Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EHBuBsTzodgGEOAg2hFkud6nNDc.roa
File: EHBuBsTzodgGEOAg2hFkud6nNDc.roa (raw, json)
Hash identifier: EjesS9h5thSetXHI7iJcjX7PWZh5+8zQ8lNemRu7YBo=
Subject key identifier: 10:70:6E:06:C4:F3:A1:D8:06:10:E0:20:DA:11:64:B9:DE:A7:34:37
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018EC8A7D891E3A060F214B4E0504539FA44
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EHBuBsTzodgGEOAg2hFkud6nNDc.roa
Signing time: Wed 10 Apr 2024 15:37:06 +0000
ROA not before: Wed 10 Apr 2024 15:37:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.65.113.0/24 maxlen: 24
188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 19:05:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c8:a7:d8:91:e3:a0:60:f2:14:b4:e0:50:45:39:fa:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Apr 10 15:37:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10706e06c4f3a1d80610e020da1164b9dea73437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2b:bf:55:12:0f:d7:c5:85:57:a7:9f:93:77:
6c:fa:6a:a0:f6:c3:2f:c0:92:93:29:4a:1f:16:7a:
6e:3d:cd:e6:a5:29:b3:28:1c:a5:0c:8b:a2:7c:4f:
f9:6e:62:be:6a:bf:ac:30:52:e9:d5:1d:68:9d:99:
bc:58:1e:27:e5:ea:76:6f:ca:c0:f1:79:ea:7a:7c:
38:10:d7:41:32:82:2d:2a:7c:8b:58:8c:1d:37:27:
a4:91:99:e5:bf:45:11:9a:29:ad:8b:43:44:24:f9:
09:89:47:10:46:80:e9:20:ae:a6:d9:54:23:e1:86:
ca:4b:48:48:3c:a2:27:4e:6d:8d:f9:dc:ce:a3:3c:
5a:a7:66:ba:84:a4:7d:2a:50:c8:6e:25:c9:2b:ec:
a5:ff:81:a3:f2:f7:63:fe:92:e6:fb:52:3b:01:17:
39:51:b3:fd:bb:50:9c:97:c4:0a:14:8e:3e:00:3a:
b3:6b:42:ae:40:30:89:2c:0d:00:0b:19:47:9b:47:
47:d2:2a:8c:57:00:31:d1:b1:22:a8:88:23:c6:8e:
d0:4e:1c:10:d6:f1:e0:80:1e:c2:53:d4:40:a6:47:
c5:85:8b:16:5d:50:54:3f:71:bf:95:90:3d:6d:49:
65:8c:37:29:9a:36:ec:76:a2:4a:49:de:c6:9e:e3:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:70:6E:06:C4:F3:A1:D8:06:10:E0:20:DA:11:64:B9:DE:A7:34:37
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EHBuBsTzodgGEOAg2hFkud6nNDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.113.0/24
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
99:dd:95:4e:de:9b:36:c3:70:d8:9c:8d:7c:b6:14:eb:5d:db:
e0:d1:af:c1:37:32:09:9f:85:96:f6:fb:1a:75:1f:2c:c4:0a:
4c:d8:7c:9a:13:8e:24:7e:07:cf:4c:c8:02:1b:e8:6b:60:fd:
9a:85:90:d2:16:cf:c0:bc:ca:45:1a:5f:0c:c0:ee:ac:1d:c1:
ca:7e:ea:4e:65:19:8f:47:8d:18:bb:fa:02:a6:78:b6:2c:fe:
48:d3:fa:9c:93:4e:c6:d7:83:4a:dc:bc:3f:d8:e0:ca:c2:48:
39:63:a0:2c:73:b4:e9:ce:44:f2:76:b0:64:d3:85:b0:0f:44:
d6:bd:3d:bb:b8:79:3d:6b:88:40:dd:ba:64:13:56:a5:8f:a9:
3b:72:cc:63:c5:ae:e8:d8:f8:5f:08:ea:59:2d:07:99:c3:fe:
23:66:ea:3b:82:9e:85:b8:ad:41:09:b1:46:b7:8a:b4:8a:0f:
3d:55:e0:38:d2:27:22:3e:34:fc:66:8d:86:6b:95:5c:74:09:
65:16:ec:c9:ad:a7:43:c4:54:c1:5d:dc:c2:bc:b8:12:0d:88:
ee:fe:98:68:b7:ea:22:0e:51:db:c1:fe:a2:62:22:a0:01:36:
c9:33:0b:9b:6d:79:0c:cd:f1:0c:fe:3b:42:5d:61:f8:ad:62:
ad:d5:3c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 21:40:06 2024 by rpki-client on console-fra.rpki-client.org