Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/064794-2c36-43d6-b800-739d62669f91/1/N7b9tpInLR5CYIMMOctqJ3b0N_A.roa
File: N7b9tpInLR5CYIMMOctqJ3b0N_A.roa (raw, json)
Hash identifier: GAIRTf+hN4sYmT7Ta0VL87nARCLQt/RhOTO8MTh20Yw=
Subject key identifier: 37:B6:FD:B6:92:27:2D:1E:42:60:83:0C:39:CB:6A:27:76:F4:37:F0
Certificate issuer: /CN=db1da321843f9fad138e6115d85bee8a920b8e1d
Certificate serial: 0185708CB3D655244F5EECDF5076450A8BCD
Authority key identifier: DB:1D:A3:21:84:3F:9F:AD:13:8E:61:15:D8:5B:EE:8A:92:0B:8E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2x2jIYQ_n60TjmEV2FvuipILjh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/064794-2c36-43d6-b800-739d62669f91/1/N7b9tpInLR5CYIMMOctqJ3b0N_A.roa
Signing time: Mon 02 Jan 2023 03:35:47 +0000
ROA not before: Mon 02 Jan 2023 03:35:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24603
IP address blocks: 45.152.100.0/22 maxlen: 24
185.105.80.0/22 maxlen: 24
193.108.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:b3:d6:55:24:4f:5e:ec:df:50:76:45:0a:8b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db1da321843f9fad138e6115d85bee8a920b8e1d
Validity
Not Before: Jan 2 03:35:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37b6fdb692272d1e4260830c39cb6a2776f437f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:36:8b:d1:c5:48:6b:2a:2c:78:a1:60:a9:c6:
71:69:e2:a6:5b:c4:9b:13:c9:87:67:ca:cf:4b:a3:
56:d8:9c:7c:6b:bd:92:43:ed:44:ce:e6:71:fa:5b:
01:a6:69:a6:56:dc:88:97:68:84:79:80:11:e1:99:
4b:43:64:11:a1:90:5f:9e:30:65:ac:b8:37:44:ac:
22:66:38:b0:36:2d:b0:87:39:53:db:57:56:fa:71:
75:1e:ed:5e:17:0b:6b:df:37:80:7a:d6:5c:60:fb:
7d:60:3f:40:9c:20:8b:ab:d2:bf:1d:16:b2:aa:1b:
fd:15:ae:c7:bd:8c:2c:24:b1:88:e4:f7:cf:0f:4e:
74:26:72:1b:65:6b:cb:c6:b7:cd:8f:e0:ff:d0:56:
f7:82:38:47:63:2a:45:e6:37:25:d3:6f:4f:59:dc:
b7:ab:45:2e:a5:8e:be:3f:d3:13:09:37:45:fd:72:
1b:5e:2d:7e:29:04:b5:a4:a7:60:58:de:2b:e7:02:
d9:ae:11:17:aa:1c:7c:07:2a:3e:ee:e7:81:38:bc:
5c:73:68:37:2d:01:c2:58:4b:08:7e:64:cb:30:35:
5b:d0:09:2c:4f:df:31:d4:be:ab:55:32:49:6d:22:
da:bf:c6:85:38:ca:b4:5c:62:00:81:42:8e:f2:f7:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B6:FD:B6:92:27:2D:1E:42:60:83:0C:39:CB:6A:27:76:F4:37:F0
X509v3 Authority Key Identifier:
keyid:DB:1D:A3:21:84:3F:9F:AD:13:8E:61:15:D8:5B:EE:8A:92:0B:8E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2x2jIYQ_n60TjmEV2FvuipILjh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/064794-2c36-43d6-b800-739d62669f91/1/N7b9tpInLR5CYIMMOctqJ3b0N_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/064794-2c36-43d6-b800-739d62669f91/1/2x2jIYQ_n60TjmEV2FvuipILjh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.100.0/22
185.105.80.0/22
193.108.179.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ed:7d:23:2e:e8:73:64:8a:c3:91:39:1c:52:b7:55:78:b9:
25:15:d8:8c:f5:94:43:38:8d:39:82:87:ce:d7:ba:f7:88:8e:
9d:dc:45:ff:17:35:9a:b5:18:cb:69:19:a0:e3:61:52:78:72:
8b:7c:e1:c8:3e:5c:cb:d1:a0:06:38:fe:37:b7:0e:ce:b2:f3:
f5:c4:b4:08:24:ef:c2:b5:5d:8d:62:aa:1d:aa:97:f0:8b:12:
b6:c9:96:62:f3:04:f2:f0:17:b3:96:11:3e:2c:74:a8:38:6a:
93:46:18:b1:6d:68:da:f2:fd:c3:74:42:a2:f0:8f:1a:a8:49:
95:f4:d8:7c:93:a0:76:eb:67:ff:f5:6e:b9:0c:56:ca:dc:d2:
8a:0d:7b:d1:50:68:47:ae:1f:a2:74:97:48:3f:a6:cd:0a:65:
0d:0e:43:36:fa:d4:3b:bf:dc:55:f8:05:78:92:b9:41:9c:51:
b0:96:d9:99:69:66:24:63:51:42:f2:ef:1e:35:43:67:c2:f3:
bd:29:0f:b6:81:04:1f:04:4a:f9:29:7b:f0:82:3e:21:a0:17:
ef:9a:88:a9:df:e1:fc:67:15:56:28:62:ec:1a:88:f0:4d:88:
f1:81:f5:f0:87:9d:ba:c6:26:12:22:f8:d6:56:53:0d:1b:26:
5f:24:19:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:02 2024 by rpki-client on console-fra.rpki-client.org