Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/b5QY_iVvgVQNOIcAqGnKsneyobo.roa
File: b5QY_iVvgVQNOIcAqGnKsneyobo.roa (raw, json)
Hash identifier: kBP+eAD8NAtauAMhCaUfydbTyCRkLIRmdLjRolP5Fuw=
Subject key identifier: 6F:94:18:FE:25:6F:81:54:0D:38:87:00:A8:69:CA:B2:77:B2:A1:BA
Certificate issuer: /CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Certificate serial: 0185729EC35A3C0F697FFEE635040E9A490E
Authority key identifier: B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/b5QY_iVvgVQNOIcAqGnKsneyobo.roa
Signing time: Mon 02 Jan 2023 13:14:45 +0000
ROA not before: Mon 02 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.136.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:c3:5a:3c:0f:69:7f:fe:e6:35:04:0e:9a:49:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Validity
Not Before: Jan 2 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9418fe256f81540d388700a869cab277b2a1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:94:e7:cc:91:c2:0c:b7:38:14:e2:64:79:3d:
eb:f7:9a:5c:bb:e7:22:54:9d:9b:17:b0:17:c8:f8:
2b:10:7b:0a:58:26:27:28:76:98:98:e3:f4:ad:e9:
eb:0b:af:7b:3e:49:c2:ed:16:40:3f:3f:c0:4a:0e:
4f:39:bb:36:77:a4:4e:b7:7d:06:8e:0c:6e:13:06:
f3:40:37:e6:b1:c9:ef:c7:f6:6f:42:cb:bc:30:1e:
ea:21:26:3c:0e:25:17:6a:f3:10:18:e2:af:f9:48:
cc:e1:a7:b8:c3:0f:21:33:02:3e:87:94:79:c7:a9:
3d:ae:83:27:82:57:36:95:9c:05:73:58:47:d5:1d:
e4:36:b5:d5:0b:fb:8e:b4:90:4e:30:b2:3d:7a:49:
7d:90:70:88:21:8b:0c:9b:6a:3d:da:3b:f7:05:4a:
96:ae:1e:97:ff:16:80:ba:08:26:34:99:6b:81:dd:
6b:13:d4:aa:74:19:26:fb:de:37:7c:60:d9:d3:31:
4f:fb:22:78:84:38:fa:dc:f5:21:fc:ff:7b:9c:f0:
03:c5:ac:71:ae:c3:90:a5:40:7c:22:c5:dd:93:38:
45:8f:c3:7e:e9:15:94:70:76:51:d0:db:f2:25:ab:
97:bd:94:1b:56:4c:37:94:17:8c:ed:96:17:ef:b3:
aa:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:94:18:FE:25:6F:81:54:0D:38:87:00:A8:69:CA:B2:77:B2:A1:BA
X509v3 Authority Key Identifier:
keyid:B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/b5QY_iVvgVQNOIcAqGnKsneyobo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.240.0/22
Signature Algorithm: sha256WithRSAEncryption
69:cc:83:4d:12:bd:c8:9b:d3:dc:41:e0:df:8e:9f:7a:25:59:
be:44:fa:5e:8f:d4:6d:0a:28:62:46:35:83:b1:d8:65:e1:fe:
d5:36:80:88:ca:ff:81:44:aa:ed:ad:0c:08:7f:5d:9e:b9:0e:
fc:5e:0a:ce:bd:8d:67:4b:82:55:45:76:67:ca:2c:dd:3d:af:
f2:78:20:36:03:d7:4d:a8:9a:4c:36:c5:ab:5a:a7:e2:6c:65:
a4:71:a4:33:ec:00:ef:73:fc:cd:a8:e9:06:5e:48:14:c1:bf:
cb:f8:a8:be:1d:a8:99:2e:a9:f0:74:16:43:5a:7f:01:ea:03:
0d:69:57:3c:88:51:ea:a8:f7:8f:68:49:e4:53:c0:a9:4b:44:
72:10:39:8b:ec:36:c7:ab:7c:cf:aa:05:8f:0d:34:2d:17:d6:
05:f5:e6:0b:15:25:08:a8:9a:91:39:fb:ff:c9:54:bf:9a:85:
31:19:95:57:dc:b0:8e:94:a8:42:47:45:40:9e:04:0c:8b:bf:
24:f4:a3:19:6e:24:e3:69:f8:8a:2a:8b:ef:2f:4f:25:61:86:
d2:6c:2d:70:c6:b4:20:d6:1b:8f:8e:3d:51:a3:3f:a6:ae:65:
05:9c:30:3c:a4:1f:31:e4:3b:76:27:5a:89:94:8f:1e:6b:aa:
8e:6a:df:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:07 2024 by rpki-client on console-ams.rpki-client.org