Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/XoM0QC9lYzFS606w4FXbHNZ8eAI.roa
File: XoM0QC9lYzFS606w4FXbHNZ8eAI.roa (raw, json)
Hash identifier: JwXhjj9xytgk2mpXMzVKcdsx9AmYvpQ/JD+NYopzsOo=
Subject key identifier: 5E:83:34:40:2F:65:63:31:52:EB:4E:B0:E0:55:DB:1C:D6:7C:78:02
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018D65E5821C1271B10C348A3C85838B51EE
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/XoM0QC9lYzFS606w4FXbHNZ8eAI.roa
Signing time: Thu 01 Feb 2024 18:19:16 +0000
ROA not before: Thu 01 Feb 2024 18:19:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:e5:82:1c:12:71:b1:0c:34:8a:3c:85:83:8b:51:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Feb 1 18:19:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e8334402f65633152eb4eb0e055db1cd67c7802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:eb:51:8a:7e:c6:97:7f:bf:56:d0:b7:a2:7e:
0e:2f:4a:30:f8:f9:c0:c6:1c:0e:7c:be:d4:9a:1d:
1d:df:b0:ee:ad:b1:5b:65:a4:c9:f6:6e:a8:a6:9b:
63:32:63:1d:fa:5f:dc:d2:73:aa:78:59:99:ab:45:
d4:3e:0e:d9:7e:69:42:72:76:6f:79:71:5f:a6:78:
40:96:32:16:0f:7c:01:b1:e6:99:04:98:e4:89:ef:
5e:0b:2a:71:d8:de:e5:ce:e0:5e:1a:9a:82:44:3d:
f7:91:78:7b:e7:37:1e:f2:e9:39:c4:70:b0:41:1f:
75:75:35:46:05:de:e5:4f:cf:f6:35:fa:c3:1f:0b:
4f:4d:d8:d7:f5:aa:76:0f:25:70:01:a3:b7:8c:3b:
4a:db:c2:cf:c2:6f:7a:62:88:a5:d0:2a:1c:c1:0c:
8b:49:1e:0a:48:bd:d3:c9:65:eb:e6:63:18:cd:31:
14:09:6d:c0:65:69:b7:dc:09:4b:71:92:5d:18:e1:
26:a6:7b:a3:25:4a:6b:7b:75:41:4b:6c:77:93:1b:
9b:9a:21:08:31:c7:33:9d:37:42:71:e9:1a:d0:35:
1d:c9:d0:7a:81:b2:7d:70:f0:2c:87:8d:35:af:ae:
d6:f2:6a:03:84:85:17:be:fc:57:f9:34:e5:85:d9:
e1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:83:34:40:2F:65:63:31:52:EB:4E:B0:E0:55:DB:1C:D6:7C:78:02
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/XoM0QC9lYzFS606w4FXbHNZ8eAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
Signature Algorithm: sha256WithRSAEncryption
20:45:7b:84:db:43:9f:45:39:ce:c7:a5:4d:5a:16:4a:bc:78:
c4:09:a0:40:01:18:83:1e:b0:32:38:bb:3f:de:88:e9:19:e0:
ab:ec:0d:8b:19:52:d9:8c:29:75:2b:ac:9a:06:5d:68:9d:a5:
64:84:d6:4b:da:40:59:03:9e:da:ec:be:50:01:f5:8a:2f:68:
a9:43:be:73:28:db:f2:d7:39:83:60:de:3c:b5:50:5b:64:7d:
fe:fc:f7:a8:5b:b9:b0:44:1f:9c:fc:00:47:1b:41:20:95:73:
08:7f:23:19:fa:c5:ba:88:06:35:39:6e:d6:a0:c5:c8:e9:65:
f6:72:c5:11:c2:0b:b3:9c:2f:00:9c:da:16:c2:64:2e:bb:6e:
18:c1:96:59:7a:14:a2:2c:52:46:95:71:a7:db:b0:18:80:1f:
a1:bc:b3:53:dc:df:6c:e4:8a:16:e6:03:5a:28:8b:17:88:32:
93:08:3e:75:14:32:98:d3:69:b3:89:18:88:cc:b1:b4:98:0c:
22:f9:dd:bb:ad:61:76:f2:3f:83:6f:70:37:71:2c:dc:ed:4f:
af:82:42:05:9f:e6:7f:10:57:e3:6d:16:69:be:b9:64:ce:05:
e5:9f:d2:87:39:bb:c7:1d:a1:d1:c1:fa:3c:b7:de:cd:b6:b4:
7a:23:d6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org