Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/BziU0HMhHALrW1_kaCA6NKdY2NQ.roa
File: BziU0HMhHALrW1_kaCA6NKdY2NQ.roa (raw, json)
Hash identifier: URmvbig76+JDk9ffjftqL62x6TL6jP7oyO19EP/5aRk=
Subject key identifier: 07:38:94:D0:73:21:1C:02:EB:5B:5F:E4:68:20:3A:34:A7:58:D8:D4
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 018B7108FC41E64FE0B0AA0C42211B9C2ADB
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/BziU0HMhHALrW1_kaCA6NKdY2NQ.roa
Signing time: Fri 27 Oct 2023 12:08:15 +0000
ROA not before: Fri 27 Oct 2023 12:08:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.37.0/24 maxlen: 24
45.149.38.0/24 maxlen: 24
45.149.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 10:36:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:71:08:fc:41:e6:4f:e0:b0:aa:0c:42:21:1b:9c:2a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Oct 27 12:08:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=073894d073211c02eb5b5fe468203a34a758d8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:44:be:c5:e3:b9:39:5e:f4:0b:71:9f:18:83:
cb:7c:d5:b2:ee:e8:d6:93:99:8c:50:49:9d:39:2a:
26:e2:7f:5e:fb:1d:ec:a0:c8:7f:8a:87:d3:9c:90:
46:73:ba:10:10:5e:19:3f:2a:9c:9a:df:d8:5e:be:
ba:a8:c6:d1:c5:6d:6f:6d:3e:f3:5a:60:9d:b0:e8:
2f:2c:4c:6b:32:2c:a4:64:e0:e9:13:15:11:9e:0a:
5c:da:e8:39:2c:7a:85:ad:f1:9d:33:57:c3:c6:a9:
6e:e4:00:e6:e5:64:b0:6a:69:90:ad:52:0f:3a:f0:
99:63:4e:f9:cd:4f:ba:85:a3:2e:b3:3e:a4:38:01:
2d:df:26:34:85:d8:66:6e:00:e5:46:19:3b:10:1a:
15:f1:a9:d1:81:bd:c7:ff:ee:ce:13:51:e0:3f:08:
1a:0c:fd:6d:dd:31:76:36:a7:39:53:b1:88:d6:21:
7c:e2:3f:4b:47:52:24:4c:f8:ed:49:69:d4:98:9b:
29:f3:ec:46:b9:a1:e0:d5:cd:9b:f5:e8:71:8f:f1:
e6:0b:1c:90:82:7d:46:b9:46:b0:88:d3:96:bd:35:
07:a2:48:25:b3:33:df:78:0e:6b:c0:6f:56:ff:b7:
1b:67:d2:1f:53:80:8f:93:03:93:24:19:cf:66:90:
03:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:38:94:D0:73:21:1C:02:EB:5B:5F:E4:68:20:3A:34:A7:58:D8:D4
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/BziU0HMhHALrW1_kaCA6NKdY2NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.36.0-45.149.38.255
Signature Algorithm: sha256WithRSAEncryption
33:5f:17:16:4d:e4:1b:20:6c:74:5c:3f:fd:fc:d1:80:23:e9:
8c:01:60:c5:99:e9:d3:b4:a1:2a:7a:04:a7:d1:d2:e6:68:4a:
57:ac:52:65:05:62:91:0f:7d:e0:d2:12:e1:c5:27:f7:d5:68:
3e:a7:e5:86:68:b5:42:96:46:b7:e5:45:d0:c6:9d:f7:f8:f7:
e0:84:ee:f0:ac:18:52:ab:7e:1f:79:5d:14:9e:24:29:58:9f:
a7:a8:6e:ed:9c:35:8e:35:37:6d:b7:3b:6c:af:6a:b0:d8:a9:
92:70:ec:ca:cc:21:fc:f6:c4:e7:20:d8:8a:a8:60:47:f8:6f:
e7:44:3b:c2:53:01:fb:7f:4b:33:ee:d0:d2:5b:18:67:a9:46:
0a:94:9b:27:2e:e3:d1:1f:13:5c:18:79:c8:43:89:f2:37:36:
03:8d:74:e2:f2:32:95:e5:82:cf:61:9a:eb:55:9f:d3:31:c5:
a4:42:af:d6:cb:aa:ab:ca:4d:b0:7a:71:65:c4:20:76:19:00:
c4:36:5e:e8:f4:00:8c:bc:12:76:b3:aa:f1:31:4c:8f:4d:81:
a0:69:86:d6:d2:e6:3a:75:05:46:25:b6:4f:52:e2:47:76:bc:
b1:e9:74:19:ee:8a:a5:25:76:12:a2:ba:7e:f8:fd:74:0c:d5:
29:20:40:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:29 2024 by rpki-client on console-ams.rpki-client.org