Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDRMWkCRcIl0us4e_xekmsVFLbU.roa
File: DDRMWkCRcIl0us4e_xekmsVFLbU.roa (raw, json)
Hash identifier: ucgS3p2mlSCY6WRJBzbB7m85xGmN66NUynzx8OcBka0=
Subject key identifier: 0C:34:4C:5A:40:91:70:89:74:BA:CE:1E:FF:17:A4:9A:C5:45:2D:B5
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018F99DF13672EC4796580854137B2027362
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDRMWkCRcIl0us4e_xekmsVFLbU.roa
Signing time: Tue 21 May 2024 06:38:04 +0000
ROA not before: Tue 21 May 2024 06:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4648
IP address blocks: 45.136.72.0/22 maxlen: 24
45.144.216.0/22 maxlen: 24
45.146.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:df:13:67:2e:c4:79:65:80:85:41:37:b2:02:73:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 21 06:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c344c5a4091708974bace1eff17a49ac5452db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0d:8a:a7:e5:a2:f0:a0:85:81:9c:24:88:d0:
0a:ad:79:e4:79:4d:4f:31:eb:32:f3:6c:c7:5d:d0:
30:4c:de:b7:63:ff:43:c8:16:b6:7c:6b:f6:3a:3a:
ca:62:78:a6:70:eb:6e:40:32:56:3d:d9:74:33:20:
1d:1f:15:ca:21:89:9e:12:cd:39:1f:2c:c2:0d:68:
6a:f5:75:aa:a4:38:69:e2:58:2b:a6:b4:c7:79:f3:
b7:6b:59:19:f1:ea:55:85:4e:9d:1a:d8:0b:d7:eb:
6f:ce:e8:d9:9b:a7:fd:b9:28:a8:5b:38:a9:76:72:
54:fc:74:b8:a6:fb:c8:b4:a9:ca:18:03:85:4a:af:
8d:9b:4a:c8:44:7d:1d:d7:ad:11:44:d7:4c:7e:b0:
c4:bc:02:41:c1:c8:9b:34:c8:c1:01:31:42:57:f0:
71:8f:01:c4:d0:e1:f1:46:38:90:e3:6a:dc:0a:a9:
4a:50:5a:5e:4a:96:47:1e:50:ea:c9:ed:32:42:f1:
72:e5:db:69:2c:9e:d0:47:4b:c6:d2:5a:1d:81:d5:
b3:1d:5f:78:b4:29:04:ba:62:29:60:0a:2d:68:c7:
46:1c:80:13:a8:ec:b9:21:f0:12:13:a0:aa:32:d7:
62:2c:cc:c7:88:a4:1c:e3:1f:e4:1b:13:f8:a9:3a:
a5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:34:4C:5A:40:91:70:89:74:BA:CE:1E:FF:17:A4:9A:C5:45:2D:B5
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DDRMWkCRcIl0us4e_xekmsVFLbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.72.0/22
45.144.216.0/22
45.146.56.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:30:09:ba:21:ed:04:ba:99:51:da:77:c7:36:d3:9b:20:e3:
94:6f:22:f2:91:d7:c4:35:7b:5e:46:7d:eb:16:58:66:de:1b:
22:bc:34:e8:b1:51:b5:77:76:06:74:90:6c:94:3e:4a:9a:c4:
89:41:aa:69:ea:ab:d9:54:ca:b1:9a:81:ed:5c:61:f2:c7:60:
90:28:bb:79:7c:6b:21:3a:a4:13:b9:94:f9:6e:a9:c9:39:e2:
7a:bd:71:9a:cf:a6:2d:4d:88:b9:48:c9:66:b6:d9:10:18:92:
d6:b8:e0:4c:75:cc:4c:ca:bf:cf:b7:f4:24:cf:12:82:a8:2e:
7a:52:55:e3:35:a2:ea:53:7d:5e:74:56:e1:33:2a:44:f3:27:
7e:8d:6b:4a:d5:69:79:8a:f3:11:ce:b0:74:cb:74:fd:cd:c3:
cf:51:75:35:f8:b0:db:19:b1:66:1e:88:e1:9c:98:4e:39:f8:
49:c9:60:d7:83:98:22:60:51:23:8a:ca:5a:29:37:7c:1e:2c:
bd:72:b2:9f:57:8d:b9:b5:89:af:1c:c2:d1:49:2c:d4:d6:ee:
f2:cd:ec:cc:4d:5e:6c:29:1b:16:b8:6a:5f:50:cc:9a:d2:8e:
2c:34:03:69:6e:a4:af:3a:90:7f:19:ed:3f:4b:28:29:04:0d:
0f:f3:c8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org