Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/7B5uX6UD3nuIdFbIRBNyHi6vCmA.roa
File: 7B5uX6UD3nuIdFbIRBNyHi6vCmA.roa (raw, json)
Hash identifier: rxnkPG6gsXJuMIBZDP1hnrnCSTsJMvqRA4kYq+d596A=
Subject key identifier: EC:1E:6E:5F:A5:03:DE:7B:88:74:56:C8:44:13:72:1E:2E:AF:0A:60
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018FAA187CA0AE02BF8262863D72B65E5209
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/7B5uX6UD3nuIdFbIRBNyHi6vCmA.roa
Signing time: Fri 24 May 2024 10:14:42 +0000
ROA not before: Fri 24 May 2024 10:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.138.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 10:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:18:7c:a0:ae:02:bf:82:62:86:3d:72:b6:5e:52:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 24 10:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec1e6e5fa503de7b887456c84413721e2eaf0a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:46:d2:a1:07:dc:19:ef:8e:e6:ce:c4:8e:c2:
7b:5d:37:10:ef:6b:e5:8a:96:c6:ca:08:73:45:de:
f5:64:f4:4b:77:8b:dc:18:a5:cb:79:1a:4e:0f:4c:
1a:52:06:17:e0:9e:6c:d2:13:86:78:58:5c:90:61:
02:47:79:68:b3:1a:b7:af:27:60:77:58:53:d4:c5:
b1:b5:7b:59:8b:1b:e9:cb:fb:35:64:d7:00:e3:49:
a2:12:90:0c:50:b8:df:f2:82:45:75:3b:29:78:7d:
bb:26:90:29:21:e8:b2:6f:35:6c:76:5d:e2:47:ba:
3d:d9:84:7e:1f:c6:2f:5b:a8:a3:1e:07:d9:86:62:
66:e2:83:76:87:5f:55:34:19:60:35:49:c3:8f:c8:
a5:b0:ca:9c:f5:d3:bb:5c:9e:f9:41:3b:bd:fe:8d:
88:53:92:ce:bf:6d:e5:3c:4d:5a:53:1c:68:c4:18:
cc:fd:64:16:0e:a4:c9:f3:31:f6:67:2d:c7:d7:39:
dc:2b:88:04:b8:3a:70:fd:bb:ff:73:f7:c9:c7:44:
34:49:dd:dd:26:cc:69:ea:dd:61:14:ed:d6:36:ed:
bd:7e:1f:b0:c2:d2:45:6d:41:3f:b6:10:c1:97:20:
40:cf:7d:57:a4:06:73:51:fa:3c:f8:f7:16:8a:c7:
b2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1E:6E:5F:A5:03:DE:7B:88:74:56:C8:44:13:72:1E:2E:AF:0A:60
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/7B5uX6UD3nuIdFbIRBNyHi6vCmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.180.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:d8:ea:05:cf:24:cc:26:ea:ce:d3:f4:8a:e6:3f:2a:ea:03:
3a:f0:f1:de:cf:23:3c:48:b3:f4:0d:f1:b5:dd:08:e4:72:bb:
bc:4a:68:3c:58:b4:f3:04:0c:e2:f0:18:e8:fb:fa:9d:64:ee:
09:01:cc:ce:9f:88:9e:20:d0:f9:90:a0:88:03:fc:32:9f:e7:
20:8e:7e:7c:bb:14:e7:41:4e:a6:fe:a8:03:eb:bf:cc:28:a3:
47:0c:ad:0e:0c:8f:d4:7a:b6:a6:0b:94:70:0a:3c:2c:05:b6:
75:62:99:3d:a4:75:92:d6:fb:51:47:40:be:f8:8a:6f:06:fb:
07:98:fd:10:39:67:18:bb:bb:31:63:a0:52:9a:47:0f:a0:29:
aa:4a:77:c4:cb:ed:48:b3:5d:91:82:53:6d:db:c1:b4:f9:28:
7c:b1:59:f9:b1:dc:fd:c6:d9:62:2a:38:1d:e1:71:9c:a3:9f:
4c:2b:12:d9:c4:6d:c3:de:86:e2:0b:58:c9:5f:7f:f4:a5:7e:
6a:94:51:64:52:0d:1c:ce:24:3b:ac:ee:fd:ed:26:cf:36:30:
0b:2f:4c:b1:29:94:f3:2c:d0:db:38:ab:6d:7e:ec:78:61:a2:
7a:6e:78:9c:19:90:b5:7b:9b:73:25:0c:5a:0a:7c:7e:f5:6f:
ab:56:33:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org