Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SmjBnF6SjiUOiL3x7qBT5XZRSvk.roa
File: SmjBnF6SjiUOiL3x7qBT5XZRSvk.roa (raw, json)
Hash identifier: u7YCJZgOdsr/GQOQAb5bYGYlRn+4Hehy85Ye4afZ0HI=
Subject key identifier: 4A:68:C1:9C:5E:92:8E:25:0E:88:BD:F1:EE:A0:53:E5:76:51:4A:F9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018B50BA1D8B3E7D5765ECB0BFD075B9B676
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SmjBnF6SjiUOiL3x7qBT5XZRSvk.roa
Signing time: Sat 21 Oct 2023 05:34:16 +0000
ROA not before: Sat 21 Oct 2023 05:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210636
IP address blocks: 45.94.30.0/24 maxlen: 24
45.94.28.0/24 maxlen: 24
45.94.29.0/24 maxlen: 24
45.148.26.0/24 maxlen: 24
45.88.246.0/24 maxlen: 24
45.132.192.0/24 maxlen: 24
45.88.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:50:ba:1d:8b:3e:7d:57:65:ec:b0:bf:d0:75:b9:b6:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 21 05:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a68c19c5e928e250e88bdf1eea053e576514af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bb:b5:8f:34:45:ad:81:f9:08:ba:b1:83:ee:
51:53:ea:b0:06:29:40:28:73:9b:05:60:fe:0f:ae:
62:72:63:8e:a6:08:c1:f6:bb:d1:f1:55:df:68:22:
22:04:a4:9e:4d:dc:ae:50:58:ac:86:ea:4b:73:96:
42:23:ea:05:f6:51:10:15:bd:90:b8:c9:58:c8:17:
90:86:d0:85:cf:17:fe:ca:32:3b:bc:99:1b:95:61:
88:28:a3:94:f5:0d:32:19:e5:da:85:8f:cb:04:9e:
3c:69:ca:fa:12:c7:9e:59:89:5c:24:e9:ac:e3:67:
e9:1a:31:41:1a:42:0a:ba:23:29:57:7e:8b:f3:22:
be:78:40:9e:70:e0:e6:27:72:a6:ff:eb:17:0e:76:
74:5c:40:66:02:93:f9:04:54:f8:cb:3d:74:84:7a:
d5:82:3f:e6:bd:bc:68:d5:e2:75:5c:93:6a:8a:d3:
7c:a4:f0:b8:a1:f9:09:04:49:6d:3d:08:18:48:ed:
78:de:cc:e3:a2:b0:84:56:8d:b4:8a:20:95:d5:65:
ce:d1:5a:a6:c9:d3:eb:0b:dc:29:10:de:93:18:56:
b9:00:01:b0:db:17:a4:69:aa:03:66:f2:d5:b4:52:
ff:f5:48:1b:eb:f0:02:d7:94:19:48:b4:eb:83:b4:
2b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:68:C1:9C:5E:92:8E:25:0E:88:BD:F1:EE:A0:53:E5:76:51:4A:F9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SmjBnF6SjiUOiL3x7qBT5XZRSvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.246.0/23
45.94.28.0-45.94.30.255
45.132.192.0/24
45.148.26.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4f:d9:13:40:41:62:4f:a5:46:25:cb:7d:8a:8a:5e:3f:76:
74:ea:41:84:bb:b6:d0:90:b8:41:89:f4:8d:f5:ce:d8:3e:88:
15:06:67:2f:e8:07:3f:95:63:20:8d:95:d4:ce:4c:34:b0:21:
25:fa:a4:eb:2e:2f:2c:0f:21:ab:00:6b:9f:d6:b9:90:90:a8:
08:db:c9:e8:d1:ba:39:69:38:95:5a:d5:2d:73:03:e4:b9:ad:
92:81:d3:54:de:d7:44:42:42:89:0a:81:f2:65:65:47:ce:4a:
1e:21:15:b9:c7:28:a1:b2:b7:f8:5c:c4:58:fd:21:01:de:20:
f4:8d:9c:a3:ae:ad:d1:6c:59:48:0d:60:0f:82:48:35:2d:d9:
51:b9:66:0f:53:11:b6:34:78:06:f2:13:74:6a:08:99:04:96:
33:23:32:75:3e:fe:73:1c:c4:23:ad:ad:80:5b:74:7e:27:6f:
44:48:80:92:94:6a:0e:e0:53:26:6e:02:78:40:8b:84:04:45:
ef:0f:61:e5:33:54:75:ca:15:51:99:14:d2:4c:e5:2c:ba:4f:
95:15:ff:a5:cc:e0:e6:06:1a:90:f8:0f:21:58:16:54:db:cf:
eb:82:8a:42:3e:94:d6:74:b7:2f:4c:dd:e8:36:bd:f4:85:ef:
36:2a:8c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org