Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PTiYEKUsrcdKT4arrM7hRrPu26M.roa
File: PTiYEKUsrcdKT4arrM7hRrPu26M.roa (raw, json)
Hash identifier: 0AzwOKUzVwOMOWqk4TuVUXiDyTrXG3Go17xoaduOBd0=
Subject key identifier: 3D:38:98:10:A5:2C:AD:C7:4A:4F:86:AB:AC:CE:E1:46:B3:EE:DB:A3
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018D68A00E4C6684E9D97DE4E179696F422D
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PTiYEKUsrcdKT4arrM7hRrPu26M.roa
Signing time: Fri 02 Feb 2024 07:02:16 +0000
ROA not before: Fri 02 Feb 2024 07:02:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
139.28.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 11:14:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:a0:0e:4c:66:84:e9:d9:7d:e4:e1:79:69:6f:42:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Feb 2 07:02:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d389810a52cadc74a4f86abaccee146b3eedba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7b:96:b3:ca:21:6f:22:7b:f5:11:9f:e6:f7:
2f:2c:63:be:f1:35:09:6b:94:35:0f:a3:5e:11:f5:
91:a7:d7:d5:2a:74:0b:7e:1c:37:ad:6a:68:8f:85:
63:5b:dc:a6:ad:58:11:1d:6c:59:42:9d:2d:91:da:
15:7c:82:98:3a:37:32:0d:b6:c5:ce:d1:0f:a4:e9:
52:30:68:77:c2:b8:0f:72:be:15:af:36:d6:88:58:
6f:9e:a9:03:48:97:4d:41:6c:1c:a8:04:3d:61:ad:
0b:b6:a0:aa:e1:d4:22:ab:f2:9a:ae:1e:9b:69:53:
65:44:2e:d9:fe:61:4a:4c:66:a7:5f:43:66:db:a4:
95:18:29:ce:ce:c1:b2:b1:6b:22:bc:41:87:22:60:
f3:cf:8d:a8:aa:1a:fd:a3:b8:7a:72:ef:32:2d:56:
8c:e2:ba:1f:ea:75:5a:a6:14:2f:c9:52:eb:62:23:
d0:38:71:2f:d1:e7:10:66:bf:f7:a5:24:56:7e:11:
e8:23:1d:6d:b9:62:cc:08:0e:48:67:40:1f:73:24:
c1:2f:c4:9e:12:42:25:50:49:8d:e2:38:59:79:58:
db:ab:f2:c9:cf:9e:13:ef:42:a1:a9:41:b3:f1:60:
c9:46:60:a1:a3:97:c9:7a:64:fa:6a:98:c7:04:00:
2a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:38:98:10:A5:2C:AD:C7:4A:4F:86:AB:AC:CE:E1:46:B3:EE:DB:A3
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PTiYEKUsrcdKT4arrM7hRrPu26M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
06:a2:82:e2:59:5e:dd:50:6d:41:92:40:51:dd:df:ee:d8:99:
57:ff:6c:bc:7e:f0:24:17:b8:0f:ed:90:06:a4:00:91:94:fd:
de:5c:a6:bd:b3:ab:7c:f2:e2:b2:8e:aa:83:9c:c0:6e:e9:cd:
22:36:ff:1b:f6:fe:38:cc:e6:5d:f4:41:34:11:59:2a:1f:b3:
e6:c5:4e:71:87:59:a5:78:ac:e4:cc:47:f2:21:f6:cd:56:85:
ab:76:b6:d5:11:cc:b9:8d:bc:66:d5:24:f9:00:9e:5a:38:66:
cb:c8:0c:0a:7e:b1:32:23:f3:41:85:c8:40:b4:de:00:8b:3d:
17:a6:40:dd:f5:9d:56:bb:23:39:a8:a8:cd:65:50:d8:ba:af:
b3:e8:8f:dc:1e:e0:3d:ac:2e:b7:b8:a8:ac:49:7a:bb:22:1d:
28:d3:41:1e:49:ed:be:a0:25:e1:c1:bb:07:b2:1f:bf:79:0f:
9e:07:62:80:e7:0d:72:ba:2e:52:d0:f2:d9:f9:db:07:b5:05:
87:ee:5d:62:b8:72:82:56:75:41:5d:12:8b:5c:dc:2b:d0:c5:
34:da:e3:3f:9a:55:90:83:7c:e2:bd:80:dc:7f:56:36:1b:96:
9d:b1:55:03:fa:39:4f:78:3e:34:dc:79:e8:42:4c:8a:16:7d:
09:b9:ea:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org