Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pYwScnindEuBP3IuxZg4ftOvRNE.roa
File: pYwScnindEuBP3IuxZg4ftOvRNE.roa (raw, json)
Hash identifier: psyRsoEmIEFZXfBwGZFlHPSIi055Eh++HTDyS6r6oAs=
Subject key identifier: A5:8C:12:72:78:A7:74:4B:81:3F:72:2E:C5:98:38:7E:D3:AF:44:D1
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018E6A4E125416B357FC3147B1ECB5E3618D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pYwScnindEuBP3IuxZg4ftOvRNE.roa
Signing time: Sat 23 Mar 2024 07:54:45 +0000
ROA not before: Sat 23 Mar 2024 07:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47757
IP address blocks: 45.132.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 19:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6a:4e:12:54:16:b3:57:fc:31:47:b1:ec:b5:e3:61:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Mar 23 07:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a58c127278a7744b813f722ec598387ed3af44d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c9:b8:01:fc:a1:4f:94:73:c0:ff:97:95:4f:
5b:ac:be:87:dc:eb:3a:85:9f:6e:45:12:43:61:45:
08:67:60:dc:95:86:bd:0c:6d:53:2b:9e:b4:19:aa:
d1:4a:3b:a5:b8:6c:a1:7b:6c:cd:fc:6c:c9:6b:4f:
b5:23:c5:2a:60:a7:15:b2:c9:c7:9e:c0:db:50:be:
89:2d:50:1a:f8:fc:ee:e7:b3:62:37:03:69:8a:18:
c7:3f:d9:cf:5c:62:35:47:39:d3:dc:ed:b4:3c:0e:
68:3d:23:cc:d9:bb:f7:d4:b8:e6:31:00:9c:0e:c4:
c2:30:dd:e4:5f:75:d6:93:ca:ec:06:63:4b:47:b3:
df:61:22:0a:77:37:c4:a4:97:b3:46:c9:ec:16:0f:
84:20:8a:81:e8:06:70:fe:68:cd:b4:35:97:0b:bc:
15:7f:34:d0:f4:5a:7a:6c:b0:43:69:90:96:79:c3:
85:f6:b8:8b:33:75:d7:33:0d:43:54:e4:85:49:c1:
1a:df:ab:6a:4f:c7:3a:14:d6:b6:b2:1e:03:72:9e:
eb:ed:fd:c9:d0:68:c5:31:69:48:32:c7:2c:82:23:
ca:35:e3:1c:63:df:0d:e9:f3:b0:df:c3:dc:31:b7:
61:0c:44:b4:41:ab:7e:23:67:ca:a0:3f:a4:96:14:
2d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:8C:12:72:78:A7:74:4B:81:3F:72:2E:C5:98:38:7E:D3:AF:44:D1
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/pYwScnindEuBP3IuxZg4ftOvRNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.180.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:14:c6:93:c2:cc:b8:d5:9e:ee:ee:02:9f:db:de:1a:3b:4a:
86:89:93:8c:34:1a:4d:ea:92:2d:89:28:0b:87:d1:e9:01:bc:
fa:e8:dd:f6:78:a9:3d:82:1f:ef:ac:e9:f0:94:b1:64:5e:bb:
f8:80:bc:70:2b:65:80:78:9f:24:c2:c7:18:63:31:f6:69:02:
e5:57:84:65:42:ab:b1:9d:fa:f3:e0:d3:81:49:5d:d1:62:49:
95:27:ef:d2:33:c4:28:2f:68:ec:4d:01:b5:73:fe:fa:3d:1b:
61:7d:ad:20:26:12:c0:a8:02:45:2e:72:aa:35:60:77:ae:40:
1c:a9:ac:2b:9a:df:f8:1c:9d:e0:a5:0d:f6:a3:39:b1:66:07:
14:47:f2:b6:b9:18:4d:be:ba:90:c4:c3:33:f2:62:ed:01:36:
ee:36:1e:ce:0f:3b:8c:a1:2f:1c:38:f6:56:11:d9:b3:35:53:
9a:aa:3d:73:60:a3:1e:17:d8:d0:97:4c:e8:c7:ec:8a:9d:74:
06:48:33:f8:83:28:06:a3:e4:f1:44:91:71:b3:d0:71:eb:78:
f8:8a:34:26:de:95:ea:2a:78:cf:f9:22:f5:77:7e:fe:93:c1:
93:03:a2:51:78:f0:17:94:a5:7b:ab:d7:ea:10:e5:e1:ea:68:
3d:27:68:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org