Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/_oBc2mbHvVvHVtUjPTP7Y5x_kDE.roa
File: _oBc2mbHvVvHVtUjPTP7Y5x_kDE.roa (raw, json)
Hash identifier: pqTSMSWu1pTZ8sWjvStLGMnRNGOoZwiDvRca1JLsM1k=
Subject key identifier: FE:80:5C:DA:66:C7:BD:5B:C7:56:D5:23:3D:33:FB:63:9C:7F:90:31
Certificate issuer: /CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759
Certificate serial: 018B2EA966A620BA26DECD13A6CEA644C06F
Authority key identifier: AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/_oBc2mbHvVvHVtUjPTP7Y5x_kDE.roa
Signing time: Sat 14 Oct 2023 14:48:55 +0000
ROA not before: Sat 14 Oct 2023 14:48:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 185.180.147.0/24 maxlen: 24
45.133.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 14 Oct 2023 16:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2e:a9:66:a6:20:ba:26:de:cd:13:a6:ce:a6:44:c0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759
Validity
Not Before: Oct 14 14:48:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe805cda66c7bd5bc756d5233d33fb639c7f9031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:33:69:d1:66:d5:89:01:39:de:2d:d0:51:
a2:e7:a5:f8:ca:2d:30:c1:c8:de:8a:a8:d7:26:ff:
9d:0a:d4:ac:32:c9:b9:01:b6:76:23:e7:ca:8e:bf:
d0:f7:73:16:e0:c7:03:4d:c7:25:32:b0:92:c3:b5:
2d:be:6e:f2:af:73:f1:62:e0:10:0e:ee:91:01:a2:
27:b2:b2:58:3e:22:f5:34:a2:8a:b4:04:76:8f:f5:
34:0f:2a:c8:da:37:e3:ef:83:e0:e3:50:d7:70:ea:
00:c8:d6:eb:6d:0a:20:4a:dc:d8:4f:28:de:9c:8c:
65:f6:61:1f:32:9e:53:f0:f3:cd:cc:f7:eb:83:a9:
88:6c:9a:82:54:c8:e5:4e:93:67:94:50:25:7d:01:
34:a8:d1:58:65:9d:3f:a7:04:fb:88:22:a4:3b:80:
de:9a:0a:ec:5b:db:b5:09:12:02:c3:c9:a3:d5:94:
40:7e:c6:e8:4d:92:9c:b8:40:35:99:3c:55:3f:a0:
3a:5f:ac:c1:11:65:7c:b9:99:6b:f9:72:96:97:57:
dd:7e:58:25:70:96:63:6d:84:0e:f5:f1:95:85:99:
00:ee:07:1c:ae:e6:d4:40:ce:f6:e1:98:3c:ec:5d:
22:26:3b:af:d1:3b:c4:60:37:d8:83:3b:93:77:98:
67:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:80:5C:DA:66:C7:BD:5B:C7:56:D5:23:3D:33:FB:63:9C:7F:90:31
X509v3 Authority Key Identifier:
keyid:AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/_oBc2mbHvVvHVtUjPTP7Y5x_kDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.56.0/22
185.180.147.0/24
Signature Algorithm: sha256WithRSAEncryption
86:57:36:ad:5e:34:0e:88:3b:74:e6:22:25:90:1b:43:bf:1c:
3a:6b:48:68:69:be:ec:1f:da:a3:a8:83:58:b1:92:53:31:62:
de:1f:c1:d6:1f:77:55:a5:41:8f:09:69:f8:0c:26:c2:8c:49:
9f:6a:8c:1f:24:92:a4:ea:c9:aa:45:c0:19:6b:7a:be:f5:92:
bb:0e:6b:27:f0:dc:40:6f:29:36:69:40:f1:9a:81:99:e1:97:
62:8d:69:f1:2e:64:65:9a:b2:cf:1a:fc:08:f5:1c:0f:51:fa:
31:cf:60:51:06:65:a3:6c:d0:55:fc:d2:06:d5:09:31:2c:4a:
e5:c8:c6:6a:dc:a1:d3:89:c7:c1:31:b7:5b:b8:e5:e3:01:e7:
ef:ca:f7:77:3a:d7:6e:1b:fe:f9:d8:0b:5b:00:33:12:ab:b7:
41:a3:10:a2:d0:d6:04:eb:dc:9e:33:23:02:74:41:ff:46:1a:
63:2a:aa:bb:8c:33:a2:75:9d:9b:bc:a3:17:89:00:e1:c7:b3:
59:2d:e4:3e:3c:f7:ca:10:88:de:f0:83:e9:a8:e0:14:e2:7c:
09:13:d5:9f:49:46:95:84:69:d6:cc:ad:ee:ab:86:14:24:99:
d1:a8:0c:f8:a1:60:fb:ea:07:fb:f1:b1:25:28:04:39:64:46:
ee:20:28:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:44 2024 by rpki-client on console-ams.rpki-client.org