Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/0l0i-REpyvtYJI9qOy5MXUQNiMk.roa
File: 0l0i-REpyvtYJI9qOy5MXUQNiMk.roa (raw, json)
Hash identifier: IPljaIgHyGK4jPYqbixDYAE4CWuJuvBY71eeO+NfWwU=
Subject key identifier: D2:5D:22:F9:11:29:CA:FB:58:24:8F:6A:3B:2E:4C:5D:44:0D:88:C9
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C1B9CB650C0CC6A965CCC40327E18
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/0l0i-REpyvtYJI9qOy5MXUQNiMk.roa
Signing time: Mon 02 Jan 2023 08:14:45 +0000
ROA not before: Mon 02 Jan 2023 08:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272073
IP address blocks: 45.153.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 16:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:1b:9c:b6:50:c0:cc:6a:96:5c:cc:40:32:7e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d25d22f91129cafb58248f6a3b2e4c5d440d88c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:7b:b2:ac:66:c2:65:99:56:4e:e0:da:bf:
54:e7:b1:0c:04:11:2f:6d:5f:13:0a:67:e4:65:23:
aa:cd:07:a3:42:23:f5:ec:29:07:7d:4d:2c:35:77:
1d:08:fa:00:ba:f4:08:86:30:f9:c7:bf:67:0f:02:
81:14:64:cb:38:18:d2:e6:bc:f8:e7:72:77:30:fc:
bc:de:03:f2:29:c2:69:9f:dd:29:92:e7:9e:1e:41:
0f:cc:98:b2:44:94:5a:5c:c5:9e:e6:83:78:0c:1f:
36:d7:93:fb:39:db:25:8b:66:ff:e6:51:ba:b5:f3:
88:8d:aa:55:9c:c6:1c:82:a0:72:ff:b4:c2:ed:28:
44:4e:9b:15:cd:84:6f:64:61:45:50:60:04:42:94:
e4:4f:3f:61:ae:df:c2:8b:c6:39:2c:66:db:58:c5:
59:09:6b:69:d9:03:54:1d:d7:01:57:35:95:1a:1c:
c9:b7:8d:81:dd:ec:da:37:38:b3:da:38:41:0a:3e:
17:c3:b2:b7:bc:f8:60:0e:0a:be:d9:61:e7:b3:1f:
90:2c:18:be:0d:23:14:b7:11:96:e2:f4:c7:02:a3:
7d:38:35:ef:7a:84:d6:20:dd:e8:b6:3a:07:ac:95:
3a:25:a9:24:11:5a:d1:a8:34:33:cf:ef:28:bb:7d:
6f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5D:22:F9:11:29:CA:FB:58:24:8F:6A:3B:2E:4C:5D:44:0D:88:C9
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/0l0i-REpyvtYJI9qOy5MXUQNiMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.165.0/24
Signature Algorithm: sha256WithRSAEncryption
95:a4:f1:fa:cd:e7:b5:6d:45:84:56:34:60:8d:86:1b:d9:9b:
32:33:cd:2f:cb:4e:50:36:ca:25:34:b4:05:0c:7d:e6:8a:1d:
8b:fd:8d:9d:24:90:3e:9e:3a:e2:20:84:29:5f:bc:62:e6:aa:
93:99:01:54:fb:92:c0:bf:0e:54:9e:62:d3:e7:33:7a:a6:78:
16:76:c2:cf:db:0a:38:25:a0:20:de:af:60:c7:8d:37:cc:23:
67:01:e1:a7:46:91:e2:d8:9c:4e:00:74:5b:9d:62:b1:81:0f:
e5:6a:74:d0:1d:97:7b:2a:93:04:e9:a4:8c:2b:a2:4e:4d:a2:
9e:4b:68:88:be:f8:a8:1f:bd:32:4c:de:68:ac:bd:04:0b:5c:
18:29:df:71:07:05:39:7c:fa:78:b5:38:cc:85:62:41:e5:0f:
b9:75:a6:20:b0:88:a4:73:27:ab:4b:c6:2d:d0:de:6d:a7:5d:
87:06:0b:bd:2c:aa:de:7f:14:cc:c4:d0:7b:2f:41:08:9a:92:
7d:31:f0:da:8a:aa:5e:f7:e0:14:fd:4f:ba:cb:b7:53:fa:24:
5c:af:d9:65:b9:f7:c0:69:25:19:45:aa:ff:0d:3e:74:ae:5b:
11:cf:ed:1e:a6:59:6d:92:ff:7b:38:07:4d:cc:18:a3:b2:93:
65:c9:eb:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org