Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/B2IlSLIJiW_Kl31yF-1NsUo1DNo.roa
File: B2IlSLIJiW_Kl31yF-1NsUo1DNo.roa (raw, json)
Hash identifier: gh2WqUFTH46Ff6iLFagNsCjBr5UVVvxwcRxUcoHcPkE=
Subject key identifier: 07:62:25:48:B2:09:89:6F:CA:97:7D:72:17:ED:4D:B1:4A:35:0C:DA
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 018FDC6C7A566C3EB1D69C67E70A83944965
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/B2IlSLIJiW_Kl31yF-1NsUo1DNo.roa
Signing time: Mon 03 Jun 2024 04:47:27 +0000
ROA not before: Mon 03 Jun 2024 04:47:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.11.184.0/24 maxlen: 24
45.11.185.0/24 maxlen: 24
45.11.186.0/24 maxlen: 24
45.11.187.0/24 maxlen: 24
80.91.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 13:34:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dc:6c:7a:56:6c:3e:b1:d6:9c:67:e7:0a:83:94:49:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jun 3 04:47:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07622548b209896fca977d7217ed4db14a350cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:89:98:0c:4d:ab:dd:1c:f0:be:c2:c3:aa:28:
d6:04:59:78:d9:bf:b0:dd:88:aa:1b:a2:91:b9:c9:
a9:51:93:83:c3:c4:9c:13:ec:73:16:57:92:11:fa:
3e:4e:55:f9:16:ca:b9:fe:6f:56:17:a0:57:8b:6f:
71:db:73:6b:a8:33:60:2d:5e:7c:5a:e5:be:49:20:
6b:f6:37:a3:ee:19:41:6b:fd:38:d7:60:d2:93:1a:
7d:7c:ef:36:41:a3:1b:a7:6d:81:ec:a2:f9:54:b2:
55:07:53:9c:d3:61:8f:3c:4d:eb:f7:01:12:af:ed:
12:2c:5f:45:e8:66:bc:f0:99:05:98:07:32:4c:29:
0a:3a:09:3a:9d:86:31:1f:55:d7:c2:bb:d7:6c:61:
2f:a8:47:1f:15:d0:1e:48:d8:eb:c5:79:77:24:f6:
1f:d0:52:ae:7f:14:73:5c:d2:ee:be:1a:09:b5:f5:
da:64:55:20:33:a4:94:f0:47:88:b3:ec:34:75:a9:
38:4c:c6:51:a8:bb:02:4f:46:7a:04:95:a9:ea:b7:
2e:82:b7:47:68:47:c9:08:96:50:5a:f4:c9:76:8b:
f5:cc:ef:d8:92:41:55:7a:12:2b:e2:71:38:75:1b:
0e:eb:d2:d0:1a:21:71:4c:6c:93:68:a8:f1:fc:3e:
b0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:62:25:48:B2:09:89:6F:CA:97:7D:72:17:ED:4D:B1:4A:35:0C:DA
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/B2IlSLIJiW_Kl31yF-1NsUo1DNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.184.0/22
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
00:28:17:1e:15:d3:ea:54:49:af:ad:9a:5b:68:f9:7f:4a:52:
dc:81:11:28:d0:ce:68:0f:16:b6:ca:4e:12:f2:db:a1:30:01:
e3:c0:77:da:d2:7c:88:53:bd:1a:83:fe:7d:64:6a:a9:44:20:
f3:75:ce:dd:d3:ef:ab:bc:65:37:5d:e9:9c:78:b9:ed:80:d1:
ba:f5:ab:24:b1:c8:8d:fc:be:79:9f:d8:67:6c:7e:59:c8:17:
8e:d5:85:78:df:37:4b:73:f1:19:5c:dc:fd:e0:40:fb:cd:11:
54:51:91:c4:1a:7e:92:5f:40:84:24:26:12:73:9f:8f:18:f9:
2f:f3:48:18:ff:6c:57:99:ce:77:97:15:d1:cf:e9:24:e0:ab:
2a:4c:ed:d1:5f:0e:95:b4:df:5b:37:37:9f:7a:f0:2f:05:e5:
a9:28:77:d4:bb:fa:82:0a:58:d2:f2:b7:10:b2:b9:d4:d0:19:
63:e6:42:2d:5e:ad:09:f2:12:34:2b:82:f0:2f:d0:f9:78:6a:
75:a7:21:1d:73:1c:ce:66:4e:3b:c7:77:b6:19:5b:33:3c:66:
b0:04:db:62:c0:54:69:37:21:65:7d:c1:50:5e:5e:16:a5:66:
c0:e2:64:ba:fa:3e:6b:5a:a4:bc:5e:fb:0b:26:0c:6f:22:14:
72:ae:c8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 16:42:01 2024 by rpki-client on console-ams.rpki-client.org