Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hhdogcB5HGnerGcNOP6ibV3KkZU.roa
File: hhdogcB5HGnerGcNOP6ibV3KkZU.roa (raw, json)
Hash identifier: iq1izDJf8sPnG275ltATFNzflJhc2REFph42FN7AsEM=
Subject key identifier: 86:17:68:81:C0:79:1C:69:DE:AC:67:0D:38:FE:A2:6D:5D:CA:91:95
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DD2AE82310067966CB1344E119F3AAA69
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hhdogcB5HGnerGcNOP6ibV3KkZU.roa
Signing time: Thu 22 Feb 2024 21:17:48 +0000
ROA not before: Thu 22 Feb 2024 21:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 45.135.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 16:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d2:ae:82:31:00:67:96:6c:b1:34:4e:11:9f:3a:aa:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 22 21:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86176881c0791c69deac670d38fea26d5dca9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0f:0a:b4:e6:77:97:f7:4f:a2:b7:bb:80:d9:
bf:53:93:76:cd:7d:c7:5f:1d:0f:77:a2:85:95:5e:
b9:08:f7:9d:64:23:7d:0d:ce:df:0a:43:45:73:05:
d3:78:82:bd:64:c7:bb:8d:b0:0e:f5:e3:32:7a:7c:
83:a0:ad:ae:1a:ce:a0:d7:55:cb:f2:32:fe:d8:94:
3a:49:4c:51:7b:e0:6f:44:43:53:82:67:61:8c:0b:
d6:ed:ea:a6:51:f1:fd:55:47:08:69:c7:83:5a:21:
e2:f8:d0:5f:5c:d3:3e:9a:24:e6:7b:4b:35:ec:12:
9c:62:56:61:cc:f0:b1:81:6a:8e:85:e3:b3:2b:a0:
82:a1:6b:bb:18:42:6c:7a:ec:5f:07:9c:d2:54:37:
79:08:d6:fe:90:45:b0:cf:61:51:ff:83:56:33:7f:
9f:b1:81:96:7b:c4:92:f9:f6:0e:76:69:7f:9a:22:
9b:7f:1b:91:d7:50:16:d5:48:13:78:5f:56:e0:b7:
69:86:54:b5:91:ce:32:3a:68:d9:df:21:c6:76:55:
16:28:27:df:49:65:a3:b7:32:f0:e1:42:5b:e0:60:
f1:fe:21:05:71:a1:ca:5f:83:d7:93:19:ea:9a:58:
c5:03:17:fd:2d:fc:1b:1c:12:63:59:1e:16:54:a9:
90:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:17:68:81:C0:79:1C:69:DE:AC:67:0D:38:FE:A2:6D:5D:CA:91:95
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hhdogcB5HGnerGcNOP6ibV3KkZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.183.0/24
Signature Algorithm: sha256WithRSAEncryption
94:0e:1f:3e:ae:21:2f:3e:fd:b0:ea:4a:16:ad:b8:9f:ad:9e:
ce:23:1d:4e:56:e1:25:4d:87:8a:8a:e0:32:51:af:f9:fb:9a:
49:76:1b:8e:5b:94:e5:1b:b1:ce:db:cc:25:f7:52:d7:7c:d1:
67:41:5d:eb:de:ce:3b:6e:de:47:d1:c9:27:5a:fe:2c:a3:85:
61:26:d7:e3:71:0a:1b:29:7d:1d:98:d3:cb:18:d0:5c:db:8b:
2e:44:df:c1:c9:a3:59:d2:57:c1:b6:b6:8d:df:85:6c:4d:4d:
96:ba:89:b6:44:9b:48:9a:2d:d7:21:04:11:bb:4c:52:07:a9:
9f:c5:34:32:2d:8a:62:82:86:4c:0a:7c:65:b7:d9:65:4a:fd:
4c:1e:2a:5a:39:17:89:e9:e7:e5:b7:34:63:cc:7e:99:15:d8:
b5:a6:6d:c5:81:63:4b:db:ac:54:12:38:ec:09:f0:d8:16:cf:
80:80:9a:bf:10:a9:f6:d9:4e:fd:92:be:b6:71:83:0a:27:32:
48:2c:85:1b:47:2f:22:41:1e:9b:08:bf:bb:6b:5a:68:ac:4a:
1f:3d:e0:ec:62:69:93:13:b5:88:46:7a:dc:5a:40:3c:be:60:
b0:b4:7b:2d:1b:15:6e:4b:12:b8:11:fa:b9:63:79:30:dc:62:
2e:80:5b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org