Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/o72rfGAFsGfaIzoenD6iKdZ_cQI.roa
File: o72rfGAFsGfaIzoenD6iKdZ_cQI.roa (raw, json)
Hash identifier: OtRuAZcpYp8vCiNbx++pqICZKFqdC0TWsqO4yOt/VLQ=
Subject key identifier: A3:BD:AB:7C:60:05:B0:67:DA:23:3A:1E:9C:3E:A2:29:D6:7F:71:02
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 01861D9242088D9B1FE5E7AC17BF551A3400
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/o72rfGAFsGfaIzoenD6iKdZ_cQI.roa
Signing time: Sat 04 Feb 2023 17:56:09 +0000
ROA not before: Sat 04 Feb 2023 17:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397270
IP address blocks: 45.148.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 13:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1d:92:42:08:8d:9b:1f:e5:e7:ac:17:bf:55:1a:34:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Feb 4 17:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3bdab7c6005b067da233a1e9c3ea229d67f7102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d9:fa:28:57:eb:d9:ba:9d:7c:9a:ba:01:df:
88:2f:13:df:11:e0:4a:e8:3c:da:e8:6b:0e:07:e5:
77:20:63:b3:8c:e2:ef:34:ae:37:71:bb:af:3d:40:
ac:0d:40:58:9c:0d:51:c7:c7:fe:52:18:51:0f:85:
8c:02:3e:ee:27:9a:36:fc:6e:5e:e4:ed:56:7a:80:
9f:b1:49:e5:60:c6:30:41:3f:18:4b:58:42:1d:3a:
46:bf:45:5a:9a:c7:1d:a2:cb:0f:21:30:5d:53:55:
21:f1:b7:9d:c4:5f:b0:0d:4d:b1:fa:fd:1d:d6:d1:
0a:1d:ce:7e:1e:a4:fe:e2:5e:e0:16:e6:b6:3a:2d:
5f:1c:3d:08:d1:2a:09:7f:3b:dd:5d:17:94:93:56:
17:7b:b0:ca:e3:39:e0:22:3b:4b:16:b4:be:86:83:
7b:9c:e9:c1:5b:69:a3:7c:fc:3f:2a:d7:2c:8a:a5:
06:77:28:b6:5e:01:d4:6b:14:30:ee:9d:ca:a0:08:
c6:0e:e3:88:f3:5a:df:85:e9:55:b5:5d:68:c0:d9:
cf:f3:e0:6c:91:31:8e:25:c1:25:77:5c:79:a9:35:
bf:71:7d:00:c7:fb:a7:9c:f5:05:e7:34:87:24:37:
e2:05:69:c5:ce:a9:5a:95:63:27:0e:c1:83:d9:02:
88:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BD:AB:7C:60:05:B0:67:DA:23:3A:1E:9C:3E:A2:29:D6:7F:71:02
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/o72rfGAFsGfaIzoenD6iKdZ_cQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:e0:7f:ea:df:4c:a7:d0:86:01:50:17:5c:80:d3:1f:cd:95:
b3:3b:d1:b2:da:d1:93:99:98:54:34:80:3e:64:2c:02:93:d0:
14:b9:0e:4d:58:b9:38:81:66:eb:78:bc:c2:8f:6b:e7:52:6e:
03:2e:ae:d7:8d:d7:fe:a7:21:f7:a7:05:1e:e2:4c:71:ba:5c:
17:77:ef:65:22:52:5b:b9:02:ac:d5:5b:f3:1c:c3:ee:82:97:
86:e3:9a:47:95:4a:23:fb:12:ee:cc:19:96:48:ed:1d:91:c5:
73:4c:3d:49:e9:95:87:9c:cd:e2:0d:c2:a7:11:65:a1:cf:44:
5e:ae:c6:dc:16:1d:5a:8d:86:2c:cc:61:72:bc:b1:b8:25:28:
5e:47:15:0b:9e:52:1a:c8:f5:32:4c:bf:de:2e:75:56:66:57:
de:53:99:51:3a:8d:37:5a:a4:e9:a2:17:04:e7:c3:c5:a5:8e:
be:e9:42:a4:dc:5d:5d:34:bf:7a:ae:4f:75:32:ee:71:d7:ff:
48:3c:5a:20:94:72:2a:fc:41:1b:56:0d:5e:a6:26:09:52:6f:
21:ab:20:59:59:fc:9e:e1:d1:4d:84:78:52:0f:0f:2e:41:7a:
4b:e1:7e:c0:28:11:c0:ad:1f:7a:9c:2b:ac:33:31:c6:07:bf:
df:03:41:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:08 2024 by rpki-client on console-ams.rpki-client.org