Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/U6YQQWc2E1DYdgGDxkrT5pwKP4A.roa
File: U6YQQWc2E1DYdgGDxkrT5pwKP4A.roa (raw, json)
Hash identifier: vyu2lOXKAY078dB2kC21vBUYsQAFSr1ICj/dX5kIqq0=
Subject key identifier: 53:A6:10:41:67:36:13:50:D8:76:01:83:C6:4A:D3:E6:9C:0A:3F:80
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 01857054CBA084835D80C47F812F19F6A69F
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/U6YQQWc2E1DYdgGDxkrT5pwKP4A.roa
Signing time: Mon 02 Jan 2023 02:34:43 +0000
ROA not before: Mon 02 Jan 2023 02:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48528
IP address blocks: 45.150.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:54:cb:a0:84:83:5d:80:c4:7f:81:2f:19:f6:a6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 2 02:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53a6104167361350d8760183c64ad3e69c0a3f80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3d:e9:ce:c9:92:7e:1e:52:b8:fd:bf:d7:82:
8d:3d:65:3f:bc:f2:9f:09:2e:6a:47:a2:23:7c:7c:
cf:8b:97:a8:5a:62:d9:b5:47:41:26:ff:91:8c:36:
2d:5c:87:ca:ab:b0:03:23:9b:49:18:80:62:33:8e:
b3:03:44:49:df:fe:71:33:50:9a:87:23:f0:89:2a:
dd:d1:da:ad:39:ab:1a:8c:85:1e:e4:06:ad:6c:75:
13:37:bc:43:7e:21:fe:92:62:2e:28:88:fb:45:e7:
0e:49:7e:72:24:f6:00:27:b0:71:15:c3:79:26:47:
e0:17:aa:41:54:bb:66:28:9b:ed:12:f4:7a:bb:06:
23:76:c3:e2:9c:cd:c4:d5:52:6f:0a:3e:b2:00:03:
a7:54:53:ab:e0:a6:9f:89:ea:67:b9:f8:8b:68:f2:
74:48:35:c9:85:5a:49:d3:17:25:bb:d9:67:5e:11:
72:84:a3:ae:6d:76:14:21:d0:35:06:49:ba:04:3a:
81:a1:62:72:37:a8:b8:87:b6:1a:67:5f:98:45:b6:
e6:21:d1:54:97:04:85:3f:ca:45:7f:88:15:72:29:
32:98:19:cc:2d:08:08:fb:3a:ce:ed:0e:53:e1:23:
ee:13:d4:8c:12:1b:85:cd:c6:2d:58:61:ca:bf:d5:
f4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A6:10:41:67:36:13:50:D8:76:01:83:C6:4A:D3:E6:9C:0A:3F:80
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/U6YQQWc2E1DYdgGDxkrT5pwKP4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.108.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f9:85:64:2a:a4:93:db:62:13:70:17:9b:c1:b7:24:88:0f:
90:bc:37:7b:70:23:ba:ab:e8:ac:70:56:34:73:43:27:e6:d2:
6a:df:c9:4f:e7:25:f0:4e:24:0d:40:7a:e4:3d:e8:11:42:38:
57:ab:24:43:ae:b3:85:d8:3e:f9:83:2f:6a:4b:05:4e:ff:56:
d5:01:b4:e6:91:b2:67:39:f9:e3:75:a4:48:cb:a7:9a:23:52:
9c:2c:2c:4c:72:4c:c9:09:9c:24:79:71:fa:3c:4a:06:4b:6a:
59:2e:97:ce:56:21:41:b8:b4:d9:06:3a:f8:c2:c8:2b:67:6a:
cc:34:cb:1f:c3:82:a9:bb:d2:5c:78:cb:0d:e8:33:5f:78:d4:
fb:1c:5e:48:f4:14:d9:ca:d2:d3:76:46:68:e6:65:61:30:b1:
dc:a9:8d:d2:ff:8a:93:21:3c:3a:5d:a0:7f:63:d7:97:a3:b6:
11:1d:c6:93:45:e1:4e:50:4f:03:b7:5f:11:e9:3a:68:59:02:
b9:0b:bf:1a:49:12:8e:e3:cc:68:8f:32:10:54:52:d4:1c:b7:
f6:9d:46:1d:f8:05:3a:6c:c0:85:18:6a:07:db:7c:41:65:f2:
8c:53:c4:93:66:46:0e:e3:ff:de:4e:d4:4b:ce:2e:03:b5:a4:
3e:4a:c0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org