Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/On6lZuLUtDvLSP7peVFQx48TXvo.roa
File: On6lZuLUtDvLSP7peVFQx48TXvo.roa (raw, json)
Hash identifier: 92WhOoWUJ8bQ/d8SgCg1w8AW4BA4lPejX14z26w5MFA=
Subject key identifier: 3A:7E:A5:66:E2:D4:B4:3B:CB:48:FE:E9:79:51:50:C7:8F:13:5E:FA
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018F2F7E2971C0F679AC04673CD41B6273C8
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/On6lZuLUtDvLSP7peVFQx48TXvo.roa
Signing time: Tue 30 Apr 2024 14:52:28 +0000
ROA not before: Tue 30 Apr 2024 14:52:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215391
IP address blocks: 45.132.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 May 2024 17:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:7e:29:71:c0:f6:79:ac:04:67:3c:d4:1b:62:73:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 30 14:52:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a7ea566e2d4b43bcb48fee9795150c78f135efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:3b:7e:40:5e:15:9d:46:ca:be:e7:1e:2c:
69:67:99:41:cb:ac:6a:14:22:06:25:05:56:c0:11:
d9:7b:9c:a9:27:d3:69:73:10:8d:96:aa:38:f9:d2:
ca:60:ca:93:19:44:8d:c1:85:06:c2:48:98:9e:b6:
54:f0:4f:8a:8f:34:f2:06:d0:05:be:1a:77:f9:9d:
78:ed:75:79:b3:94:55:5a:52:c9:7c:a4:1c:4a:ed:
01:88:c5:d8:7b:fe:23:d5:e0:04:5b:97:2a:18:ad:
72:b6:0b:10:6b:af:64:2a:1b:a3:14:cb:4a:f1:a2:
ed:69:5f:a8:11:1c:5e:d1:ec:18:f2:12:0a:8b:aa:
2a:ae:43:f0:f4:bc:62:e3:ce:aa:83:a7:42:f6:87:
eb:04:45:06:3a:c9:35:19:3b:cc:48:a1:73:f8:82:
99:ae:8f:34:f0:9b:c5:4c:3f:23:83:a7:d8:6e:b3:
37:22:63:a8:23:56:3a:4d:b8:7f:89:ec:a4:2c:2a:
71:25:9e:c8:12:0a:bb:2c:15:49:a2:a5:ba:b0:77:
fb:2b:65:95:11:6e:a8:e1:36:87:55:89:bb:cd:09:
9e:56:f1:f6:9f:50:7c:4a:5b:77:84:07:7f:fa:6f:
1c:3a:b2:74:28:6f:5f:6e:f0:bd:9d:bb:6c:12:93:
58:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7E:A5:66:E2:D4:B4:3B:CB:48:FE:E9:79:51:50:C7:8F:13:5E:FA
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/On6lZuLUtDvLSP7peVFQx48TXvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ab:2f:ed:52:bb:ae:45:46:87:4f:17:54:07:2d:d3:b3:4f:
03:cc:0b:71:4a:0f:38:54:8e:bc:3f:af:1d:6c:55:10:e0:36:
97:ee:0c:2c:7b:60:18:34:38:46:38:6b:72:a2:f3:7f:8a:1a:
5b:66:31:05:ff:55:5d:e5:07:7d:aa:d7:20:b8:7c:a5:b9:1f:
8c:3d:52:93:30:fa:e0:3f:9d:4d:ef:38:41:c9:e9:4c:fa:29:
58:25:12:fa:18:76:5d:82:e3:90:93:08:f5:9e:43:d5:58:6e:
2c:8b:b0:99:94:9a:67:fa:ca:e9:51:b3:8e:1c:5b:c2:39:6e:
83:63:99:89:4a:a2:f6:12:e8:99:73:3f:53:e0:99:8f:e3:64:
61:83:fb:fe:74:f3:39:ea:03:97:01:57:50:b9:8b:92:da:1c:
06:75:60:6e:17:0d:fb:4f:fe:1c:92:f9:e8:aa:e6:4f:51:13:
47:e8:fa:ad:de:09:75:63:c1:77:73:cf:69:71:f0:4c:af:cf:
59:7c:bb:f9:0c:a3:4b:f6:59:bd:cf:44:f0:54:fa:48:2c:71:
4b:5b:ce:27:40:f4:3f:8d:2c:8c:dd:fb:5c:d8:06:46:df:15:
5a:80:ac:27:9f:b5:35:c1:38:44:e3:19:28:98:ea:fc:a2:47:
ca:6d:70:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 19:20:18 2024 by rpki-client on console-ams.rpki-client.org