Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gtTDGLN0Fz4n2uWpfWQkUpNSgmg.roa
File: gtTDGLN0Fz4n2uWpfWQkUpNSgmg.roa (raw, json)
Hash identifier: QqSHnb5j1hoqim1Bgcz5HMxwsfVPelbSB1aG44CxLb0=
Subject key identifier: 82:D4:C3:18:B3:74:17:3E:27:DA:E5:A9:7D:64:24:52:93:52:82:68
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01897FD621046865E481427BDE1B397B713B
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gtTDGLN0Fz4n2uWpfWQkUpNSgmg.roa
Signing time: Sat 22 Jul 2023 23:01:26 +0000
ROA not before: Sat 22 Jul 2023 23:01:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198154
IP address blocks: 45.146.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 06:24:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7f:d6:21:04:68:65:e4:81:42:7b:de:1b:39:7b:71:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 22 23:01:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82d4c318b374173e27dae5a97d64245293528268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:c8:1c:8c:40:19:e6:9f:36:41:76:8a:b6:
b5:3c:ee:4e:86:aa:3b:4b:2a:bf:2a:f5:5a:b6:89:
06:0e:76:62:6b:d4:58:b9:74:cf:ec:6a:5e:ca:41:
98:fa:c9:b2:f6:e7:15:5a:1a:58:cb:6a:c4:d9:c7:
5e:33:9e:00:dc:d5:b4:05:db:5c:97:7b:01:f2:37:
bf:1d:65:80:20:c6:bb:49:17:33:3b:b8:c1:f8:dd:
aa:d4:69:b1:5f:27:04:87:2b:07:f0:63:85:da:d9:
52:be:32:9f:58:5a:07:32:3f:74:82:2a:e5:6d:c6:
e6:9d:48:97:9f:b6:66:fb:3e:d2:94:81:2e:37:fe:
f5:55:03:75:ab:7c:5b:d1:92:3b:44:9d:b4:61:08:
aa:10:e1:12:b7:86:1b:b8:b2:8b:69:84:9f:26:16:
b0:d8:44:1a:54:0d:05:08:c3:47:fd:db:30:80:e9:
df:0c:1b:37:68:79:2c:a0:dd:0d:7b:69:fb:a1:e8:
67:67:ff:07:37:de:67:20:03:82:56:cb:ef:62:3c:
60:e9:29:63:43:6b:5a:e7:8d:e4:08:58:9e:ac:91:
4b:e1:87:e0:8f:50:46:ee:ef:d3:48:61:d2:1d:c9:
48:19:27:11:b4:5a:ba:7d:75:05:4c:db:4c:47:4f:
8b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D4:C3:18:B3:74:17:3E:27:DA:E5:A9:7D:64:24:52:93:52:82:68
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gtTDGLN0Fz4n2uWpfWQkUpNSgmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.241.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:eb:c7:08:e4:eb:6b:84:38:92:d7:c3:01:12:b0:3f:14:be:
df:6d:8f:67:60:e6:fd:42:b6:d0:1a:f0:1f:f3:c0:a1:37:c5:
16:41:ff:92:21:5b:2a:46:33:0a:22:99:52:b3:a8:96:f0:1d:
7d:68:7a:9c:d8:02:71:de:dc:bf:74:0a:93:c1:19:a6:2e:1f:
2b:98:2f:03:31:92:bf:ff:70:cd:3e:47:f7:bc:28:bf:ee:e9:
44:4c:2a:b6:44:fb:aa:4e:e8:55:de:9e:8e:87:d2:04:5a:d8:
fd:1c:88:9c:eb:0c:cb:31:aa:eb:db:6d:57:0c:59:b0:73:be:
93:a0:32:65:a5:b5:fa:ff:e4:4c:16:53:80:28:cd:79:94:60:
24:f5:2c:17:f9:8e:94:7e:bb:b6:27:03:78:60:a9:5c:a8:51:
fa:7b:1c:6a:c9:d6:09:1e:6c:d3:3c:ef:5d:ac:09:a6:d3:e7:
9b:a1:11:93:fd:84:c6:97:1f:82:98:66:03:52:d2:12:d4:dc:
b6:fe:de:11:16:87:d6:80:7e:25:6c:72:e7:88:b5:5a:41:e2:
68:76:91:cc:da:17:8c:15:04:98:17:ad:2f:41:a9:c1:4a:b6:
11:c7:ec:d1:bd:0e:00:d6:08:d0:b7:76:fc:8c:5c:31:4c:db:
1c:86:c8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org