Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/BDLeSakiAJQIBxdlO7wojVL_6P0.roa
File: BDLeSakiAJQIBxdlO7wojVL_6P0.roa (raw, json)
Hash identifier: fHihnghq87UjDzure6XEKZs/kZTKJiaU5Uf/IqqRaWY=
Subject key identifier: 04:32:DE:49:A9:22:00:94:08:07:17:65:3B:BC:28:8D:52:FF:E8:FD
Certificate issuer: /CN=93a229e266b2558899f3547ee63d84ed6594768b
Certificate serial: 01856ECB7E4A4BFB95A9B9045149DDE39562
Authority key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/BDLeSakiAJQIBxdlO7wojVL_6P0.roa
Signing time: Sun 01 Jan 2023 19:25:07 +0000
ROA not before: Sun 01 Jan 2023 19:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48357
IP address blocks: 45.88.202.0/24 maxlen: 24
2a0c:2c41:1000::/48 maxlen: 48
2a0c:2c40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:7e:4a:4b:fb:95:a9:b9:04:51:49:dd:e3:95:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a229e266b2558899f3547ee63d84ed6594768b
Validity
Not Before: Jan 1 19:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0432de49a9220094080717653bbc288d52ffe8fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:89:39:15:81:51:cc:63:94:1b:f2:a4:f9:19:
94:d5:ac:61:6d:0c:8f:8e:04:06:c6:23:47:6f:15:
0f:a7:99:94:58:62:f6:83:8a:f4:c5:db:d5:1d:f2:
e2:21:78:7d:7e:e8:17:10:9c:a3:d8:cd:57:75:69:
13:c3:7e:4d:b6:46:7f:25:b6:b4:50:4f:ad:81:3c:
c8:41:c6:c4:45:10:6e:b8:1f:10:8e:ac:d7:f3:c2:
f3:38:39:95:fe:df:bc:6a:13:52:5c:f6:d6:b6:45:
2e:f2:d6:81:e7:03:2d:a0:59:42:7f:0f:86:97:c7:
4e:54:53:cd:16:09:e9:90:4f:a5:3c:5e:b4:1e:40:
9c:a5:41:ac:cd:5e:66:31:c9:e4:2d:5f:28:d0:bf:
f0:cd:90:60:b3:f0:29:cb:83:a4:55:ad:81:56:cf:
94:f9:61:b3:39:f7:ab:c0:47:83:de:3f:ba:32:c2:
90:db:5a:93:13:70:f4:6d:db:99:18:40:27:c9:31:
fa:5f:13:d9:c2:28:29:d3:78:f5:5a:6d:86:08:eb:
6e:d1:87:aa:e4:9d:ce:bd:d7:bf:a7:b7:f4:42:41:
a7:a7:e1:03:16:2c:dd:4a:eb:ef:01:b5:4d:e3:a5:
3c:b3:87:bf:84:08:65:b0:fa:85:ac:cf:1b:39:b2:
83:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:32:DE:49:A9:22:00:94:08:07:17:65:3B:BC:28:8D:52:FF:E8:FD
X509v3 Authority Key Identifier:
keyid:93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/BDLeSakiAJQIBxdlO7wojVL_6P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.202.0/24
IPv6:
2a0c:2c40::/32
2a0c:2c41:1000::/48
Signature Algorithm: sha256WithRSAEncryption
49:92:c5:ba:db:9e:a6:ef:85:1b:ef:fe:0a:c5:d3:e9:d8:51:
fc:ee:d7:aa:20:59:1d:02:1c:da:e0:3c:c1:f0:d8:97:69:4c:
25:e9:cd:90:8c:3c:8a:4d:40:15:bc:5e:66:9e:7b:73:a3:77:
39:49:ca:98:e9:47:ba:1d:75:b5:c2:bd:5f:30:bf:c8:c8:97:
7c:dd:45:93:0c:31:20:19:08:b0:a9:5a:65:1a:4f:10:fc:0e:
5d:30:2c:97:4b:0b:aa:fe:44:1c:76:c6:a0:95:fa:92:99:7b:
1d:90:63:d4:76:5a:22:4d:ca:83:28:36:48:2e:41:84:86:b3:
2e:a3:bb:f6:02:db:e6:2b:6e:22:44:68:20:b7:92:cd:eb:90:
2b:ae:ea:a7:05:d1:2a:88:53:35:fc:1f:67:02:b1:46:73:5c:
9a:aa:04:7a:ed:ec:c8:35:03:c4:55:68:51:5c:e0:56:01:bd:
96:25:8e:09:71:b3:69:7f:11:97:c5:a9:de:46:b8:3e:11:f7:
f8:13:42:31:e6:fb:f7:ec:21:45:34:76:b2:fc:6b:dd:b4:c1:
50:50:9b:ed:fd:31:37:db:11:7e:90:73:80:2b:29:80:8c:4b:
52:5d:45:e7:37:e6:e0:07:fa:a7:d9:66:ef:b9:80:a7:12:56:
b3:c5:f7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-fra.rpki-client.org