Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/rWCv4OQPkNbekkQI1CajOwLExWk.roa
File: rWCv4OQPkNbekkQI1CajOwLExWk.roa (raw, json)
Hash identifier: 8asxbuVFJmQUICcrYMTWRcotENWiuEGcRxFQdAUOojY=
Subject key identifier: AD:60:AF:E0:E4:0F:90:D6:DE:92:44:08:D4:26:A3:3B:02:C4:C5:69
Certificate issuer: /CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Certificate serial: 0185729EFB518E99D28CEABF0B4A495B638A
Authority key identifier: D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/rWCv4OQPkNbekkQI1CajOwLExWk.roa
Signing time: Mon 02 Jan 2023 13:14:59 +0000
ROA not before: Mon 02 Jan 2023 13:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209879
IP address blocks: 45.148.88.0/22 maxlen: 27
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:fb:51:8e:99:d2:8c:ea:bf:0b:4a:49:5b:63:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Validity
Not Before: Jan 2 13:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad60afe0e40f90d6de924408d426a33b02c4c569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:58:03:fa:03:e2:ab:bb:77:3d:09:4b:ce:88:
c3:20:33:69:5a:ca:8d:da:a2:6b:10:93:cc:e4:58:
a2:91:04:a6:5b:81:04:fe:78:0b:89:e2:1a:c1:6e:
19:e2:2d:5f:64:89:1c:ea:fc:be:6d:fd:5e:02:7d:
81:74:86:30:ec:e9:85:0f:99:08:02:f1:33:5e:ab:
f7:52:0c:b0:4d:9e:1f:6c:6d:1b:5e:65:92:a3:3f:
43:b6:34:dc:23:f0:1a:6d:ab:09:fc:d4:07:01:a8:
b1:a4:d7:b9:ef:6a:16:f5:33:5b:23:5f:6f:c7:20:
c3:43:b3:b4:8c:67:81:10:be:07:1b:3a:80:3b:12:
39:41:d0:4d:80:ca:82:16:9f:9f:a4:a3:08:52:6d:
41:f4:16:48:ce:93:d6:01:6a:70:a2:29:f7:ba:02:
23:41:54:c3:40:51:79:15:16:86:84:e2:a7:58:0b:
04:e5:22:dc:5a:d3:08:04:ce:00:f3:74:b8:04:78:
da:2e:d7:60:18:70:55:65:2b:bc:a9:7b:05:86:fb:
19:72:12:01:86:fb:ea:4d:bb:4e:0e:3b:3c:f1:29:
af:1e:ff:18:4a:02:2c:08:32:21:95:63:ee:80:53:
72:55:3c:93:97:34:b7:d2:33:90:4f:bf:b5:2a:99:
f1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:60:AF:E0:E4:0F:90:D6:DE:92:44:08:D4:26:A3:3B:02:C4:C5:69
X509v3 Authority Key Identifier:
keyid:D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/rWCv4OQPkNbekkQI1CajOwLExWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/06fDvga8RcPxK5CxhSeK1OyRl1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.88.0/22
Signature Algorithm: sha256WithRSAEncryption
69:ae:a1:83:c0:05:5a:a5:bb:d6:cc:5e:21:4f:a6:5e:d9:e7:
5a:e4:60:23:73:fa:04:b8:66:8c:1c:80:45:9b:9b:26:f1:90:
e7:8a:b8:78:fe:7e:78:f4:85:d1:90:80:2f:13:f6:42:5d:3f:
53:57:0a:50:fb:af:35:c8:7f:12:b2:c7:dc:20:e3:78:e2:9e:
46:5d:89:29:09:51:62:45:23:f4:0f:d6:fd:ea:a0:13:dc:1c:
08:d2:6d:96:c8:30:df:e2:1e:c3:2f:e5:0e:d0:80:ee:60:08:
13:1b:c6:f9:63:ee:25:f5:02:16:5b:43:70:b5:6a:5e:f4:3e:
f3:b4:1f:42:fb:ca:f8:5b:45:0a:a8:bb:ed:64:07:2d:63:72:
8c:50:7c:60:f4:ec:84:a6:dd:48:7c:11:26:93:f0:b6:0b:3e:
66:7a:cb:45:bc:81:c7:25:79:ab:c6:a7:31:75:89:18:e5:e1:
39:88:85:d4:69:98:03:3f:6f:32:7b:08:00:82:03:81:36:db:
bd:7e:18:f7:dc:52:d6:47:89:88:c2:d9:8c:44:19:ee:8d:43:
d7:1e:e3:be:3a:53:99:9a:ee:84:f8:d2:c1:42:b8:ed:d7:c6:
18:93:fd:a5:e3:c2:91:05:56:98:c5:80:e1:3b:f3:2c:f6:f2:
11:c8:86:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:38 2024 by rpki-client on console-ams.rpki-client.org