Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/pKAoIvdk3TQltENRTSJ4rVNCczY.roa
File: pKAoIvdk3TQltENRTSJ4rVNCczY.roa (raw, json)
Hash identifier: AvMZX0ZkIUqHTpcHLKqeX/gGIv95yE3uAEO34PAlMyE=
Subject key identifier: A4:A0:28:22:F7:64:DD:34:25:B4:43:51:4D:22:78:AD:53:42:73:36
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188D2C1EDBE1F06B98D4DBD497B0206EBBE
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/pKAoIvdk3TQltENRTSJ4rVNCczY.roa
Signing time: Mon 19 Jun 2023 08:25:04 +0000
ROA not before: Mon 19 Jun 2023 08:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 11:27:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:c1:ed:be:1f:06:b9:8d:4d:bd:49:7b:02:06:eb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 19 08:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4a02822f764dd3425b443514d2278ad53427336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:87:0f:f1:70:10:72:0e:14:cd:de:94:f9:d4:
0f:ac:42:00:db:59:2c:29:3d:f9:b9:6e:bb:5c:4e:
1e:12:90:81:8a:44:5b:3b:15:9f:58:44:09:a6:e1:
75:f4:34:44:68:a6:f0:7a:c7:72:d4:7b:a4:5a:43:
71:62:b0:55:e0:c3:14:9c:9c:0d:4e:5f:a5:05:cb:
b0:a1:59:3b:1e:09:2d:0d:25:1a:b0:13:94:cd:e3:
ea:5b:b2:fd:b6:88:1b:98:9f:fb:7c:80:ea:62:fc:
d7:67:c3:92:24:94:bc:96:4d:c4:79:b6:62:ff:b8:
96:19:7c:61:a9:03:cc:18:ff:dc:aa:0b:d6:25:9d:
a3:ba:5b:f1:9e:d0:bf:94:22:f7:c3:72:88:e8:b1:
54:b5:8f:49:9b:27:c9:8b:69:9f:b1:96:70:af:36:
93:54:54:f3:b7:84:37:8f:0f:ec:f6:37:31:c9:32:
1d:d0:2e:87:c7:91:0a:39:2d:e4:2e:a3:99:5d:47:
82:8d:5b:14:4a:44:b5:63:3f:1c:a4:cc:e8:61:4d:
53:2e:22:b4:cd:89:76:8d:2b:ec:8b:fb:0b:da:0c:
ed:1f:c0:75:a7:6c:89:5c:7d:be:de:e1:dd:e9:bd:
e4:4a:aa:be:e4:9a:b6:30:d9:2f:e6:06:3e:ad:a0:
16:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A0:28:22:F7:64:DD:34:25:B4:43:51:4D:22:78:AD:53:42:73:36
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/pKAoIvdk3TQltENRTSJ4rVNCczY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
79.98.247.0/24
194.146.93.0/24
Signature Algorithm: sha256WithRSAEncryption
38:ac:7c:4e:af:27:1f:7a:b5:6d:3a:9b:1f:f8:43:29:40:7d:
31:ea:72:0e:30:16:29:d1:62:35:8f:1f:5a:61:e7:a0:8c:22:
b7:18:68:71:2d:06:0c:fa:0d:a2:bf:ff:28:a4:0e:e0:c8:a3:
b4:c0:eb:da:76:8f:75:1b:c2:91:ea:db:bb:70:87:b0:64:45:
1c:0f:20:14:28:9d:5c:27:e6:0d:b1:35:ca:64:7a:a3:c5:10:
f2:5e:e9:0d:9c:78:d9:37:6d:f0:fd:18:28:1f:50:26:82:59:
81:eb:ed:1c:3f:3f:ba:ba:43:c2:f1:80:30:d0:85:f6:22:ca:
81:b4:d1:b6:52:bb:d2:d6:31:9f:fc:fa:52:03:ec:9f:a5:db:
44:90:3e:26:43:f5:3d:0a:80:f0:b2:1d:2b:d2:a6:58:f4:72:
cb:2e:04:b4:c5:b4:75:1d:0f:d7:62:67:62:8e:35:0a:2f:06:
44:dc:ba:4d:a2:2e:65:46:5f:9d:aa:9f:38:9c:18:6e:2d:a6:
d6:05:20:c1:7f:48:65:f7:6b:54:83:23:58:d4:8f:5f:c3:84:
32:bc:e5:8e:6b:1f:83:a5:1c:8f:d0:e1:71:70:f6:5b:8b:17:
20:ac:c4:75:17:ca:dc:02:79:55:d4:f4:bc:ba:35:d8:fd:4e:
3e:92:09:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:36 2024 by rpki-client on console-ams.rpki-client.org