Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/O81ferCxs9hzAZt3OU0j0BFHcjw.roa
File: O81ferCxs9hzAZt3OU0j0BFHcjw.roa (raw, json)
Hash identifier: 4tTMk+2Cj3NKF5tSnCfkVA1vgB1KYXy1j55mVZUzaEw=
Subject key identifier: 3B:CD:5F:7A:B0:B1:B3:D8:73:01:9B:77:39:4D:23:D0:11:47:72:3C
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01918D34F191F932B102A97092C4F4CDD4D8
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/O81ferCxs9hzAZt3OU0j0BFHcjw.roa
Signing time: Mon 26 Aug 2024 05:42:22 +0000
ROA not before: Mon 26 Aug 2024 05:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137517
IP address blocks: 45.146.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Nov 2024 07:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8d:34:f1:91:f9:32:b1:02:a9:70:92:c4:f4:cd:d4:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Aug 26 05:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bcd5f7ab0b1b3d873019b77394d23d01147723c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bd:d4:8f:b6:59:54:e2:56:3d:bf:88:3c:71:
8c:39:a0:d9:52:34:ba:10:2c:45:69:e5:8d:d1:38:
17:8b:8c:0e:9f:7e:a2:f8:bf:03:0e:52:60:cd:4e:
86:b2:46:d0:d5:80:5c:c0:64:1a:f9:e7:d1:60:49:
7f:4b:19:97:e5:c7:86:fe:66:7e:2f:cf:0f:95:09:
a5:6d:74:0c:7f:75:db:e6:4f:3f:39:18:79:b7:71:
2d:4e:1d:a6:e0:23:14:1e:a4:7e:a9:00:9a:0c:39:
77:e1:72:07:68:4d:da:45:d5:04:51:cf:de:0e:43:
4e:30:d0:09:79:e0:09:c7:55:83:98:21:ad:3e:d6:
83:e4:89:31:6c:f2:6e:a0:10:db:2b:e9:10:ea:98:
f5:75:70:ff:d5:97:7b:6f:a7:93:b5:62:cb:95:74:
7d:df:f8:77:44:5b:af:ae:ba:ab:ba:09:9c:6f:b3:
8a:c0:0c:79:4a:ac:f4:84:d9:3a:19:85:f9:73:92:
3e:67:10:a5:00:8d:71:35:ac:de:92:2c:b7:1e:2a:
b1:76:50:ab:1d:e1:1a:3d:ab:be:d7:26:ab:af:ef:
bb:93:ee:bd:40:c1:fb:7e:09:0d:e0:18:32:1a:0c:
e7:b2:2f:96:d1:11:3d:ec:33:47:6d:df:7d:f5:58:
25:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CD:5F:7A:B0:B1:B3:D8:73:01:9B:77:39:4D:23:D0:11:47:72:3C
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/O81ferCxs9hzAZt3OU0j0BFHcjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/24
Signature Algorithm: sha256WithRSAEncryption
75:72:c6:62:7e:65:4a:28:06:3f:35:1d:1e:b1:a7:5c:f7:29:
b9:a4:5b:0d:14:fe:da:9b:18:89:ea:de:e3:eb:e0:50:f6:30:
cd:5f:63:e5:7c:74:a9:30:88:db:ca:b3:f1:16:b5:80:6d:15:
30:3c:7a:28:90:06:7f:ff:d6:48:3a:71:28:de:56:7b:65:b8:
5a:41:a8:93:19:78:e2:36:68:ba:03:f2:b5:b3:13:76:3b:ea:
43:d8:e1:34:5a:f2:28:a1:49:b2:d1:31:32:0d:fa:4c:6e:6b:
99:77:3d:ba:2e:35:13:93:51:d2:06:99:88:65:f5:6d:0c:d7:
d4:f7:11:36:d9:ee:ee:50:1f:94:a6:2e:01:fc:01:ca:84:fc:
c6:ff:4d:19:f2:12:78:40:c2:b2:93:3e:f7:86:dd:23:f9:89:
a9:80:e1:bb:a3:03:64:87:bb:b7:49:41:37:b9:05:ac:0c:16:
e0:77:40:81:a8:9f:ab:d2:79:7e:b3:75:04:4e:d9:6b:8c:83:
30:e9:ac:f5:4f:7b:c0:9c:20:4d:67:ba:e3:81:e1:e4:21:19:
80:c4:ba:7d:c1:a9:f2:ed:71:a1:26:cb:3a:d2:41:b9:4a:5e:
14:95:1c:e4:9f:df:b4:84:60:8f:93:f5:eb:be:84:9a:98:3a:
a0:20:c1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:36 2024 by rpki-client on console-fra.rpki-client.org