Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/W62m2tboRgD-1LZ2mtPZF_9FuLg.roa
File: W62m2tboRgD-1LZ2mtPZF_9FuLg.roa (raw, json)
Hash identifier: c5BAWvBBmG6hMb3Gy0DOt/8kP8C8yFSd/oVs46pHLHM=
Subject key identifier: 5B:AD:A6:DA:D6:E8:46:00:FE:D4:B6:76:9A:D3:D9:17:FF:45:B8:B8
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 01897CB162F4B2BBE2B3E481E08DBD912BD2
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/W62m2tboRgD-1LZ2mtPZF_9FuLg.roa
Signing time: Sat 22 Jul 2023 08:22:27 +0000
ROA not before: Sat 22 Jul 2023 08:22:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 149.3.171.0/24 maxlen: 24
45.11.98.0/24 maxlen: 24
45.11.97.0/24 maxlen: 24
45.11.96.0/24 maxlen: 24
45.11.99.0/24 maxlen: 24
134.255.199.0/24 maxlen: 24
2a0c:6d40::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 10 Nov 2023 09:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7c:b1:62:f4:b2:bb:e2:b3:e4:81:e0:8d:bd:91:2b:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jul 22 08:22:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bada6dad6e84600fed4b6769ad3d917ff45b8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e0:e5:58:cc:e6:86:f3:01:64:94:7a:a9:eb:
98:05:e7:a9:55:b5:4d:29:e3:40:44:d8:e5:5a:42:
a3:8b:2d:89:c8:cb:84:e6:47:40:de:91:96:30:c9:
48:f1:14:a7:24:59:63:7b:ee:9d:b5:c4:5b:66:36:
48:95:f3:e2:b2:64:d0:fa:44:eb:1f:87:43:d5:33:
81:c2:ec:99:50:07:08:29:dd:49:be:34:37:87:7c:
70:0f:52:b5:31:04:2c:06:cb:b5:c6:52:b6:a2:ca:
5f:63:41:5f:d6:e3:a2:7d:80:d3:1b:87:fd:7d:1d:
e1:a0:c0:69:1f:ed:84:bb:c0:16:12:d5:cf:0a:9b:
ac:18:df:05:90:4e:00:b9:a0:d5:5f:6b:7e:d5:51:
a7:2d:d0:ab:29:d4:01:71:58:56:50:7b:96:c9:ee:
c4:04:37:cf:ca:e1:14:84:53:c3:04:5a:23:1b:70:
ec:69:73:af:d9:9c:13:cc:72:30:0f:d3:47:e4:19:
94:61:e9:53:52:6e:d0:ce:4c:7b:7a:e4:ef:30:2c:
02:a2:ea:86:41:69:5a:fb:cf:1d:26:33:5e:8e:fa:
55:a2:23:27:06:4a:30:e2:ae:0e:ba:8a:73:39:8c:
f5:ed:1d:43:f5:ab:c7:96:11:5f:fa:8c:f6:06:8c:
3c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AD:A6:DA:D6:E8:46:00:FE:D4:B6:76:9A:D3:D9:17:FF:45:B8:B8
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/W62m2tboRgD-1LZ2mtPZF_9FuLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.96.0/22
134.255.199.0/24
149.3.171.0/24
IPv6:
2a0c:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
5f:bf:f2:df:9b:e3:14:ea:03:0f:80:68:a1:1e:47:21:44:6d:
ac:57:a9:44:3d:93:09:e0:8d:98:fd:fc:a5:a7:ce:3c:9a:02:
a0:bf:7c:44:47:53:f8:95:21:32:f5:06:bf:2f:e0:b9:f5:48:
f0:fe:48:09:16:2e:65:59:d2:91:da:1d:c3:f2:93:7c:3f:85:
9d:64:b6:d0:24:a7:7d:35:c5:b2:05:8a:79:7e:86:81:d1:c8:
a2:35:72:d6:c4:0d:55:42:90:c8:30:67:92:04:1a:ef:bd:b5:
47:3a:3c:fc:49:cd:e9:a8:a6:52:c1:88:36:41:cf:fa:3e:74:
80:0a:4e:61:bd:b7:06:8f:c4:65:a8:98:f9:90:29:2f:f5:2a:
11:89:2a:e7:27:4b:8a:ba:25:07:c4:d2:31:fe:bd:bc:37:e8:
e3:0f:62:dd:e0:73:a8:1d:66:e9:d1:46:2d:1f:0a:49:9f:d1:
84:39:f5:ad:f4:e1:8b:99:ab:b7:87:92:4f:25:7f:d9:95:20:
f2:aa:96:45:28:b6:4e:2c:88:05:c0:50:94:71:9a:d2:9c:3c:
e6:e8:db:24:96:d0:7b:2c:db:bb:44:62:6d:5c:a2:7f:29:c7:
f1:cb:de:63:6b:de:02:df:78:87:32:28:4b:57:1d:db:47:5d:
d9:20:8b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org