Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/vWniHRLEOcCwLE2OLOZQhY_8zd0.roa
File: vWniHRLEOcCwLE2OLOZQhY_8zd0.roa (raw, json)
Hash identifier: eOBs1IpDuHLJlv3YyWXZ523fuoJY82X4s1W7EaTCD0I=
Subject key identifier: BD:69:E2:1D:12:C4:39:C0:B0:2C:4D:8E:2C:E6:50:85:8F:FC:CD:DD
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0189D42C956B65AAB0D3BCE4C4CE995CB5DB
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/vWniHRLEOcCwLE2OLOZQhY_8zd0.roa
Signing time: Tue 08 Aug 2023 08:03:58 +0000
ROA not before: Tue 08 Aug 2023 08:03:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.37.0/24 maxlen: 24
45.149.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 12:08:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:2c:95:6b:65:aa:b0:d3:bc:e4:c4:ce:99:5c:b5:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Aug 8 08:03:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd69e21d12c439c0b02c4d8e2ce650858ffccddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:78:1d:d1:42:08:c7:26:84:ca:e0:cc:6e:f8:
6e:0a:93:52:fc:62:bd:4d:9d:ef:67:45:af:99:4d:
0c:03:77:08:8b:ae:36:c4:ec:71:aa:9e:f9:e4:a2:
7b:c9:6a:18:37:9e:3f:ca:02:43:3b:23:75:77:a1:
68:bf:04:3a:08:73:dc:66:2f:cc:55:50:49:e9:1a:
35:39:4d:c9:06:61:35:c7:63:68:90:cb:89:f1:d5:
55:86:0f:49:3f:e4:30:dd:59:d6:43:72:2b:ad:bf:
d3:cb:eb:4e:e1:fc:e3:6d:e0:55:bd:95:14:2b:7a:
ed:df:d7:7f:2a:df:21:55:0d:d2:2e:15:ea:b1:f0:
31:08:0a:98:a8:53:d5:4b:c4:87:ee:cb:d6:65:24:
21:e3:da:89:1e:47:ab:59:0e:0b:26:83:57:bc:46:
e2:c7:e9:16:3b:7b:05:69:65:63:1f:a4:65:16:df:
47:fb:d2:36:3d:20:84:81:42:f5:2c:4a:aa:3c:e3:
7f:25:ef:c3:c1:e4:f9:47:3b:5c:c1:1b:6f:3b:7f:
e0:b4:6a:8d:bd:fb:00:32:fd:9b:7e:68:00:f1:1a:
e5:54:de:6a:7a:f5:bd:e7:90:b6:95:bc:57:ef:a8:
7f:74:70:64:e9:c4:da:62:2e:d0:d5:0a:03:6a:84:
f7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:69:E2:1D:12:C4:39:C0:B0:2C:4D:8E:2C:E6:50:85:8F:FC:CD:DD
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/vWniHRLEOcCwLE2OLOZQhY_8zd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.36.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:55:dc:34:66:12:9d:ac:10:e7:58:71:8e:e0:8a:03:55:8a:
cc:d7:12:2d:d2:4e:24:04:74:9c:71:0a:7e:fd:78:82:c2:04:
8a:b3:35:6f:75:db:3f:ea:8f:17:3a:31:87:df:90:5d:31:d4:
bf:ac:3f:7c:ea:37:df:bd:bf:a7:96:5e:9f:71:97:0c:d0:a9:
a5:53:38:20:f3:64:9a:83:a6:d8:07:b0:95:6e:e8:44:72:8f:
a8:24:e3:41:e5:ee:6f:12:46:bc:1c:54:7b:73:00:ef:f5:3e:
31:d6:67:ca:90:59:4a:53:ae:7a:a6:04:49:9a:c9:34:4a:a1:
01:97:61:1d:13:ff:3a:4e:64:32:f5:95:66:bb:8f:8c:fb:7b:
7f:7c:30:fc:60:3f:9d:58:6f:84:69:9e:8b:dc:69:4b:54:95:
50:1d:ad:64:b7:0d:bd:5b:9d:ab:bc:d5:84:87:d6:1b:fe:18:
e2:92:05:36:23:96:ff:01:a5:c1:7c:ac:46:33:04:af:76:6d:
46:08:77:e4:65:4f:41:46:64:36:36:e5:5e:0e:c4:d7:39:68:
b8:ff:24:56:df:31:3c:dc:18:fb:33:3a:f4:d4:66:8a:86:31:
25:08:b9:c7:e6:f2:8b:b9:03:1a:1d:53:21:73:0b:64:0a:ec:
9a:a3:4c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:02 2024 by rpki-client on console-fra.rpki-client.org