Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/7ZSZNwU0Yp5IlaCQvt5q42k9HbE.roa
File: 7ZSZNwU0Yp5IlaCQvt5q42k9HbE.roa (raw, json)
Hash identifier: E62DiR/v6l+lvSnwl/R8LmLeZIbnDVWjGyKoEr9purI=
Subject key identifier: ED:94:99:37:05:34:62:9E:48:95:A0:90:BE:DE:6A:E3:69:3D:1D:B1
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF400DA75D2F5555DCF28ED6FC9126
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/7ZSZNwU0Yp5IlaCQvt5q42k9HbE.roa
Signing time: Sun 01 Jan 2023 09:35:02 +0000
ROA not before: Sun 01 Jan 2023 09:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 45.146.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 06:37:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:40:0d:a7:5d:2f:55:55:dc:f2:8e:d6:fc:91:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed9499370534629e4895a090bede6ae3693d1db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:29:bf:e5:c9:24:4f:6e:35:21:20:ed:1b:10:
8a:ca:8d:e7:f2:f0:66:3c:cc:5a:a2:73:f6:79:0d:
33:ea:1c:86:e6:8c:b4:f9:24:6c:f1:93:12:8a:a1:
dc:38:13:67:0e:b8:f8:14:67:68:db:9e:03:a4:12:
61:b7:7c:6d:67:6a:47:95:30:cc:20:94:bc:94:d2:
66:73:54:52:e1:ad:6d:ab:4f:1f:de:00:61:7e:52:
08:ac:ad:03:9f:17:64:ab:f3:d7:54:86:66:0d:49:
15:41:0e:a5:db:4e:06:8e:28:80:a7:32:b4:58:d5:
00:4b:08:5b:50:8c:1b:57:ac:4f:32:4e:6e:c6:18:
3b:2f:f4:80:b5:0d:06:33:1d:29:45:34:84:51:34:
ff:66:f1:d9:79:62:d1:88:76:3c:ba:21:ee:8e:f8:
44:b4:9f:89:19:25:bd:d8:8d:11:c6:56:3d:75:29:
d8:c3:b2:02:21:1d:7d:04:4c:99:97:9a:74:87:18:
4f:27:ab:6b:2e:74:15:d2:9f:2d:e9:f6:71:4a:ba:
d1:b2:e3:f5:60:c7:c6:8d:10:38:ae:e4:3a:92:13:
59:c3:84:49:a4:ef:e1:38:76:3d:a3:11:a0:db:90:
b2:94:d4:89:8d:96:e5:f6:76:f3:91:32:e4:84:13:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:94:99:37:05:34:62:9E:48:95:A0:90:BE:DE:6A:E3:69:3D:1D:B1
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/7ZSZNwU0Yp5IlaCQvt5q42k9HbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.203.0/24
Signature Algorithm: sha256WithRSAEncryption
47:09:27:ad:18:62:f9:42:f8:05:b9:8b:34:9f:20:aa:7e:f5:
14:0c:c9:30:ad:7d:d8:e6:c8:f6:b4:f6:42:0b:ec:93:47:04:
1a:2e:27:2c:86:b1:cd:14:d6:02:84:44:db:c1:77:ab:18:62:
c9:5c:3b:7a:e9:c4:b1:17:c4:82:dd:41:47:60:fc:7b:ce:5f:
bb:71:78:ac:42:60:bd:ca:a3:b5:07:c6:37:08:5d:db:ab:80:
e4:87:c2:c5:7d:a0:27:cb:e0:3e:73:87:e8:ba:22:8e:38:48:
fa:f2:39:4b:b0:71:61:24:e2:4e:59:6d:12:18:c0:3b:db:0b:
80:47:94:87:21:08:d4:ff:6f:21:89:4f:41:b7:10:08:fa:61:
05:4d:25:e1:56:0d:f3:a2:1a:e7:45:80:c7:60:39:b4:bf:23:
26:ef:5c:77:1a:96:a0:59:c3:02:8d:75:8d:68:5e:b2:3b:43:
73:2d:df:6a:1e:4e:12:d9:39:15:77:f6:64:44:81:4a:9e:1c:
5b:49:15:e2:3a:d3:cb:89:7b:6e:d7:ad:79:94:9e:e4:27:07:
92:2f:ef:00:96:e7:9b:ea:eb:a9:0c:11:fe:b9:d0:ab:fd:eb:
ec:0b:e2:0b:78:f2:dd:7c:67:12:ec:18:04:15:74:1c:f3:c5:
95:92:fb:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org