Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/T2wfKwvda4SCNohjkzKpfa7z49g.roa
File: T2wfKwvda4SCNohjkzKpfa7z49g.roa (raw, json)
Hash identifier: l/gSrwgDmRCw3hkUEqf2z53hgvWNMUaRrkkH9LJjNlY=
Subject key identifier: 4F:6C:1F:2B:0B:DD:6B:84:82:36:88:63:93:32:A9:7D:AE:F3:E3:D8
Certificate issuer: /CN=b660d78320860d5efe729e208b5eb4b2abebe078
Certificate serial: 0188343E66888160581DC9EC3AC1CE728A9C
Authority key identifier: B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/T2wfKwvda4SCNohjkzKpfa7z49g.roa
Signing time: Fri 19 May 2023 13:41:24 +0000
ROA not before: Fri 19 May 2023 13:41:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51198
IP address blocks: 45.132.9.0/24 maxlen: 24
45.132.11.0/24 maxlen: 24
45.132.8.0/24 maxlen: 24
45.132.10.0/24 maxlen: 24
2a0e:6540::/29 maxlen: 29
2a13:7d00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Nov 2023 14:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:34:3e:66:88:81:60:58:1d:c9:ec:3a:c1:ce:72:8a:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b660d78320860d5efe729e208b5eb4b2abebe078
Validity
Not Before: May 19 13:41:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f6c1f2b0bdd6b84823688639332a97daef3e3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bf:07:8d:7a:47:44:85:f6:40:80:92:9c:10:
64:bd:f1:15:53:dc:0b:8c:df:92:0b:61:10:d7:0d:
7d:5a:3d:93:56:ad:0a:8c:6b:75:a5:0e:7b:12:07:
03:49:98:ed:87:63:0d:ac:df:df:3c:c8:ef:0c:3c:
81:35:56:29:3d:1c:b6:a7:2c:83:21:27:f2:f8:0a:
b4:82:95:2a:fa:24:2b:c6:e5:83:15:2a:6e:f1:3a:
6a:03:96:44:c7:c8:5a:19:fd:3b:1b:17:5f:58:c5:
c9:3e:ce:a5:8d:df:d2:0b:a8:57:5a:4e:21:08:1b:
9b:44:a4:c4:d6:bf:99:9a:b5:d2:7c:92:fc:d1:8a:
c3:df:b9:ab:c9:3c:4e:08:c1:b7:d3:b9:57:27:b4:
2a:cc:82:94:ac:f2:e5:72:8d:6d:67:66:bf:b5:db:
f4:68:b3:fd:65:d0:6d:3b:19:4a:48:b3:73:6d:48:
1b:40:d9:54:3e:7a:6d:8b:d1:18:ca:9a:9c:76:cd:
1d:a2:2a:bb:ff:cb:63:cb:79:63:56:ef:d1:f0:34:
be:0d:ef:05:21:25:5f:d3:cc:ea:9a:75:37:1c:1d:
45:e1:88:5d:ff:69:8a:d9:69:19:22:71:c9:c5:fc:
31:45:17:fc:d4:62:68:7e:81:58:9d:3d:ca:f3:85:
45:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6C:1F:2B:0B:DD:6B:84:82:36:88:63:93:32:A9:7D:AE:F3:E3:D8
X509v3 Authority Key Identifier:
keyid:B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/T2wfKwvda4SCNohjkzKpfa7z49g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/tmDXgyCGDV7-cp4gi160sqvr4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.8.0/22
IPv6:
2a0e:6540::/29
2a13:7d00::/29
Signature Algorithm: sha256WithRSAEncryption
94:62:bb:28:f6:c3:15:4f:a5:66:9e:e7:d8:d1:f5:a2:15:f4:
27:f7:22:61:e0:cf:ae:1b:e4:bd:84:07:de:5f:7d:a3:f7:ab:
58:06:33:3b:3d:da:4e:b4:a1:ca:14:7a:4f:bf:e0:7b:e1:fe:
42:fe:8e:91:e8:66:c9:a4:c2:c2:67:ad:6c:fe:18:d3:fd:a3:
9b:bf:a2:e3:35:65:c0:50:12:c4:1c:d8:4b:bb:21:34:12:db:
8f:27:69:77:ec:39:fc:7c:60:58:2a:e9:72:42:9a:ba:00:8e:
6d:d9:63:84:c3:b5:13:b8:82:3f:d1:ac:28:1f:2b:24:c1:d0:
ae:40:a1:44:9f:6b:b6:89:0d:f0:a2:c4:ed:f1:b5:ff:63:98:
06:63:b2:b3:ed:07:32:a0:e4:92:e1:74:54:ed:27:b9:ef:a6:
52:66:b8:a7:b9:46:c7:a6:ef:97:26:96:91:80:ee:86:a6:dd:
ed:1b:7e:e9:f1:67:52:4f:a8:ad:21:0b:85:55:30:cf:d5:ee:
a0:d3:47:06:f8:c4:ee:27:d2:da:92:91:cd:fc:0b:60:7b:e5:
75:b7:af:62:21:5d:9d:2f:04:53:e6:d4:8b:a4:a3:92:88:52:
38:bf:5b:50:09:fa:9b:70:90:da:c4:cc:fe:23:d6:46:c4:02:
2a:d1:ec:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:00 2024 by rpki-client on console-fra.rpki-client.org