Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/e5abxwjYB0yzGX0Op3lz8AWUIGc.roa
File: e5abxwjYB0yzGX0Op3lz8AWUIGc.roa (raw, json)
Hash identifier: dmSTeuNMit7YOjcVWRQEX8xLp5NkRS3dCIoxsLTtewc=
Subject key identifier: 7B:96:9B:C7:08:D8:07:4C:B3:19:7D:0E:A7:79:73:F0:05:94:20:67
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018CC8DE1B6B9BC290C844365E025D426A78
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/e5abxwjYB0yzGX0Op3lz8AWUIGc.roa
Signing time: Tue 02 Jan 2024 06:30:48 +0000
ROA not before: Tue 02 Jan 2024 06:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216357
IP address blocks: 45.150.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Nov 2024 20:07:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:1b:6b:9b:c2:90:c8:44:36:5e:02:5d:42:6a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 2 06:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b969bc708d8074cb3197d0ea77973f005942067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:68:40:20:3b:c4:58:34:a3:1c:72:92:e3:
a0:2b:a9:c0:d5:6c:5d:97:29:c6:be:fb:c0:c2:99:
c3:56:e6:26:f9:03:56:86:7f:95:04:da:83:c7:ee:
33:bf:1b:ef:71:dc:10:b8:4f:09:8a:24:2c:ca:f8:
8d:16:29:e1:12:c4:7f:2d:ab:56:2b:35:e7:32:e6:
6f:a1:36:7b:bd:0b:a9:10:1b:26:94:f6:aa:d4:76:
ed:dc:ef:79:d6:2c:b3:1a:d3:e9:bb:4b:fb:3f:cf:
e0:41:8b:60:76:37:8b:d6:eb:65:11:c0:19:2a:e0:
91:16:bf:32:ea:40:a8:a0:c8:1a:e1:38:42:c8:b2:
4d:3f:51:15:09:70:9b:89:8d:b2:f5:f3:cd:22:c7:
5a:2f:ca:0f:2a:1e:2c:b3:1e:c5:fb:50:26:fe:ca:
67:a9:4f:3d:29:c2:9f:da:4b:de:93:6c:d0:30:1b:
03:5b:c1:bc:ed:cc:d8:40:37:c5:00:a4:a5:0b:25:
e1:dd:26:fe:9f:62:35:07:c9:64:c8:2d:c7:4d:a1:
78:56:a1:40:6c:65:25:09:0d:2a:53:86:16:7b:64:
dc:83:45:50:63:5b:32:31:76:3a:ed:a8:11:88:fe:
4b:2a:72:f1:6a:d1:8d:0c:5f:73:25:ac:a1:a7:78:
eb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:96:9B:C7:08:D8:07:4C:B3:19:7D:0E:A7:79:73:F0:05:94:20:67
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/e5abxwjYB0yzGX0Op3lz8AWUIGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.174.0/24
Signature Algorithm: sha256WithRSAEncryption
31:80:a4:e2:9f:e5:35:99:c0:2d:6b:fc:d9:a9:ce:75:8b:16:
bb:45:9e:46:0b:47:20:40:9d:e8:37:17:88:f3:87:44:8e:3c:
9c:33:8b:70:ec:38:01:b3:8d:40:c7:68:b0:ca:cf:ac:1b:0a:
4a:d3:26:20:d7:db:4d:a6:01:39:11:36:50:fe:e7:dc:06:bd:
6f:38:b6:c5:4f:37:1f:92:35:11:a4:c9:e3:cb:02:d1:41:22:
5f:be:2b:9e:30:2c:74:87:5e:28:e3:de:45:32:a7:6b:1b:7a:
c8:45:d4:09:df:da:21:d0:90:4b:e4:fe:41:41:b9:ba:12:68:
fd:24:04:62:88:a2:46:3a:3b:34:af:78:31:27:1b:c8:7c:d5:
09:bf:e5:f0:f6:12:4e:d5:db:aa:32:0e:db:17:76:65:6b:95:
27:3e:d6:a0:d8:e7:9d:8a:b0:4f:d6:e4:35:ef:57:22:8f:95:
53:91:a0:ad:cd:89:7e:34:f9:fa:66:83:46:68:09:4e:88:8a:
44:01:29:d1:90:d8:8c:9c:01:ec:49:42:42:b8:27:5e:92:13:
a3:28:d2:3d:94:8b:38:4e:60:6e:0e:74:e5:f3:f9:47:ec:75:
6e:32:be:22:1f:3c:ef:22:dd:13:90:45:4c:9f:f6:af:00:a6:
28:a6:24:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:46:28 2024 by rpki-client on console-ams.rpki-client.org