Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/epM8kiC2MLghyMT0wy3UQA5QdrA.roa
File: epM8kiC2MLghyMT0wy3UQA5QdrA.roa (raw, json)
Hash identifier: Od2A+BmB0yTIMwtWHR2XjnQNjJzLhwtq/11fqE2FY80=
Subject key identifier: 7A:93:3C:92:20:B6:30:B8:21:C8:C4:F4:C3:2D:D4:40:0E:50:76:B0
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 01863302D1A72605D0EFE0A26354158C0AF8
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/epM8kiC2MLghyMT0wy3UQA5QdrA.roa
Signing time: Wed 08 Feb 2023 21:51:07 +0000
ROA not before: Wed 08 Feb 2023 21:51:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400529
IP address blocks: 45.148.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 22:21:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:33:02:d1:a7:26:05:d0:ef:e0:a2:63:54:15:8c:0a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Feb 8 21:51:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a933c9220b630b821c8c4f4c32dd4400e5076b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:44:6e:c8:5c:fa:24:87:54:38:25:7b:62:24:
71:5c:f6:ea:5e:c7:9c:36:0f:d6:5f:57:fa:66:65:
e0:7b:25:09:05:d6:90:c2:48:e7:a7:28:8b:30:58:
05:58:a8:af:16:0e:3c:8a:1e:f5:cc:a2:45:ff:f8:
0f:70:48:df:1e:ff:f9:24:6e:3a:2c:ea:ec:80:14:
d1:60:a0:7b:63:c0:4b:60:62:be:d6:c4:b3:8d:80:
41:bc:2a:ed:b1:a5:5b:a7:b2:79:62:67:97:1a:8e:
f1:7d:32:f0:ff:9f:40:b7:21:74:48:7c:8b:a1:8b:
2b:e8:67:b8:32:4b:ad:24:8c:5b:55:0c:2d:0a:bb:
c2:e2:04:d1:05:01:ab:d6:90:1a:d3:5f:66:76:12:
7b:fb:35:f4:a9:c3:69:ed:6c:c6:a9:ab:d2:71:c5:
82:07:71:48:c0:d1:99:e9:e6:b6:9e:a9:67:4d:24:
27:89:b6:46:42:3a:15:45:0a:d1:e0:52:c9:e1:be:
a2:2c:e3:f9:e5:1d:3f:d3:2e:64:34:e3:2f:7e:44:
12:0b:b0:f1:82:30:4a:82:d4:a6:af:e6:b4:94:7c:
9a:f3:5c:0a:ad:af:30:6e:c2:20:29:ec:41:c2:79:
d9:fa:01:dd:af:1e:79:0c:e1:7c:50:7d:e1:1d:ad:
ed:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:93:3C:92:20:B6:30:B8:21:C8:C4:F4:C3:2D:D4:40:0E:50:76:B0
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/epM8kiC2MLghyMT0wy3UQA5QdrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:03:42:b2:0b:78:a5:d7:8e:08:aa:e2:c1:06:ae:01:fe:d8:
4c:a5:b3:6e:1d:a4:25:b2:a1:00:1e:a3:14:0c:0c:94:f9:90:
85:fb:90:c8:ee:2e:fd:16:c1:cb:6b:01:54:3f:09:87:dc:97:
39:b7:21:7e:58:b6:f6:3f:83:96:d0:26:77:1e:99:f9:2c:cb:
82:d9:9c:33:93:de:59:e8:31:47:53:1d:2f:ed:54:cb:58:c3:
3b:5a:fe:30:dd:2b:4f:4b:bb:f7:d0:a9:31:b1:b5:82:2a:f2:
20:bf:35:75:eb:53:79:14:7c:10:f2:35:54:8d:72:6d:47:d5:
1d:bc:d6:27:0f:eb:1b:99:dc:d6:93:e5:17:0b:e4:6e:69:26:
56:28:7c:d2:65:20:0f:0c:e8:f4:6a:53:12:4c:f3:1a:87:f9:
fd:93:9b:54:3b:88:ac:a3:c1:52:5a:4a:86:a2:31:30:bd:2b:
33:39:0a:19:a8:b4:30:16:f0:15:51:df:a2:88:09:90:e7:2a:
79:8a:a9:79:6d:7f:94:a9:69:6f:19:71:d3:fe:97:cd:66:10:
08:37:25:de:b8:b4:0e:fc:1d:eb:fa:69:e3:c0:a1:c1:0d:f8:
ee:15:2a:bb:78:f1:7b:f6:25:0f:32:bf:af:06:52:ed:0f:e1:
23:ab:3a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org