Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/kQbPVpF94FD2s5fB-bvfHbgpoHs.roa
File: kQbPVpF94FD2s5fB-bvfHbgpoHs.roa (raw, json)
Hash identifier: aMz6N6DeKByMOwrgPejUCSj5QNu9uv3HE6zWk/Taj4w=
Subject key identifier: 91:06:CF:56:91:7D:E0:50:F6:B3:97:C1:F9:BB:DF:1D:B8:29:A0:7B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D692B06F1795EC451A6AA4B6BAFABF625
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/kQbPVpF94FD2s5fB-bvfHbgpoHs.roa
Signing time: Fri 02 Feb 2024 09:34:03 +0000
ROA not before: Fri 02 Feb 2024 09:34:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 45.132.130.0/24 maxlen: 24
45.132.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 18:11:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:2b:06:f1:79:5e:c4:51:a6:aa:4b:6b:af:ab:f6:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 2 09:34:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9106cf56917de050f6b397c1f9bbdf1db829a07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e7:83:43:4d:17:5d:b4:5e:1b:f7:5a:ca:be:
8d:9b:69:38:e0:b4:71:40:39:00:c4:7f:35:c7:56:
b7:6f:9a:4b:7e:4b:2c:08:96:55:b9:9c:96:73:64:
b4:dc:94:41:4e:cd:2d:46:82:5f:e5:ff:f2:4e:73:
aa:71:b8:81:f1:1c:c3:04:5c:ea:ab:08:56:6e:74:
6b:19:00:76:7c:02:28:d4:ed:93:f3:da:1e:2b:e4:
c5:4a:52:d3:47:9e:d4:34:9d:4e:a4:db:9d:57:92:
11:33:1a:73:c8:e3:e5:6e:bf:29:82:42:5b:75:c5:
b7:82:ad:40:8f:23:ab:c6:b5:d8:e1:01:8b:f7:a3:
4c:6a:43:a6:c5:f5:8d:6b:53:66:4f:57:cf:ee:83:
37:2d:fc:78:56:89:f6:18:08:ed:6a:8d:ab:2f:da:
0b:c5:9c:f9:40:47:75:fd:7d:68:1a:d8:e5:78:49:
33:41:05:40:dd:26:c7:bd:18:f8:d4:8b:01:fd:06:
5a:fd:5c:ec:28:c7:04:59:83:03:5d:a2:49:87:7e:
21:6b:10:12:b2:81:a4:d3:96:be:79:f7:f8:7b:08:
bd:ac:1a:74:b1:0a:67:ed:4c:67:76:5d:af:3d:85:
8a:da:f0:06:68:64:64:a7:47:27:81:9e:3e:11:8a:
7c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:06:CF:56:91:7D:E0:50:F6:B3:97:C1:F9:BB:DF:1D:B8:29:A0:7B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/kQbPVpF94FD2s5fB-bvfHbgpoHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.130.0/23
Signature Algorithm: sha256WithRSAEncryption
49:90:d0:6d:57:86:9f:f8:11:fd:79:da:99:67:84:59:66:17:
1d:01:6b:6b:f7:95:d2:2c:d4:b3:ec:59:7e:d0:e2:23:8d:0d:
bd:07:8c:87:a8:8b:aa:f8:e3:5e:7d:cf:83:66:d8:95:d5:01:
37:2f:e7:fb:7f:98:4d:19:f4:e7:32:fb:89:a7:9f:42:70:f9:
bd:f4:8d:67:34:17:bc:4d:6f:ff:0c:eb:f6:7c:ff:fd:25:c9:
69:6c:87:44:38:5d:6b:3c:c6:47:ce:66:c7:b1:eb:36:aa:40:
99:6a:20:39:42:6f:72:27:76:dd:28:e8:d4:fb:a7:49:41:eb:
3c:9b:7b:26:db:6e:7a:e4:d6:02:07:ba:2d:7a:3a:26:9e:9e:
c2:18:ee:88:3b:04:a3:1b:d4:2c:dd:37:7f:7d:b4:fe:f5:a6:
74:19:4d:b9:cb:ae:d5:a1:5e:39:37:0c:2a:30:8a:7a:a9:26:
07:a9:eb:9e:fe:63:b7:04:84:2a:c0:6e:a9:2a:7a:79:c8:e9:
ae:a7:ec:62:ae:b0:59:9a:48:84:16:19:86:95:9f:88:c1:16:
94:b4:af:14:94:38:51:12:c0:33:8f:e9:3b:49:20:00:73:5e:
d1:f7:3b:c0:1a:22:65:35:68:0c:a0:5c:e6:d6:13:a9:ea:1e:
a0:0c:73:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:49 2024 by rpki-client on console-ams.rpki-client.org