Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/lqSuVsFunfwWkZfPtcFbYtyjZFI.roa
File: lqSuVsFunfwWkZfPtcFbYtyjZFI.roa (raw, json)
Hash identifier: 8n7Jb/VgpMKVDXKedpOFJo4pfHYb+sVZIRWab7ASSGo=
Subject key identifier: 96:A4:AE:56:C1:6E:9D:FC:16:91:97:CF:B5:C1:5B:62:DC:A3:64:52
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018F7AF10074C21E405F8384528787CFA311
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/lqSuVsFunfwWkZfPtcFbYtyjZFI.roa
Signing time: Wed 15 May 2024 06:29:25 +0000
ROA not before: Wed 15 May 2024 06:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.133.104.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 06:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7a:f1:00:74:c2:1e:40:5f:83:84:52:87:87:cf:a3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: May 15 06:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96a4ae56c16e9dfc169197cfb5c15b62dca36452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e0:60:cf:3b:8a:49:54:1f:df:44:62:fb:67:
54:db:b2:f7:7d:30:a3:6b:ad:16:d1:17:f6:79:a5:
6c:1d:6f:9b:34:df:38:5e:1e:4f:5a:a9:10:c0:e8:
b1:43:ff:02:f6:fc:d3:fa:91:5f:50:c9:a6:19:6a:
0a:2e:b5:9c:42:ea:ef:d3:23:9c:10:aa:4b:66:36:
a6:6f:80:e0:08:5f:2e:49:9a:f2:80:b7:e5:e4:a7:
34:85:f2:1b:7f:ee:23:01:a5:37:f2:c6:06:a2:72:
3a:ba:b2:83:43:46:78:be:66:d7:d4:08:f8:47:ec:
e6:a3:51:79:93:70:f9:6f:73:7d:a2:37:85:63:cf:
44:cc:28:4e:89:47:0a:44:7e:23:68:0b:bd:74:fa:
6c:17:ca:0e:4d:23:b3:d6:da:7d:39:c4:7f:79:ae:
84:55:7f:5b:b5:94:60:57:cb:4c:d1:91:e6:cf:2c:
9b:ca:e0:b0:8b:47:1e:96:2a:57:e5:fb:7a:f6:0d:
c1:7f:98:ab:31:a1:2e:61:ec:20:17:bc:eb:18:6c:
ca:80:3a:c7:b8:d9:41:c9:2b:3d:94:c6:66:e1:d6:
8a:1a:e7:2c:6d:36:b2:b2:f0:b9:84:c5:46:bd:8e:
52:16:28:d0:9a:7d:02:cd:bb:31:f9:ac:ce:ff:11:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A4:AE:56:C1:6E:9D:FC:16:91:97:CF:B5:C1:5B:62:DC:A3:64:52
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/lqSuVsFunfwWkZfPtcFbYtyjZFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.104.0/23
Signature Algorithm: sha256WithRSAEncryption
11:1d:31:6a:89:b1:c7:8c:0e:2a:5d:0d:4a:d9:99:45:cf:d4:
ff:0e:45:4d:aa:d4:db:05:13:58:db:0c:4c:bc:11:6e:06:54:
5a:4d:5f:12:14:8e:c9:5c:a8:d2:8c:8c:15:f6:b4:f3:ff:82:
11:62:2a:15:f6:ea:68:89:8a:78:23:b7:74:4a:2c:33:36:ed:
65:9f:0f:e4:fc:b9:50:48:8e:3c:7d:25:82:07:1f:08:b9:d5:
c6:4f:10:8d:41:d9:a1:66:66:15:ae:7e:fd:0c:64:f7:13:54:
0e:71:5f:c5:e0:92:a8:c5:30:0c:6e:fd:0c:30:9f:09:3f:00:
c0:bb:cd:ff:f1:43:a5:0c:1d:54:5e:63:b8:30:7c:13:16:5a:
f6:c0:93:96:52:ca:3f:f0:aa:bc:91:82:31:4d:2d:79:b8:8e:
ce:0a:69:dc:dc:fe:30:22:9e:69:d9:89:cd:d5:7c:40:58:b0:
12:fe:da:0b:2b:36:53:70:35:2e:61:5e:9e:48:d5:bc:a5:a6:
84:0f:37:36:34:a2:26:af:29:27:0b:fb:cc:a4:1d:47:26:46:
24:1b:c9:56:0f:98:7c:ec:2f:85:af:8d:50:54:76:d7:cb:39:
4e:b0:d6:19:8c:1d:68:d2:18:0d:65:40:96:f9:b0:d9:9c:3b:
b7:d3:26:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 22:13:51 2024 by rpki-client on console.sobornost.net