Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/bKLKZA5xamcR64aa9ZhIgk-d_s0.roa
File: bKLKZA5xamcR64aa9ZhIgk-d_s0.roa (raw, json)
Hash identifier: Q525KM6t82A4O+77WxnlLv0iD4OwpRqu5I01TsLATwM=
Subject key identifier: 6C:A2:CA:64:0E:71:6A:67:11:EB:86:9A:F5:98:48:82:4F:9D:FE:CD
Certificate issuer: /CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Certificate serial: 01884D07009BE68DCE758547E9E396AEFC26
Authority key identifier: 8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/bKLKZA5xamcR64aa9ZhIgk-d_s0.roa
Signing time: Wed 24 May 2023 09:11:24 +0000
ROA not before: Wed 24 May 2023 09:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 45.128.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 10:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:07:00:9b:e6:8d:ce:75:85:47:e9:e3:96:ae:fc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Validity
Not Before: May 24 09:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ca2ca640e716a6711eb869af59848824f9dfecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:13:b3:80:00:14:fb:13:31:7c:37:c3:7f:3b:
50:63:f3:2f:0f:81:08:74:d8:d7:18:85:2b:5e:2e:
1d:1c:98:ee:f5:e3:ed:c2:0e:5f:74:e8:3f:c1:e1:
2b:5c:e4:fe:4e:06:4b:d6:c5:85:8e:18:80:07:85:
77:9b:01:1e:9d:5e:01:3d:d7:b1:76:9d:98:ce:e1:
18:fe:fa:37:37:f8:8c:86:9f:2d:02:90:5a:f3:e9:
69:fe:4a:94:ab:f8:d5:0f:98:71:46:d6:b2:ca:b9:
6b:e8:c9:ea:23:1c:83:52:cb:f8:09:fa:7a:9f:32:
4e:08:4e:e3:1a:a5:a9:56:1e:0e:64:67:68:a6:28:
29:e1:84:4b:b0:01:f5:da:39:75:12:98:ec:c5:3f:
f8:e7:52:71:56:7d:55:d6:61:7d:35:a0:b7:b1:3d:
0c:14:dc:e4:9a:2a:92:09:e7:79:27:9e:00:aa:dc:
5e:6a:d5:d8:d1:9d:10:5e:e5:08:5d:c6:68:7c:33:
3a:ac:14:d4:89:0a:e0:75:ae:6f:5e:e3:80:8e:08:
72:12:9b:7e:d3:46:73:c0:a9:5d:a9:59:f9:f0:57:
2d:b0:ca:4c:7a:03:a8:2e:d9:da:93:0b:25:7f:a9:
85:bc:22:6d:4b:da:85:4a:e6:8f:25:8d:12:b2:3e:
23:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A2:CA:64:0E:71:6A:67:11:EB:86:9A:F5:98:48:82:4F:9D:FE:CD
X509v3 Authority Key Identifier:
keyid:8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/bKLKZA5xamcR64aa9ZhIgk-d_s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/i3-BpueC4hEYnE805Fm0Imx19KY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.172.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:fb:01:08:e5:ba:54:2e:44:42:db:2e:e7:f9:2f:a8:a9:78:
f5:4c:6b:89:af:72:c6:6e:65:fd:4d:d1:5a:93:e7:07:61:68:
24:23:2e:d0:a1:b6:3b:f0:36:de:66:8a:25:91:e1:fd:c7:59:
40:c3:38:e5:88:ab:09:78:cc:93:52:0a:e7:9a:bd:49:3f:4a:
fd:e4:1e:34:0a:04:a9:36:05:ea:1f:f7:93:41:60:0b:0c:70:
0e:3a:4e:46:b3:25:f7:f9:b7:b2:85:9d:ef:2d:a7:6d:ed:ae:
50:ea:62:b7:55:6a:6c:f2:a3:1a:6a:3a:e9:30:b1:86:87:25:
ab:db:f0:ee:1e:92:7b:96:92:28:81:38:ca:c6:f9:c1:a7:01:
c9:30:e5:e5:7c:71:1d:17:42:e6:ce:1f:50:2e:23:50:17:58:
00:f9:af:c1:be:23:49:c1:41:36:db:c3:fd:83:5c:6d:db:09:
e4:a7:6b:4f:d5:33:f1:50:97:91:11:e9:ca:b6:3f:75:b9:99:
fd:95:33:90:e3:66:32:c3:bf:74:23:c1:8c:b5:0c:f8:a6:18:
2b:4c:a7:f5:e8:34:3a:8b:6a:2b:9f:87:0f:07:c7:80:88:7a:
26:f9:c9:12:15:9b:b8:cf:e9:ec:08:f6:a2:9f:59:1e:b2:0f:
26:89:33:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:53 2024 by rpki-client on console-ams.rpki-client.org