Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/cEGn8_eMAuH6qyBV35E3UhcSlJA.roa
File: cEGn8_eMAuH6qyBV35E3UhcSlJA.roa (raw, json)
Hash identifier: /37SN3lIAalFxpE1cnBTLT5MW5+kKalbKO+9Fk+Or04=
Subject key identifier: 70:41:A7:F3:F7:8C:02:E1:FA:AB:20:55:DF:91:37:52:17:12:94:90
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 0187F2E76B8D4810BA0044674E5217E80CFB
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/cEGn8_eMAuH6qyBV35E3UhcSlJA.roa
Signing time: Sat 06 May 2023 21:11:05 +0000
ROA not before: Sat 06 May 2023 21:11:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140155
IP address blocks: 45.148.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 21:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f2:e7:6b:8d:48:10:ba:00:44:67:4e:52:17:e8:0c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: May 6 21:11:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7041a7f3f78c02e1faab2055df91375217129490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4c:50:ec:49:f5:d9:40:f1:58:1c:02:04:29:
c4:36:45:94:d5:69:76:ae:71:e8:86:9e:97:65:7b:
31:b9:c3:e4:18:10:70:eb:d5:1c:04:82:4b:39:8c:
e7:5b:45:4a:94:71:4d:34:62:0e:4b:44:72:5d:2f:
87:5f:ad:80:b3:c1:15:90:a6:23:92:ab:3c:86:37:
54:7d:cf:39:d1:e0:d7:2e:4d:a7:2f:10:f1:9a:de:
70:22:98:2f:b2:5d:1a:3c:57:e6:46:6c:80:cd:37:
31:bf:46:2e:02:6e:b7:e6:fe:22:1e:86:24:d3:e8:
de:60:e1:15:5e:67:d8:5a:b7:ee:58:64:6b:d7:58:
33:98:c0:0d:44:d3:50:b9:70:83:70:1c:15:11:d4:
b2:75:5a:68:3b:43:4c:f7:a3:31:a4:2d:a2:36:64:
42:6c:8e:23:09:a0:67:c4:6f:62:b0:10:74:af:ac:
2f:24:21:c2:77:b0:b4:e2:be:90:6c:e2:fe:33:54:
97:a6:6e:55:18:93:52:f6:b4:1d:3a:67:f6:6e:3b:
fa:c6:e0:3d:0e:11:d7:b1:f1:3f:d8:bc:d3:00:b9:
ad:8b:e7:d1:95:ed:13:27:2d:fc:41:26:fc:17:23:
3b:1f:b9:52:74:1a:38:f0:51:4e:da:b6:ae:e5:bf:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:41:A7:F3:F7:8C:02:E1:FA:AB:20:55:DF:91:37:52:17:12:94:90
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/cEGn8_eMAuH6qyBV35E3UhcSlJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/24
Signature Algorithm: sha256WithRSAEncryption
58:fc:79:36:15:ab:75:ac:63:2d:c6:30:ff:62:c6:ab:00:55:
6e:da:42:4b:de:05:39:53:4c:3e:13:f4:03:f2:5d:04:0d:5f:
ad:96:02:e8:02:c5:90:10:20:4b:dc:88:55:21:9d:d6:1e:e0:
32:59:2c:4f:77:22:ec:63:e9:77:d9:34:0a:b7:56:d4:a0:eb:
6b:b1:c2:ac:f9:42:43:c2:9d:56:be:59:29:12:dd:94:a2:c5:
af:ff:c2:8b:ae:f9:87:e5:bf:08:02:d5:c8:ca:0a:8d:de:10:
e2:7f:df:e5:47:29:a3:c1:ce:11:3f:ea:d1:cb:7a:35:99:15:
4f:d2:89:a8:05:a6:80:64:49:b2:90:06:63:0f:55:16:b6:1a:
86:82:f0:63:95:1b:51:eb:af:ed:ec:3d:e0:30:d0:ef:27:d8:
1c:ef:9a:a2:54:53:56:cd:24:f1:27:7a:d8:a0:39:62:1b:e2:
80:e6:35:e8:27:33:62:db:b6:70:c4:13:fd:28:70:84:40:af:
09:60:ac:c4:25:05:38:ca:97:ee:e1:88:e8:79:fa:f8:fb:4f:
dd:90:c4:56:2f:15:74:d7:c2:c3:07:71:b7:26:c3:9d:45:8a:
e0:7c:82:b4:3e:d0:ea:db:34:5a:0d:d3:f1:07:99:95:08:9e:
00:1b:a3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:08 2024 by rpki-client on console-ams.rpki-client.org