Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/PmbNLjKfWRQpFXGqIC0z3hRT22U.roa
File: PmbNLjKfWRQpFXGqIC0z3hRT22U.roa (raw, json)
Hash identifier: XSp11KCu8vbHHMgzvvSn6sanOJtyiraUXPK0hb7ninc=
Subject key identifier: 3E:66:CD:2E:32:9F:59:14:29:15:71:AA:20:2D:33:DE:14:53:DB:65
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 019157EFCFCAF93D662A74EFD2B55849C4A3
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/PmbNLjKfWRQpFXGqIC0z3hRT22U.roa
Signing time: Thu 15 Aug 2024 21:26:59 +0000
ROA not before: Thu 15 Aug 2024 21:26:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.148.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 05:34:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:57:ef:cf:ca:f9:3d:66:2a:74:ef:d2:b5:58:49:c4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Aug 15 21:26:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e66cd2e329f5914291571aa202d33de1453db65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:11:7c:c5:87:35:c9:d7:c0:b1:a6:d0:7d:71:
8a:5e:bc:62:eb:4a:11:dd:a5:00:4c:fd:e3:f6:a8:
d9:ea:39:4c:3f:89:66:74:96:73:a4:9e:1c:fd:91:
a2:2c:e4:45:cd:9f:fc:35:01:53:e8:10:c4:49:23:
cf:ac:67:43:46:c8:41:a0:3f:39:18:68:30:0b:fe:
5a:a6:41:4b:9f:2b:3d:78:fc:dc:38:ee:b8:d0:51:
b6:c9:ce:1d:5f:10:fa:8a:87:c0:e8:61:40:2e:8a:
b6:54:3d:81:7d:e4:9c:61:45:80:19:01:6d:f2:fe:
2b:db:ec:ef:27:28:8d:b4:2b:96:24:d8:3e:c6:03:
fc:ae:0c:04:b2:db:c0:47:c4:d3:df:d3:26:37:79:
20:ca:29:dc:d5:01:6c:f5:58:d0:e4:10:29:87:54:
c6:be:7b:42:fa:da:23:5e:fd:21:8e:3b:26:91:f0:
c6:95:10:40:f7:4a:8a:47:38:3b:6f:0a:92:1e:af:
a9:db:81:c8:a4:42:bc:c1:7b:22:a1:64:ad:99:b5:
0d:ed:4c:42:36:75:f5:da:a4:73:e4:55:4a:22:29:
04:b5:74:b5:75:ec:e2:e7:58:0d:72:b1:b1:e0:b3:
6d:9a:51:5e:5c:cb:86:7e:c9:69:41:91:c7:da:c4:
2e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:66:CD:2E:32:9F:59:14:29:15:71:AA:20:2D:33:DE:14:53:DB:65
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/PmbNLjKfWRQpFXGqIC0z3hRT22U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.134.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:7f:3f:3c:12:bd:9b:14:15:fa:e0:b7:af:c7:e6:df:64:e8:
a2:fa:cc:89:ce:73:4a:96:33:a8:82:95:53:d1:4c:a9:72:bb:
0a:b1:07:5c:6a:e2:ce:08:17:6a:47:f1:80:37:75:a3:f3:72:
9f:b1:d2:8d:5b:0e:69:61:59:d1:84:9b:c4:81:15:5f:fa:87:
99:5d:3e:60:92:c1:c5:5f:ee:4f:0a:5c:92:e1:68:c5:86:35:
f8:9c:ef:5f:72:87:01:4c:db:bc:83:94:33:41:6c:bd:bb:f1:
e8:c0:7d:11:31:22:3f:d0:6b:c1:8f:8d:42:a3:fd:0e:dd:f6:
7f:06:3d:8d:a2:50:0e:b2:2d:ad:28:20:2a:13:02:51:cc:48:
59:83:e7:b5:90:5e:54:db:19:9d:16:ab:39:14:a2:11:9e:8b:
e2:ba:8f:b4:57:43:2b:0b:75:37:cf:6d:f8:07:c9:6c:9c:fa:
21:d1:98:dd:34:5c:6f:3a:8e:f1:f5:f0:9f:43:b9:64:31:c8:
a5:e5:da:77:3c:a2:9d:82:fb:65:08:e0:4c:3d:db:de:a8:e5:
6b:34:6e:26:cd:76:61:00:45:94:81:4f:df:15:e6:60:3d:02:
d6:7c:6f:0d:c1:99:70:6f:66:f6:e2:a6:0b:75:ee:01:8e:f4:
3f:32:e7:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 07:45:54 2024 by rpki-client on console-fra.rpki-client.org