Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SAhMF57pAJadtsha2xTII8MzcX4.roa
File: SAhMF57pAJadtsha2xTII8MzcX4.roa (raw, json)
Hash identifier: bflK3//YNzhqYUadsuRo+eVfSYKjus1IDw7TKahoXgY=
Subject key identifier: 48:08:4C:17:9E:E9:00:96:9D:B6:C8:5A:DB:14:C8:23:C3:33:71:7E
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D84C459180EFC408AC3D9E29DD2EABF76
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SAhMF57pAJadtsha2xTII8MzcX4.roa
Signing time: Wed 07 Feb 2024 18:11:16 +0000
ROA not before: Wed 07 Feb 2024 18:11:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 45.132.130.0/24 maxlen: 24
45.132.131.0/24 maxlen: 24
194.61.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:c4:59:18:0e:fc:40:8a:c3:d9:e2:9d:d2:ea:bf:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 7 18:11:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48084c179ee900969db6c85adb14c823c333717e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:82:92:67:ed:74:43:3a:31:90:a7:5a:11:23:
4d:bf:25:a9:c5:ba:32:02:0d:90:d8:bc:96:5a:fd:
a9:e9:4a:0c:65:4a:3e:f9:b1:96:2a:86:68:33:3e:
05:ef:9a:0f:6d:d6:0f:df:b2:a0:79:c1:15:2f:03:
67:49:45:0f:0a:21:c7:cc:c2:d1:ec:12:6c:bc:ec:
17:6e:9c:26:62:f8:63:1f:c0:9d:2e:da:77:1a:a9:
ee:00:16:86:dd:11:a7:44:40:60:66:c0:0d:29:fe:
e8:8b:e2:15:a9:c0:03:7e:3f:ec:b5:03:21:60:63:
76:3b:55:2a:20:6d:15:b5:50:9e:41:75:48:77:02:
b8:75:08:36:d1:42:f5:d8:5a:4c:66:42:01:5d:b9:
b6:77:24:81:9f:b2:20:b1:07:b5:94:6b:5b:48:1d:
f5:a1:a7:24:a5:2f:e3:d1:3f:b8:eb:4f:fe:b8:74:
8a:f1:ce:c4:a9:76:b9:b4:6f:6a:f5:9c:a8:fb:86:
d7:05:7c:55:ea:ce:d3:0f:ef:06:8e:9e:11:44:f5:
bf:fc:19:aa:a3:a1:d1:e9:7c:bf:a3:de:0a:61:e7:
cd:cb:70:37:07:40:17:2f:c4:2a:ef:e1:f3:44:5d:
9b:f0:10:c8:43:e2:47:00:33:51:30:2f:48:ba:d2:
e8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:08:4C:17:9E:E9:00:96:9D:B6:C8:5A:DB:14:C8:23:C3:33:71:7E
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SAhMF57pAJadtsha2xTII8MzcX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.130.0/23
194.61.9.0/24
Signature Algorithm: sha256WithRSAEncryption
69:43:38:52:b5:53:db:10:12:f0:8e:c6:16:92:85:d4:a5:3a:
81:89:fe:fc:36:51:1b:e0:28:e1:1e:57:69:3e:32:28:a9:27:
0c:88:1c:44:86:28:96:6c:29:3c:3b:7b:51:41:28:84:f7:0d:
34:69:2a:15:6e:11:9c:8a:b1:9d:ee:74:55:58:1a:25:67:ce:
a5:97:cb:d2:57:96:32:c2:c4:2c:64:36:45:8f:fb:35:5b:33:
f6:2c:5b:db:2a:46:56:b6:48:ba:bc:c6:6a:27:35:b7:8b:f4:
60:cf:23:83:82:8a:58:9a:89:c1:48:d4:12:24:1d:2f:d8:84:
3f:6e:cd:9b:a6:07:df:b2:da:a0:eb:61:9a:56:41:0d:b4:71:
c5:c2:3b:a3:dd:db:2d:b2:07:10:bc:06:51:96:5d:f0:10:42:
ca:c1:69:f3:3e:6a:e5:16:cf:a2:51:95:95:36:43:73:61:be:
08:2d:b9:9a:c7:08:5f:00:da:c1:5c:30:43:1d:94:94:99:66:
b8:fe:61:d2:70:d2:b5:87:41:72:c6:69:f9:2c:d9:6d:a5:80:
11:fb:82:34:56:7b:1f:40:dd:c6:42:c5:b0:ef:b8:6f:50:3e:
1b:69:77:05:f1:ed:ea:aa:cd:f5:28:02:65:03:07:31:15:2d:
6f:c3:55:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org