Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t0VfBiuZF9cB2NvRunQukgtdiwE.roa
File: t0VfBiuZF9cB2NvRunQukgtdiwE.roa (raw, json)
Hash identifier: NJTxEAbXVnq6C3wVd1rfFpFOyBuk7nTT+EIH7hIUE2M=
Subject key identifier: B7:45:5F:06:2B:99:17:D7:01:D8:DB:D1:BA:74:2E:92:0B:5D:8B:01
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C17EE2A2D94CEE9D232EBFE774C67
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t0VfBiuZF9cB2NvRunQukgtdiwE.roa
Signing time: Mon 02 Jan 2023 08:14:44 +0000
ROA not before: Mon 02 Jan 2023 08:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 45.153.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:17:ee:2a:2d:94:ce:e9:d2:32:eb:fe:77:4c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7455f062b9917d701d8dbd1ba742e920b5d8b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:ad:84:95:db:5c:60:12:4c:a3:68:8d:61:
e2:13:f3:bf:12:60:77:f1:44:a2:51:25:c4:e5:8c:
ca:8f:54:3f:76:69:e9:73:d2:cb:ce:3e:49:e5:0a:
76:44:25:70:b7:90:54:3d:bd:7a:21:2f:77:47:e4:
0e:82:55:03:f7:49:ef:dd:46:12:ac:0e:b4:d8:db:
53:ec:ee:fd:78:ba:f7:6e:03:34:cd:e5:16:34:4c:
55:b6:28:a7:5f:62:e0:bd:ca:f3:03:6c:2a:db:58:
41:36:94:42:34:11:39:b5:d0:8f:0f:33:d5:c0:35:
6a:e9:6d:24:4d:73:56:4d:67:c6:74:4e:36:6a:41:
1d:c5:4d:3f:ce:e7:27:39:b8:16:58:6a:b6:bf:69:
14:47:e6:13:6a:d9:7b:20:72:73:3b:d0:9e:dd:3e:
f3:4a:9d:c1:54:79:e0:55:6d:31:ad:76:32:91:3c:
74:12:fe:36:4b:77:3a:5c:4d:18:73:17:bc:80:71:
0a:19:1b:49:0c:46:47:96:d8:b2:62:2e:cc:d4:17:
7f:9a:11:f5:fa:6b:64:9c:cb:fc:61:ed:4b:d3:a5:
f5:e7:5b:6f:3a:a6:14:c6:25:5b:37:f0:92:44:3c:
89:65:b5:52:7d:34:e3:a1:c5:e3:df:a5:5e:5b:83:
cd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:45:5F:06:2B:99:17:D7:01:D8:DB:D1:BA:74:2E:92:0B:5D:8B:01
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t0VfBiuZF9cB2NvRunQukgtdiwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.166.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b2:2d:3d:c9:b1:c0:e1:e2:77:68:73:a2:d6:b8:f9:c2:80:
64:67:fb:7d:82:0d:9b:bb:b0:90:be:c3:15:39:15:16:19:98:
59:19:e5:d2:59:0c:7a:9b:5f:a2:30:6f:db:57:41:9f:cf:3c:
e2:62:9a:f3:90:f0:05:37:2d:5c:e0:01:bc:e8:36:67:b0:c0:
35:ed:de:be:9e:ed:1b:16:38:8c:34:05:d7:ae:75:21:d0:1b:
f4:5f:57:5a:76:55:96:a9:c6:a1:11:12:35:23:88:a8:fa:fa:
0a:55:7c:4a:47:38:02:06:2c:8b:7b:2c:34:eb:bb:66:10:59:
d4:d1:d6:47:62:47:b0:27:05:cd:22:db:94:75:78:d4:d9:89:
ef:90:64:7c:80:56:37:5b:98:b4:f9:56:7d:96:b4:fa:13:f6:
0f:2c:fc:ae:4d:44:77:10:ae:2f:b0:d4:c8:e1:74:a1:38:0f:
c9:c9:92:0e:aa:75:e4:05:ea:2a:6e:bd:e5:4b:92:b9:11:9c:
30:d4:82:88:fe:00:ed:a7:c7:43:77:4d:5b:95:f7:57:2a:aa:
ee:7d:72:51:7c:71:a0:ba:a7:9c:08:74:09:72:46:2d:bf:42:
d6:8c:6a:e4:a4:81:17:95:24:bb:3b:78:32:15:96:98:61:eb:
52:18:b3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org