Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/6D58WjxFcA2lAp-E6Y95rzQdhoM.roa
File: 6D58WjxFcA2lAp-E6Y95rzQdhoM.roa (raw, json)
Hash identifier: C7NaLXXo3DH9GmHaeMaAWcNhPpi+jTfx73gGWgDoOvM=
Subject key identifier: E8:3E:7C:5A:3C:45:70:0D:A5:02:9F:84:E9:8F:79:AF:34:1D:86:83
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 018EBD447AF5B481F91DD7D1360246C849C3
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/6D58WjxFcA2lAp-E6Y95rzQdhoM.roa
Signing time: Mon 08 Apr 2024 10:32:45 +0000
ROA not before: Mon 08 Apr 2024 10:32:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 45.88.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 17:39:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bd:44:7a:f5:b4:81:f9:1d:d7:d1:36:02:46:c8:49:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Apr 8 10:32:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e83e7c5a3c45700da5029f84e98f79af341d8683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d3:83:8f:4c:c7:c6:b9:b2:86:92:47:08:6d:
f5:39:68:5c:18:9a:84:dd:5a:4a:38:f1:fc:d5:0e:
e1:c6:f3:76:9e:4d:f2:db:f8:d7:27:f1:7d:45:70:
b6:58:32:9b:f7:0b:9b:35:12:91:b5:4c:d4:50:f6:
99:cd:46:67:6e:40:67:27:24:1f:17:89:82:3e:f4:
3e:59:c8:b3:85:4e:42:dd:87:4b:36:6d:05:a3:6e:
5a:aa:ea:3c:73:94:b0:d1:a4:b7:96:85:fd:f5:a4:
cc:35:fd:ee:31:7a:ad:49:a2:ff:d4:98:bc:f3:d6:
6e:6e:d5:57:6d:52:8f:de:9c:fa:fb:72:d4:4c:78:
3d:2a:56:5f:65:48:31:07:0c:0f:1d:30:9d:08:91:
84:c6:71:22:ce:f9:1d:b4:67:3f:4b:91:89:ad:18:
5c:6c:13:62:61:16:4c:99:0d:1c:fa:3f:5e:40:3d:
87:d9:71:2b:d8:24:6e:85:a5:bc:fe:65:19:4d:0a:
ec:fb:0a:ff:00:d4:2b:5d:98:e5:98:c4:d0:91:4c:
81:d0:69:09:bf:ce:2b:62:b0:fa:32:47:8f:41:2a:
f9:23:65:48:e9:e9:77:fe:b4:a2:85:79:cc:04:d2:
bf:35:45:a6:59:47:9a:f9:94:9e:ee:d3:92:56:76:
43:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3E:7C:5A:3C:45:70:0D:A5:02:9F:84:E9:8F:79:AF:34:1D:86:83
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/6D58WjxFcA2lAp-E6Y95rzQdhoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.225.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:bc:37:41:ff:9f:f5:e5:fc:f1:c1:d0:76:74:1a:a1:35:4d:
4e:65:41:50:6f:1c:70:0f:dd:cb:0b:c0:19:70:7f:e4:74:a8:
0e:4c:f7:7d:08:54:65:a9:d8:2e:70:b4:75:4b:7a:19:b1:02:
84:8e:71:3f:8e:43:8e:21:40:98:53:cd:f2:1b:66:28:72:6b:
ea:fa:cf:6e:59:b0:8c:b7:49:36:8a:fb:a7:52:f7:09:82:97:
d0:ee:36:8a:ae:7e:70:4b:15:2a:39:fb:f1:71:45:1c:ee:15:
a1:a5:42:b5:7a:47:77:16:a6:90:5c:be:95:d5:43:61:32:9b:
91:91:d8:6e:d4:7b:01:10:8e:e8:b4:82:d8:92:34:71:27:72:
3f:18:8d:43:95:30:a4:7d:01:ed:ad:0f:4c:59:b8:8f:a4:e4:
80:ec:17:af:b9:b1:8e:ec:16:b1:b1:c2:cb:aa:d0:6f:b1:47:
8e:6c:7f:92:a5:bc:1d:a0:86:4d:ac:c7:8f:4b:d5:11:cb:87:
3e:13:aa:be:ab:b4:67:2c:6d:0b:68:52:bf:3f:38:fb:63:f8:
dd:9e:6b:33:53:f1:c8:5f:6e:08:af:75:1a:af:22:c2:14:d0:
d0:0e:29:ee:9b:95:bb:8c:01:82:c1:32:3d:03:df:b2:d0:1e:
3f:e1:a0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:46 2024 by rpki-client on console-fra.rpki-client.org