Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/bbdYSRMa7hyjnxeHOwT8Gk6IWaI.roa
File: bbdYSRMa7hyjnxeHOwT8Gk6IWaI.roa (raw, json)
Hash identifier: ziwFV4Znx+fN42fNlUf2nRv18J5fcIOZqX6kdUl+aik=
Subject key identifier: 6D:B7:58:49:13:1A:EE:1C:A3:9F:17:87:3B:04:FC:1A:4E:88:59:A2
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 0188FEB4B7CBBFC63A889D204DCCFB861F38
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/bbdYSRMa7hyjnxeHOwT8Gk6IWaI.roa
Signing time: Tue 27 Jun 2023 21:13:56 +0000
ROA not before: Tue 27 Jun 2023 21:13:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.148.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 21:47:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fe:b4:b7:cb:bf:c6:3a:88:9d:20:4d:cc:fb:86:1f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Jun 27 21:13:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6db75849131aee1ca39f17873b04fc1a4e8859a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5f:45:51:80:4f:94:32:ab:b9:7b:4d:c5:69:
d2:71:08:e8:c3:45:c4:fb:0a:9f:61:13:0f:cf:11:
2c:46:6f:75:d9:d3:c4:a5:81:50:6e:ee:aa:33:ee:
30:97:3e:e1:dc:26:b9:e8:85:3b:d3:66:7f:f1:ba:
02:78:08:c5:81:fe:6b:44:e1:a2:21:59:eb:5b:6c:
d4:11:8a:64:a6:1b:57:f1:e7:10:53:46:b1:51:c2:
d4:34:c8:75:83:2b:b3:6a:05:57:67:e7:dc:36:77:
62:f0:33:c7:e0:34:80:27:c4:07:e8:c2:41:9d:f8:
ab:b6:03:e0:f1:e1:2f:43:f1:c9:c3:33:94:ed:10:
33:a3:b6:da:05:40:bc:2b:ed:03:5d:13:2b:1f:c7:
2c:05:13:63:c5:5a:9d:79:76:40:ed:0c:42:33:1e:
49:51:a1:d4:45:f3:6e:22:cd:1a:65:83:55:43:40:
8f:cb:9b:f6:25:85:30:9e:56:ef:71:0a:84:43:d6:
63:68:24:d0:00:df:85:bb:a6:cc:31:aa:b6:06:3d:
70:78:2e:49:da:07:58:6d:63:5b:62:49:1e:9f:93:
fc:0a:e0:3e:74:57:46:f1:32:9b:30:90:7d:44:1c:
ad:5c:eb:59:ba:db:ab:14:75:73:de:17:d2:44:6d:
7a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B7:58:49:13:1A:EE:1C:A3:9F:17:87:3B:04:FC:1A:4E:88:59:A2
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/bbdYSRMa7hyjnxeHOwT8Gk6IWaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:cd:d0:c6:55:26:40:e3:33:74:45:79:e6:4d:d5:68:50:91:
37:a8:d4:56:17:a3:26:97:41:b8:5c:a2:9b:6e:92:bb:1e:30:
48:15:b2:e7:25:10:96:59:d7:8e:96:81:30:91:fe:2c:af:f0:
6d:c5:f6:a8:3f:d1:1a:cd:8a:ca:ab:06:9b:06:88:c9:f1:fd:
5c:e3:fa:9b:cb:f6:eb:32:de:ff:c5:92:b0:30:91:5c:79:13:
e5:1d:76:2f:4f:0b:7a:0c:6f:dc:7e:ae:fa:ad:db:d6:66:c9:
50:e7:ac:d9:d8:18:ec:96:d2:38:4a:4e:58:07:e9:f6:19:6f:
3d:96:1e:03:a0:99:ca:dc:e0:e8:32:c7:93:45:1b:d6:ec:bb:
0b:58:dd:3c:8e:21:30:5f:a0:06:a0:f9:13:f7:6d:7f:d9:31:
47:63:3b:e6:61:78:69:bd:66:f3:01:7c:4b:df:b4:f9:5c:a1:
81:cc:52:2f:ea:57:97:cc:ef:91:65:1e:94:e6:92:49:23:08:
8d:db:90:e8:85:f7:b7:e6:66:d5:dc:91:8e:6a:8a:59:e8:c2:
82:56:be:57:4c:82:83:95:76:ea:21:5d:69:91:70:83:4b:e8:
a9:2a:fa:85:61:8c:56:f1:62:0b:6a:20:36:87:d9:9f:2e:ef:
ed:f6:4b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:08 2024 by rpki-client on console-ams.rpki-client.org