Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/OMbD0BJPkmINdSUpWymqFA6HPEA.roa
File: OMbD0BJPkmINdSUpWymqFA6HPEA.roa (raw, json)
Hash identifier: TsiUPhaqnlBqtXEsS1DgThxPw4zReFM1spFjNO2iAb8=
Subject key identifier: 38:C6:C3:D0:12:4F:92:62:0D:75:25:29:5B:29:AA:14:0E:87:3C:40
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 019130EE3B1D2CB2417E2262C8475E320775
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/OMbD0BJPkmINdSUpWymqFA6HPEA.roa
Signing time: Thu 08 Aug 2024 07:40:04 +0000
ROA not before: Thu 08 Aug 2024 07:40:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 17:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:30:ee:3b:1d:2c:b2:41:7e:22:62:c8:47:5e:32:07:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Aug 8 07:40:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38c6c3d0124f92620d7525295b29aa140e873c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4d:73:4a:ec:b1:da:b1:ed:01:d4:bb:a0:8b:
25:1a:da:fc:28:41:9f:d0:7e:2c:f0:b7:d4:53:e2:
20:6b:24:34:b4:2f:dd:9e:4f:7d:82:13:4d:4f:00:
60:e7:46:93:8f:78:8b:f7:68:f1:64:5d:9f:c5:51:
72:14:aa:a0:b9:4b:eb:75:54:5f:d0:ff:15:ff:07:
ac:c2:58:8e:8d:5f:f7:25:6b:e5:51:15:46:0d:73:
1a:2b:e9:04:25:74:bb:9a:cc:4f:5f:b7:dd:1c:11:
09:fe:32:58:63:b2:24:3b:ba:32:1d:fd:60:9a:4d:
67:f1:57:c7:aa:ec:02:d5:ba:ed:8c:58:e1:86:11:
66:62:55:a6:55:be:4e:cf:ea:95:e9:a6:57:a0:9a:
5b:bd:db:ba:ec:fa:28:f9:83:23:48:a8:53:70:65:
14:ad:fa:05:d0:d4:c0:4b:9c:75:b5:62:9a:df:97:
9f:28:b6:ce:bc:66:10:d8:43:46:12:66:65:f9:52:
61:94:61:79:ce:d0:14:cd:eb:8a:41:5c:b8:a4:b2:
65:f5:f5:f2:ab:0b:26:83:7e:a7:22:3d:38:25:2e:
51:db:5a:b8:e0:d4:7b:bd:27:cb:f3:a0:64:02:c7:
28:4b:f6:58:6d:e5:db:6f:d8:cc:d0:43:17:dc:55:
03:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C6:C3:D0:12:4F:92:62:0D:75:25:29:5B:29:AA:14:0E:87:3C:40
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/OMbD0BJPkmINdSUpWymqFA6HPEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:d6:0d:d7:4e:6d:f4:58:03:9d:45:d2:53:fa:48:95:96:b7:
4c:0d:52:33:1a:e4:00:89:17:2d:6d:ef:4f:45:6f:9b:05:7f:
6f:cf:13:5b:de:46:4e:1e:8c:6e:5c:61:41:d1:c7:7c:c9:b8:
e3:4c:81:6b:6c:34:0c:a3:f0:a2:39:06:91:d6:6f:90:18:2d:
8f:13:d1:22:ea:91:fe:5e:9d:32:c6:5e:93:0d:84:a7:fa:8f:
c0:b3:75:5a:3b:c1:d2:0e:b9:21:c3:13:4f:3b:54:1c:bc:b4:
03:bd:95:c9:1d:7c:a0:8d:ea:2e:27:a9:9e:a9:79:81:ea:c8:
14:73:98:0e:57:86:1b:7c:b1:db:f8:9b:f7:a3:47:83:25:fe:
4e:4c:d2:8c:b5:b9:68:10:5f:ff:a0:54:98:49:75:ea:8b:61:
7b:10:eb:c7:81:b6:a4:b5:79:83:b5:eb:47:43:ce:80:a6:9c:
3a:43:6a:92:3a:6d:d7:a2:fc:45:7c:65:8a:fb:9b:cc:a6:78:
0e:5b:0c:ff:9a:0c:62:ab:e9:73:d7:c1:49:0e:d6:d2:5e:1c:
99:79:d5:ab:0f:51:e0:8a:b4:86:55:dd:27:d7:82:13:99:36:
19:21:44:ab:af:9c:15:31:8a:c1:5b:4f:50:10:9c:b8:84:93:
34:e0:87:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 20:09:18 2024 by rpki-client on console-ams.rpki-client.org