Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/3NlBBH9RHtqtkPS11HbEwkWpACY.roa
File: 3NlBBH9RHtqtkPS11HbEwkWpACY.roa (raw, json)
Hash identifier: c1PyfPfCBrviwILzoPAepi8BrcyeYMFjKrlsWpDdIYs=
Subject key identifier: DC:D9:41:04:7F:51:1E:DA:AD:90:F4:B5:D4:76:C4:C2:45:A9:00:26
Certificate issuer: /CN=b1cdc26d44eaf85654481e9581043e14887765b4
Certificate serial: 01898C0CA39A0A2D86BEC6E3B433705B6949
Authority key identifier: B1:CD:C2:6D:44:EA:F8:56:54:48:1E:95:81:04:3E:14:88:77:65:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/3NlBBH9RHtqtkPS11HbEwkWpACY.roa
Signing time: Tue 25 Jul 2023 07:56:25 +0000
ROA not before: Tue 25 Jul 2023 07:56:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202329
IP address blocks: 45.140.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:0c:a3:9a:0a:2d:86:be:c6:e3:b4:33:70:5b:69:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1cdc26d44eaf85654481e9581043e14887765b4
Validity
Not Before: Jul 25 07:56:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcd941047f511edaad90f4b5d476c4c245a90026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:04:bc:38:f4:d9:5e:0b:79:e0:7d:61:06:8e:
ee:5c:7c:23:3d:cd:c9:23:08:0b:6b:3f:d7:a0:ed:
c5:35:ad:b9:33:e4:ed:65:a1:7e:97:c9:e6:51:8d:
cf:9f:b0:88:9b:25:f1:df:63:7b:01:f8:72:a6:0b:
ef:c3:c8:98:eb:e3:7f:b3:d2:e9:f0:d7:2e:a7:3d:
05:79:cc:22:aa:7d:ba:7a:82:d5:52:b8:86:76:a5:
e0:f5:ef:24:0d:f3:21:47:0c:69:07:37:b1:9f:72:
b9:7a:ce:ab:74:c2:4e:80:cf:c3:29:75:4f:4c:d0:
35:df:fe:f9:53:5f:ba:71:ea:33:16:ba:87:7d:e1:
6b:88:27:df:01:db:00:d7:98:d3:be:1f:97:b5:11:
22:31:b7:16:fd:d7:28:3a:1d:36:83:17:17:14:9f:
40:a4:96:00:e6:ea:fe:9b:ec:43:8c:78:16:28:07:
16:43:de:4b:09:6e:fc:e9:85:29:53:6c:c5:ff:8a:
9f:85:e8:45:15:dc:4d:5b:df:72:4e:49:e5:72:77:
0d:3f:55:f3:98:52:55:ca:2f:fc:20:e5:5f:22:48:
e9:c1:a8:e2:93:00:f6:6d:61:bb:eb:89:1e:da:6a:
c2:0a:1b:16:80:ed:72:71:cd:63:9f:12:4b:05:00:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D9:41:04:7F:51:1E:DA:AD:90:F4:B5:D4:76:C4:C2:45:A9:00:26
X509v3 Authority Key Identifier:
keyid:B1:CD:C2:6D:44:EA:F8:56:54:48:1E:95:81:04:3E:14:88:77:65:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/3NlBBH9RHtqtkPS11HbEwkWpACY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.183.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:10:64:59:4a:85:ea:a3:2f:76:81:81:26:db:4a:95:4a:c8:
ad:06:30:bf:de:66:4a:a5:8a:5e:39:b7:cd:4f:5e:13:ac:a9:
d3:e1:21:d7:e5:68:fa:1c:2f:31:77:6a:fd:4a:36:11:29:b3:
13:39:63:d5:07:dd:b4:46:28:05:40:63:0d:04:e2:e1:2c:66:
04:55:70:1b:3f:03:d9:cf:3a:a2:99:d1:36:70:00:62:02:4e:
1a:6e:36:67:70:c7:1c:aa:7f:3c:1b:75:2e:d0:e6:58:12:d5:
e9:ef:4d:ed:e2:d9:e4:3a:c1:a2:92:51:6a:38:00:e5:49:c4:
d6:70:fe:f1:ce:36:7c:4f:09:16:12:69:fb:dc:da:0f:de:7e:
90:e9:df:a1:8d:0d:34:0f:25:21:20:00:14:1d:0f:7c:fa:38:
9a:50:f2:a8:fd:46:8c:ef:37:85:27:69:8d:46:5c:34:27:d8:
f9:d3:32:af:0e:01:88:32:9d:8c:25:1b:a6:d8:fd:48:03:08:
ba:71:e8:70:e8:7b:f2:06:b1:cb:c8:79:f4:85:40:49:63:84:
36:65:bf:ee:f0:29:38:3f:5a:da:03:38:19:d1:8e:b4:be:fc:
d8:33:bc:d7:bc:50:f4:ca:52:9e:5a:92:6d:47:aa:3b:1a:86:
30:6f:e5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:22 2024 by rpki-client on console-ams.rpki-client.org