Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afa1ee-8d80-4d5a-a739-c612a70abb42/1/bzidbVhKQqfHXIvBOGQw1_PoUV4.roa
File: bzidbVhKQqfHXIvBOGQw1_PoUV4.roa (raw, json)
Hash identifier: iGHUpWFTfV8ommerjYqTRcdDQO8rDbi4AhiOr+ma6ZA=
Subject key identifier: 6F:38:9D:6D:58:4A:42:A7:C7:5C:8B:C1:38:64:30:D7:F3:E8:51:5E
Certificate issuer: /CN=578041152df80f6e531342663dd003109905084f
Certificate serial: 0188D8C4EBD8AC009BF2F9DC8FC5B98A6CC5
Authority key identifier: 57:80:41:15:2D:F8:0F:6E:53:13:42:66:3D:D0:03:10:99:05:08:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V4BBFS34D25TE0JmPdADEJkFCE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afa1ee-8d80-4d5a-a739-c612a70abb42/1/bzidbVhKQqfHXIvBOGQw1_PoUV4.roa
Signing time: Tue 20 Jun 2023 12:26:03 +0000
ROA not before: Tue 20 Jun 2023 12:26:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202182
IP address blocks: 45.153.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 12:23:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:c4:eb:d8:ac:00:9b:f2:f9:dc:8f:c5:b9:8a:6c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=578041152df80f6e531342663dd003109905084f
Validity
Not Before: Jun 20 12:26:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f389d6d584a42a7c75c8bc1386430d7f3e8515e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:92:08:3b:b1:af:de:4c:c8:31:8c:4c:44:12:
99:ce:00:3a:b9:9f:07:19:37:ed:c7:25:13:3d:34:
80:f6:dc:2a:76:b7:f7:24:75:7a:90:6b:48:c9:21:
12:e2:f7:10:7e:8c:ea:bf:3a:7c:d3:fd:5c:66:bf:
e4:d9:d1:94:be:e4:9c:bd:01:af:4c:ce:78:e8:9d:
f9:f3:7e:bc:0b:76:b5:b6:48:45:c3:3f:67:c0:75:
3f:89:fe:3e:24:5c:5c:d9:56:68:ff:6f:de:cf:02:
52:60:b1:86:42:a6:d9:bb:00:49:1a:9b:0c:37:63:
2a:be:37:e6:cb:8d:a1:db:0d:ca:eb:1b:79:83:1b:
85:84:80:5e:6f:ff:1e:09:5d:d9:6c:98:17:68:b5:
9a:72:33:71:b0:0e:28:25:66:e8:f2:7a:a4:fd:da:
6e:dc:f0:24:6d:f1:f6:95:e2:e2:5b:a4:7e:41:33:
80:4f:83:a3:26:50:5f:de:74:e9:1b:3b:1f:b4:7d:
e3:9d:a7:7e:ab:d2:39:27:bf:29:f0:e2:3f:f5:ab:
bb:d6:2e:08:9d:a6:65:5a:94:c1:e7:3a:38:84:cc:
9a:8f:b8:29:cb:7f:26:3f:5c:1d:d0:4f:96:05:8b:
69:8a:68:10:2e:12:be:5a:aa:e5:a5:45:36:4a:06:
36:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:38:9D:6D:58:4A:42:A7:C7:5C:8B:C1:38:64:30:D7:F3:E8:51:5E
X509v3 Authority Key Identifier:
keyid:57:80:41:15:2D:F8:0F:6E:53:13:42:66:3D:D0:03:10:99:05:08:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V4BBFS34D25TE0JmPdADEJkFCE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afa1ee-8d80-4d5a-a739-c612a70abb42/1/bzidbVhKQqfHXIvBOGQw1_PoUV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afa1ee-8d80-4d5a-a739-c612a70abb42/1/V4BBFS34D25TE0JmPdADEJkFCE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.90.0/24
Signature Algorithm: sha256WithRSAEncryption
62:be:9d:49:f1:34:b1:83:7e:89:ab:f1:ba:1f:07:ce:2b:cb:
9f:24:ca:d5:61:e6:f8:0c:bc:95:fd:69:ed:8c:1a:7f:d9:a0:
06:58:3e:87:33:87:97:8b:84:0d:7d:5e:6f:b1:84:4e:0b:fb:
94:c4:8a:38:bd:64:52:85:59:c4:65:b0:47:12:cf:4d:d1:31:
7f:6c:df:3b:81:38:0c:be:dc:03:58:87:dc:11:d5:5e:d3:d7:
27:dd:e3:b4:15:e5:e0:22:93:21:2b:54:c9:bf:14:ab:bc:aa:
2f:55:3b:77:9d:81:a8:d6:1b:06:00:22:36:d0:23:85:47:71:
8a:f8:49:9e:3d:cf:67:cd:37:40:a0:10:5c:f3:6c:c9:ca:8f:
58:a0:c6:2e:cc:41:ad:6e:00:94:8b:c9:05:d7:44:ac:07:c9:
ac:2d:f4:60:b9:5c:2a:cd:4c:90:8b:0a:d6:2d:65:98:8d:81:
9d:bf:11:4e:a1:54:7a:46:73:7a:cc:95:c0:26:4d:0c:2f:17:
8f:c4:6f:0b:00:53:b3:0f:4c:3f:56:f7:69:89:a8:6d:dd:d3:
a3:4a:e8:be:b2:cc:34:9d:8f:bf:ce:8e:ff:5f:8f:c8:3a:cf:
f8:5b:3e:0c:a8:fd:33:e1:57:f9:d3:4e:0d:24:ad:12:fc:66:
2b:40:6f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:25 2024 by rpki-client on console-fra.rpki-client.org