Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6nb5Le712f0HJC0rfzS4xKNL19Y.roa
File: 6nb5Le712f0HJC0rfzS4xKNL19Y.roa (raw, json)
Hash identifier: uR/uzSvCiWP9jvuiQ/0rT/JUKx1LtGkrTALyckAtjVs=
Subject key identifier: EA:76:F9:2D:EE:F5:D9:FD:07:24:2D:2B:7F:34:B8:C4:A3:4B:D7:D6
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018A444FF27183C994C12BA824BFCC0D7757
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6nb5Le712f0HJC0rfzS4xKNL19Y.roa
Signing time: Wed 30 Aug 2023 02:40:04 +0000
ROA not before: Wed 30 Aug 2023 02:40:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204174
IP address blocks: 45.152.163.0/24 maxlen: 24
45.152.162.0/23 maxlen: 23
45.152.162.0/24 maxlen: 24
45.92.219.0/24 maxlen: 24
45.92.218.0/23 maxlen: 23
45.92.218.0/24 maxlen: 24
45.134.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:44:4f:f2:71:83:c9:94:c1:2b:a8:24:bf:cc:0d:77:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 30 02:40:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea76f92deef5d9fd07242d2b7f34b8c4a34bd7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b3:56:15:66:25:9b:62:5c:6e:95:19:67:f6:
d6:ce:c7:51:40:67:a1:d3:5b:ab:2d:a8:74:b7:01:
83:c5:ac:f7:0d:19:64:c0:19:58:36:52:ac:64:6b:
d2:d0:e2:16:ca:23:71:79:dc:7e:d1:19:2e:3a:56:
55:b9:09:f3:66:98:f6:bd:c9:7b:01:b7:81:88:10:
c8:8e:d6:e4:66:74:20:85:2f:b3:d3:44:cd:5d:0b:
ec:61:c5:0c:11:88:e7:aa:3e:7c:fd:67:96:7f:40:
07:72:3f:ad:c5:21:2e:26:0d:21:f3:c7:e3:cf:3a:
3c:85:8d:b8:de:bd:45:96:3f:4f:93:f3:f5:42:f5:
78:f9:a3:71:8a:d5:1f:19:4c:94:be:14:1e:a7:d2:
e3:2b:ca:02:6f:e0:6c:f0:c4:1f:02:94:a7:03:46:
a3:cd:6a:f8:42:ab:16:fd:d1:45:ee:2b:18:5b:c8:
98:07:fb:01:75:f2:a0:98:ed:53:71:ef:c4:f4:88:
13:e3:71:58:4d:ef:11:21:27:d7:7b:1d:f3:f5:77:
62:99:cc:ab:18:b8:1e:78:f7:b1:16:c1:e6:32:f8:
e8:04:34:07:a3:e2:9e:0b:e0:01:ac:11:0d:73:01:
37:fa:b8:5b:25:f9:ec:68:ad:74:9c:1f:19:ed:7c:
91:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:76:F9:2D:EE:F5:D9:FD:07:24:2D:2B:7F:34:B8:C4:A3:4B:D7:D6
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6nb5Le712f0HJC0rfzS4xKNL19Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.218.0/23
45.134.38.0/24
45.152.162.0/23
Signature Algorithm: sha256WithRSAEncryption
98:64:06:d4:6c:ae:86:bf:fb:5f:f2:da:40:fe:06:b5:f4:d3:
dd:ab:9c:b4:e5:dd:5b:bf:46:18:88:e0:37:9d:20:4b:32:23:
c7:0e:bd:d4:a7:30:b9:ad:fb:a4:8a:76:e9:7e:a0:d2:00:e7:
9a:f0:e1:da:49:41:fc:2d:5d:d9:5c:3c:53:35:99:9f:42:34:
c9:7d:92:97:3c:45:61:ae:60:8d:63:9a:06:2e:40:03:0a:a0:
92:d5:35:2c:b1:75:f0:1d:27:c9:10:7b:0f:d6:de:69:9b:e2:
e9:00:96:13:cc:d4:3f:74:3f:b8:66:d7:27:ee:9f:76:e1:94:
fa:88:55:ce:80:85:22:b8:6a:55:1f:1d:d2:c7:d6:7a:25:a3:
65:63:17:a4:a8:2e:dc:73:bf:1a:fa:11:d5:d0:91:1f:33:1b:
88:2e:3a:c1:89:bd:7b:4a:34:7b:bf:ec:14:fa:8c:10:fa:3c:
62:df:17:08:a4:a9:e4:44:e5:14:7c:f6:d8:af:a6:50:5a:ab:
98:87:58:74:03:6d:f7:1c:48:fb:70:47:35:b7:60:00:f8:5b:
8f:14:60:80:51:7c:d7:82:03:82:29:b2:c1:44:de:4f:ce:01:
10:12:18:5a:ec:dd:d6:97:23:0c:16:15:11:90:ff:f4:b9:8e:
e1:dd:2b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org