Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/I3QkZU61mGHRKZwpkcG1tdUWWXA.roa
File: I3QkZU61mGHRKZwpkcG1tdUWWXA.roa (raw, json)
Hash identifier: F7PRWX5OwOthl/xixY2hLb8jbvp2NtPpqNYJZhsbTsE=
Subject key identifier: 23:74:24:65:4E:B5:98:61:D1:29:9C:29:91:C1:B5:B5:D5:16:59:70
Certificate issuer: /CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Certificate serial: 0189BA4394220D569F92F47F9C0326EF74BF
Authority key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/I3QkZU61mGHRKZwpkcG1tdUWWXA.roa
Signing time: Thu 03 Aug 2023 07:18:58 +0000
ROA not before: Thu 03 Aug 2023 07:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 45.132.226.0/24 maxlen: 24
45.132.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:43:94:22:0d:56:9f:92:f4:7f:9c:03:26:ef:74:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Validity
Not Before: Aug 3 07:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=237424654eb59861d1299c2991c1b5b5d5165970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:77:f1:9d:2e:2d:b8:7d:3f:1c:53:96:1f:6b:
12:59:90:d4:0f:24:ef:49:70:a0:7e:57:97:d7:85:
1c:93:bb:c5:68:3e:dc:2d:1e:b1:08:ba:a1:1d:7c:
0e:e0:ba:7f:62:43:7c:7b:ae:a2:23:2a:17:47:c0:
6b:59:96:b4:da:e6:94:62:e5:d4:33:00:22:a1:28:
e2:24:af:6d:d3:44:f6:57:c4:86:61:23:1b:75:59:
0f:f4:7a:30:b8:c8:6a:d5:8e:49:2d:77:bb:d2:04:
e2:fd:3a:9c:4b:ef:71:6b:76:0b:ce:55:e2:04:b9:
63:5f:a9:0a:f5:e4:0b:01:b9:49:53:bb:50:a4:2e:
bf:b1:bd:82:fc:27:95:f8:85:3d:dd:b8:a5:41:75:
3e:45:6f:f9:2c:70:6e:5d:34:7d:90:56:2e:cb:83:
9f:05:3b:10:d5:1a:ba:3f:8f:e4:18:62:46:7d:92:
31:20:ba:94:65:d5:3f:38:d3:aa:2f:fa:12:e1:53:
f2:2f:66:c8:e6:07:c0:ad:2b:fe:b1:a6:b7:98:d3:
3d:7b:00:43:c7:e7:ff:db:27:b1:96:4a:d2:34:26:
75:d6:5f:5b:d2:26:89:bf:1f:70:51:07:7d:c3:b4:
83:bb:ab:42:4c:b6:2d:da:ee:9c:18:ed:72:aa:ec:
b3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:74:24:65:4E:B5:98:61:D1:29:9C:29:91:C1:B5:B5:D5:16:59:70
X509v3 Authority Key Identifier:
keyid:BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/I3QkZU61mGHRKZwpkcG1tdUWWXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.226.0/23
Signature Algorithm: sha256WithRSAEncryption
18:44:f3:92:4c:96:6d:78:9c:d6:28:e8:22:7b:92:3e:34:15:
a6:2c:3e:76:4c:3f:10:d9:fa:42:8f:68:f8:97:cb:04:8d:80:
6a:7b:4b:1c:25:2b:28:84:19:e6:ee:42:5e:97:a7:28:74:06:
6f:da:23:d6:53:01:55:bd:13:ef:cd:f7:19:53:03:39:fb:c0:
29:2d:99:49:da:1e:ff:89:86:94:24:77:17:f4:8b:31:da:b1:
b2:b2:3b:20:aa:fb:6b:c5:6c:4c:91:53:22:44:16:da:c2:40:
12:3c:26:ee:37:49:65:06:1d:17:3b:98:90:57:59:20:1d:74:
7b:a5:c0:ed:19:e8:d4:c0:83:ea:4f:ec:03:08:df:d4:91:37:
16:3c:78:4c:4a:66:c2:b3:13:a5:42:c3:a0:c3:92:a1:26:ae:
bd:75:04:d0:b7:73:52:4c:1b:3c:09:81:62:11:d2:79:1d:b7:
19:ca:d9:5b:53:29:38:e1:5d:c2:49:82:ad:2f:4e:41:de:3c:
3b:ca:c1:f8:b8:97:f9:6e:47:de:b1:41:26:c7:0e:96:d6:e6:
00:84:33:e8:97:f8:75:5b:a9:bf:69:6f:57:da:6a:0d:c7:39:
b9:a6:2c:24:06:f7:73:bd:21:25:52:fc:aa:aa:56:90:25:4e:
4f:58:af:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:31 2024 by rpki-client on console-ams.rpki-client.org