Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/bG1AlvrA2xbhXpRWcmf440xVNSg.roa
File: bG1AlvrA2xbhXpRWcmf440xVNSg.roa (raw, json)
Hash identifier: NWufBLxn81k66UvQoBeVhI3PCvxSuDGqMX5qEK4zIw8=
Subject key identifier: 6C:6D:40:96:FA:C0:DB:16:E1:5E:94:56:72:67:F8:E3:4C:55:35:28
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0187108CAD960D82A176C73EA23EB5FD2A31
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/bG1AlvrA2xbhXpRWcmf440xVNSg.roa
Signing time: Thu 23 Mar 2023 22:17:47 +0000
ROA not before: Thu 23 Mar 2023 22:17:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 194.180.232.0/23 maxlen: 24
194.180.236.0/23 maxlen: 24
45.133.112.0/22 maxlen: 24
45.136.24.0/22 maxlen: 24
45.147.8.0/22 maxlen: 24
45.147.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Mar 2023 21:04:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:10:8c:ad:96:0d:82:a1:76:c7:3e:a2:3e:b5:fd:2a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 23 22:17:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c6d4096fac0db16e15e94567267f8e34c553528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8a:4b:7a:89:a0:0b:b4:8e:09:fe:b8:50:d2:
c7:df:f7:63:a3:4d:e4:20:0e:0a:0a:81:14:63:57:
68:de:b4:90:f1:bf:3e:a5:b6:10:e9:f6:ba:53:b6:
9e:b1:78:67:9d:d1:66:6b:f4:f4:83:9a:2e:af:ee:
fa:b2:34:c6:7c:45:7e:29:86:33:5f:46:81:43:47:
8b:70:70:a8:26:00:96:e7:ba:e8:e9:46:a0:a2:3e:
13:5f:0e:cb:a5:2f:31:75:d5:94:b0:8f:2e:42:df:
38:27:33:e4:27:49:00:23:66:78:a5:ad:64:06:93:
15:59:a4:c0:00:91:a5:0b:0e:89:13:87:3c:e7:10:
1a:4e:29:b6:8a:50:c0:63:29:5f:80:7d:a5:ea:6e:
74:49:d0:e8:62:7b:b3:2e:c8:d8:c4:b7:77:25:ae:
0b:5d:14:da:a4:6f:02:ab:b0:33:b4:71:38:38:7c:
90:81:96:3b:6c:8e:20:13:c7:74:31:69:24:18:2d:
89:34:3e:3b:3a:ed:dc:2b:c4:9d:9e:78:2f:64:2f:
8f:27:02:04:94:3a:f5:cb:3d:51:da:42:dd:97:0a:
01:e7:47:7b:18:84:57:c0:e1:70:78:fc:d8:60:89:
d8:a4:0a:02:d6:1e:d0:c2:61:5a:91:3b:6f:c0:5a:
ae:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6D:40:96:FA:C0:DB:16:E1:5E:94:56:72:67:F8:E3:4C:55:35:28
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/bG1AlvrA2xbhXpRWcmf440xVNSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.112.0/22
45.136.24.0/22
45.147.8.0/22
45.147.232.0/22
194.180.232.0/23
194.180.236.0/23
Signature Algorithm: sha256WithRSAEncryption
77:82:3a:34:cf:e3:b8:1e:5e:d1:4c:9e:4b:02:0f:e5:e6:7a:
c9:4c:1b:5a:6c:04:6b:cf:81:c7:31:fb:08:f8:dd:82:b0:f6:
4c:16:e3:d7:b6:d6:5e:42:73:41:f4:57:ed:1a:96:21:42:96:
ea:02:53:0a:b7:b0:56:7c:18:4b:29:12:fe:5e:d1:90:64:28:
ac:89:c9:af:dc:92:b3:8e:0f:f5:34:cc:f0:12:f2:6f:dc:63:
64:67:35:b8:de:d8:26:0f:56:25:32:28:8e:5d:6f:9c:63:9c:
65:e9:21:53:f4:f4:80:42:6c:ba:37:89:da:26:d4:1d:44:36:
b3:6b:9b:20:6e:6a:6c:a9:76:79:d4:24:c7:08:a3:18:f0:b8:
a2:b6:1d:cc:58:fe:50:6f:41:93:f0:09:7a:26:df:3a:af:05:
0a:c0:e7:bc:4b:58:6a:60:74:3e:12:32:47:6f:94:96:e8:f6:
dd:87:d5:b8:ce:df:4b:8b:46:f5:ca:81:2b:a8:5b:6a:79:60:
c2:13:b6:d3:31:2f:06:5c:2e:18:8a:b1:f1:7a:a8:d6:9c:57:
9b:0a:8a:1d:44:70:39:80:52:72:4f:b7:99:de:17:58:98:8f:
8c:b5:19:8a:6f:4b:16:89:84:4d:e7:2e:56:02:fe:8e:b7:7e:
f1:6e:c0:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:37 2024 by rpki-client on console-fra.rpki-client.org