Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/V4A3X18bpscayCC7P1nG09cKy_4.roa
File: V4A3X18bpscayCC7P1nG09cKy_4.roa (raw, json)
Hash identifier: SWuKdHcZA5LjPP7TRuWGIpZDZUCBAyVQdLn/l+wmpWI=
Subject key identifier: 57:80:37:5F:5F:1B:A6:C7:1A:C8:20:BB:3F:59:C6:D3:D7:0A:CB:FE
Certificate issuer: /CN=525915b4c72407afb7941e5be294ac7133b107b3
Certificate serial: 01856FE713C2BABB29953CD679FBB54FB281
Authority key identifier: 52:59:15:B4:C7:24:07:AF:B7:94:1E:5B:E2:94:AC:71:33:B1:07:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlkVtMckB6-3lB5b4pSscTOxB7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/V4A3X18bpscayCC7P1nG09cKy_4.roa
Signing time: Mon 02 Jan 2023 00:34:52 +0000
ROA not before: Mon 02 Jan 2023 00:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44683
IP address blocks: 45.152.244.0/22 maxlen: 22
2a0f:6d00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:13:c2:ba:bb:29:95:3c:d6:79:fb:b5:4f:b2:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525915b4c72407afb7941e5be294ac7133b107b3
Validity
Not Before: Jan 2 00:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5780375f5f1ba6c71ac820bb3f59c6d3d70acbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3e:9f:13:68:89:ac:60:4f:2c:48:0c:04:21:
62:5b:f7:2a:23:fc:94:9f:64:0f:da:be:12:40:b1:
87:ab:a4:c7:66:bb:33:51:ad:ad:74:f6:f5:03:5e:
63:dc:32:7f:c7:77:4e:98:97:f5:85:51:78:19:55:
a2:e6:17:03:a9:21:1e:e1:00:2d:64:18:c9:e8:69:
ab:63:11:c8:48:f3:bb:d8:ea:53:7c:8c:7d:39:48:
b6:2f:a6:64:04:c5:7a:70:a5:0e:ff:7d:1e:41:dd:
e9:da:d6:a8:6f:c1:18:f3:c4:8c:bf:ad:e2:f2:bd:
69:a9:ef:1a:71:1d:06:cc:21:03:a2:fb:ee:a9:9e:
66:80:34:4d:ae:64:26:dc:bd:03:20:a5:7e:0e:63:
50:3a:fa:ec:1d:99:f7:ac:f5:0c:25:d9:3a:4b:79:
8a:08:e5:40:08:6d:8b:37:09:35:78:f0:5a:ba:ec:
26:a7:20:76:01:e8:29:e7:70:e6:13:ed:11:a0:5e:
2b:49:59:2b:4a:17:e9:76:ef:9c:32:6b:65:4f:6b:
8e:43:36:50:a3:d2:db:be:a3:d4:dd:55:5d:0c:32:
b2:b0:73:19:2b:c8:58:8c:45:94:e1:34:db:36:00:
4c:64:48:ba:35:f2:23:fc:2c:87:30:22:f0:a2:f8:
27:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:80:37:5F:5F:1B:A6:C7:1A:C8:20:BB:3F:59:C6:D3:D7:0A:CB:FE
X509v3 Authority Key Identifier:
keyid:52:59:15:B4:C7:24:07:AF:B7:94:1E:5B:E2:94:AC:71:33:B1:07:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlkVtMckB6-3lB5b4pSscTOxB7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/V4A3X18bpscayCC7P1nG09cKy_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/UlkVtMckB6-3lB5b4pSscTOxB7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.244.0/22
IPv6:
2a0f:6d00::/29
Signature Algorithm: sha256WithRSAEncryption
11:c6:1e:e6:ed:e0:77:df:3b:32:e2:19:ef:dc:15:20:5f:b5:
6a:c1:ea:d7:9c:06:01:a0:d2:c5:62:5f:4c:5f:98:4d:18:f4:
7f:55:36:ba:50:23:5e:29:ca:da:92:88:d7:9d:8a:1e:af:d0:
ac:65:86:ed:b9:8a:aa:de:8f:2c:b6:38:92:a4:37:49:fe:5b:
1e:ee:c8:3f:af:e7:05:6e:71:c8:10:3a:5b:74:71:af:ec:f8:
fc:17:09:82:9f:24:68:88:41:2d:9c:5a:3d:a3:c3:cc:39:de:
85:58:e8:0c:dd:0e:19:7f:e9:80:31:72:c7:e8:38:8f:da:31:
9a:32:aa:f5:4f:04:a7:2e:83:ec:3f:81:6e:52:02:81:ea:4a:
04:0d:b9:e4:5c:4b:ca:3e:7d:60:f1:e5:75:4a:71:7a:85:7b:
b1:c2:c1:2a:e9:5b:99:d3:af:9e:f6:20:6f:9a:4f:5f:50:25:
52:bd:e1:94:b5:6d:f9:fe:68:bc:fb:ca:fc:f2:0f:c0:b1:99:
4c:d4:6b:71:c4:89:e9:a9:d3:f4:59:6a:8f:d8:f8:91:fb:5d:
c7:fa:f7:55:6e:1d:af:42:09:fe:21:3a:b8:4d:19:60:6a:13:
49:ae:fb:06:ba:2a:20:4d:01:46:4b:de:b9:9b:b0:b9:67:bd:
95:1e:8e:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:48 2024 by rpki-client on console-fra.rpki-client.org