:f7:ba:e6:26:da:ee:93:c7:fb:17:85:5c:1b:90:
f5:98:94:bc:de:97:9d:3a:82:48:2f:34:1a:4f:24:40:18:97:
fa:f7:f3:75:17:2f:66:58:8e:2b:66:0b:cf:e7:59:22:9c:50:
10:74:72:4c:8c:2d:49:96:97:b7:16:30:75:e1:19:29:e6:b2:
86:ca:de:f5:25:33:7a:38:63:34:9b:cf:fe:1e:70:d4:94:05:
a4:bd:63:5e:15:ae:bd:1f:af:dc:5f:0a:58:a6:c7:e2:fe:bf:
c2:b3:ae:a9:22:d3:93:48:cd:53:1a:80:1a:f0:6b:a7:ab:27:
b6:56:61:bd:e8:33:5d:bf:25:a1:fb:79:6b:8a:b2:31:e8:56:
af:f8:66:78:f5:42:5a:34:d8:d5:18:a8:0c:80:4b:39:3d:26:
8f:83:99:9b:27:bb:07:d3:78:8e:48:52:5d:b6:09:b3:fd:df:
8a:ff:d0:f9:50:89:f4:93:8e:1b:c9:99:d9:8c:b4:e3:8b:fc:
ae:4a:6f:12:3f:89:f7:cc:6f:56:4e:ba:2a:6a:ab:bd:82:af:
35:3d:b0:89:7b:0d:f0:c7:3a:60:a0:f7:fc:c2:5c:aa:51:44:
c8:48:be:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:40 2024 by rpki-client on console-ams.rpki-client.org