Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/Bu7ncRwQbhzSCp9RY-xLt-Ykhag.roa
File: Bu7ncRwQbhzSCp9RY-xLt-Ykhag.roa (raw, json)
Hash identifier: zz8vcX5jfPIn08n4w+pAcxtW4RBAbk/TtY1X9FAmyoE=
Subject key identifier: 06:EE:E7:71:1C:10:6E:1C:D2:0A:9F:51:63:EC:4B:B7:E6:24:85:A8
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0187E29623F2FD0212EEDD4C930CB880D32E
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/Bu7ncRwQbhzSCp9RY-xLt-Ykhag.roa
Signing time: Wed 03 May 2023 17:08:23 +0000
ROA not before: Wed 03 May 2023 17:08:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 45.149.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 14:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:96:23:f2:fd:02:12:ee:dd:4c:93:0c:b8:80:d3:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: May 3 17:08:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06eee7711c106e1cd20a9f5163ec4bb7e62485a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d6:cd:38:69:60:d4:bf:e8:8b:18:9b:d1:71:
76:ac:44:cb:94:97:fb:e0:04:30:04:d6:77:4d:3a:
6c:87:a0:1c:d2:f9:45:ad:72:12:e6:6a:cc:0c:5f:
e9:0d:bf:55:c4:ff:d1:69:4a:13:72:9c:4f:0f:e6:
b1:0f:57:a2:99:9e:7d:83:4b:21:92:e8:3e:86:47:
a2:5b:bf:8b:ea:d7:36:f6:00:09:a9:e7:fd:49:a1:
5f:ae:ee:28:9f:7d:7d:7f:37:a0:ca:51:f6:c7:91:
cd:14:10:e8:25:ea:a4:84:c5:b9:a8:71:0e:7a:16:
ba:42:c5:9e:79:04:1c:cf:26:72:b9:41:11:49:37:
d7:72:2c:57:6b:b2:20:6e:3d:de:30:aa:a2:4b:2d:
da:bf:07:15:7a:f5:7a:48:31:5c:08:83:b3:19:d2:
db:bc:1f:33:5b:c9:65:42:70:3e:97:1c:e4:50:58:
37:13:11:13:0d:15:1e:04:24:74:88:37:21:d7:96:
c7:a8:75:71:33:1a:12:aa:58:78:fb:72:f1:04:66:
ef:76:74:65:ff:94:c1:bd:c7:d2:f4:c7:66:5c:c7:
dc:ce:6e:2f:ab:1d:ab:08:34:1a:a9:88:d7:eb:d1:
7d:f0:22:a3:d0:27:18:1c:78:28:41:80:92:2b:f8:
d9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:EE:E7:71:1C:10:6E:1C:D2:0A:9F:51:63:EC:4B:B7:E6:24:85:A8
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/Bu7ncRwQbhzSCp9RY-xLt-Ykhag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.36.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8a:2b:e2:1f:22:86:6e:43:fb:29:64:12:22:f6:81:a8:8e:
da:73:59:1b:8c:c3:52:78:d7:34:68:66:c8:00:da:47:92:0f:
a8:4d:d7:3c:74:27:c8:d3:2c:67:d2:10:34:bf:70:06:6f:e8:
b4:46:90:f5:f9:2c:3a:b9:5a:63:fb:3a:27:f3:73:45:47:69:
df:03:25:da:a8:12:cf:67:2a:0b:49:d6:ff:a2:2f:14:c2:16:
5d:2b:d1:21:f3:0b:84:d0:72:dc:d6:4c:3d:24:c0:31:55:83:
77:27:16:66:af:dc:e0:0d:7d:07:d9:ce:f9:e0:d4:5a:c9:37:
da:48:cb:f7:64:0d:cb:1e:5d:1e:e4:c7:91:ff:af:bc:0e:a0:
1a:08:3f:1f:ff:58:51:a6:d4:f0:53:2c:bb:69:6b:a1:6e:d3:
89:de:98:4f:e0:09:7e:f3:ec:4c:b2:62:90:04:81:09:94:8f:
10:4e:32:bb:27:17:5f:41:19:a3:f7:e2:a8:cd:78:90:02:39:
70:f8:65:18:96:c9:ac:03:4f:bb:4f:53:8e:dd:82:64:24:4a:
76:b5:41:42:a6:8e:56:8a:ef:15:6d:73:f6:2c:e6:ae:20:51:
24:ff:42:48:d1:f9:2f:2b:c9:e2:ca:c8:5e:66:18:dc:69:9e:
f9:0d:72:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:02 2024 by rpki-client on console-fra.rpki-client.org