Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/awS_vzgIrtLaK3EWwmFt4tlR3IU.roa
File: awS_vzgIrtLaK3EWwmFt4tlR3IU.roa (raw, json)
Hash identifier: YW4VkLZiZVhWVnIzCptFSXnUhfvffb3n9OmxE7LhdpI=
Subject key identifier: 6B:04:BF:BF:38:08:AE:D2:DA:2B:71:16:C2:61:6D:E2:D9:51:DC:85
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018A107606A2E7EC067D24F17F42418AF2C2
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/awS_vzgIrtLaK3EWwmFt4tlR3IU.roa
Signing time: Sun 20 Aug 2023 01:01:24 +0000
ROA not before: Sun 20 Aug 2023 01:01:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.153.164.0/24 maxlen: 24
45.140.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 04:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:10:76:06:a2:e7:ec:06:7d:24:f1:7f:42:41:8a:f2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Aug 20 01:01:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b04bfbf3808aed2da2b7116c2616de2d951dc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:53:59:76:b5:01:a2:cd:62:65:5c:f4:31:
ea:00:5e:ee:f9:18:53:3d:24:05:26:4d:9c:72:71:
cd:28:ae:68:28:f9:f0:c9:62:16:d1:66:b2:ef:5b:
3b:44:7c:0c:7f:89:82:4c:ce:ee:ac:f1:f3:80:86:
03:8a:61:37:35:a8:04:f6:5d:85:a7:e8:9a:c1:8b:
a6:d3:b8:17:ec:c7:d7:55:a9:ce:f0:ba:79:8f:93:
b4:52:7f:5e:04:a4:62:72:eb:71:d7:5a:30:45:c2:
f8:31:78:60:50:2c:21:44:8e:12:a8:c2:6c:6b:fe:
f6:c1:9f:74:2c:03:be:51:4e:52:da:91:a4:24:79:
d7:45:98:93:94:ba:bf:ec:6e:97:42:fe:c3:01:56:
4e:aa:03:1e:72:3f:ba:fc:97:02:35:ca:e2:e7:f8:
6d:3f:e3:24:7f:63:4f:a6:db:c7:cf:1d:6b:60:31:
35:91:24:7b:8d:f0:99:5e:e0:23:ad:93:6e:94:4f:
bc:63:65:b5:a6:ab:0f:b8:cd:ec:23:92:50:22:bf:
6a:7a:96:ec:f0:0c:9a:5f:cf:da:a0:eb:13:77:95:
bb:be:24:5f:b0:34:61:70:8e:c0:7c:7d:34:68:99:
b3:1d:e0:93:98:0e:96:95:6c:ce:ed:1a:fa:3d:c8:
3e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:04:BF:BF:38:08:AE:D2:DA:2B:71:16:C2:61:6D:E2:D9:51:DC:85
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/awS_vzgIrtLaK3EWwmFt4tlR3IU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.195.0/24
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c8:49:41:e5:4e:a4:18:a7:b9:18:8b:2d:c1:6c:2a:0f:ac:
7a:9a:d8:c6:44:56:ab:4d:ba:38:8c:0f:73:64:3c:03:df:e5:
90:f7:ea:5e:fc:a1:78:e2:db:f7:6a:85:34:31:a2:de:f6:51:
e6:c3:22:0c:da:0a:6d:cd:61:66:b4:cd:07:fc:88:dc:66:ce:
0f:4a:8c:df:12:75:dd:2f:d3:b5:38:3f:da:7d:24:fd:3c:d3:
c5:fb:a7:76:fa:22:23:aa:33:d1:30:51:2f:4d:f1:e5:b1:bc:
43:7c:8e:c9:6a:0f:fa:ac:85:9a:24:41:5f:a3:98:af:99:94:
1c:12:25:c5:ca:b3:d7:09:50:a0:9a:4b:57:32:f2:a3:23:2e:
82:da:30:a8:f4:d3:a5:c8:dc:50:26:5f:10:f0:95:af:3a:75:
e7:2c:bf:43:04:09:0b:a3:10:80:b9:f6:a2:fb:71:3e:e9:99:
8e:fe:46:c4:9e:d7:c0:9c:14:b2:05:a3:7b:bc:a6:84:98:36:
68:e9:08:7d:6e:62:8e:20:02:25:82:41:9c:2f:95:5e:6e:38:
b2:c1:82:f2:85:1e:7d:99:65:aa:d1:b9:37:06:c7:7f:2a:cb:
e4:fc:68:b9:3c:3a:f1:10:ea:a2:c5:0d:f1:4a:71:33:ac:ad:
fd:f9:d4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org