Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/p2orkDxB2S-f4Xo54nSRD4tCCrU.roa
File: p2orkDxB2S-f4Xo54nSRD4tCCrU.roa (raw, json)
Hash identifier: 0A8IkDjAqavg1kv2WOilSYVA6VCXb/gb1A93iXp72cw=
Subject key identifier: A7:6A:2B:90:3C:41:D9:2F:9F:E1:7A:39:E2:74:91:0F:8B:42:0A:B5
Certificate issuer: /CN=787650d0951529b1a817232c12c42e49b889e1b8
Certificate serial: 018DC141A79823016A19832912BDD2D0AA7E
Authority key identifier: 78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/p2orkDxB2S-f4Xo54nSRD4tCCrU.roa
Signing time: Mon 19 Feb 2024 12:05:21 +0000
ROA not before: Mon 19 Feb 2024 12:05:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.150.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 08:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:41:a7:98:23:01:6a:19:83:29:12:bd:d2:d0:aa:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787650d0951529b1a817232c12c42e49b889e1b8
Validity
Not Before: Feb 19 12:05:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a76a2b903c41d92f9fe17a39e274910f8b420ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d7:81:bc:9a:d3:7d:b6:15:79:1c:19:0f:09:
16:56:1d:62:34:8b:4b:f5:11:ef:9e:93:b8:cc:21:
91:52:20:26:57:85:d9:9b:8e:d7:7e:76:77:b8:a8:
1d:bf:3a:c7:12:25:db:1e:61:f4:d7:9b:6e:9b:31:
30:d1:05:14:c1:c0:8d:36:5b:b1:98:b9:c5:ba:ed:
9e:2b:62:80:80:3d:a2:50:5a:1e:fb:cb:f4:4d:99:
2e:55:1d:22:07:80:d6:1c:0b:df:0f:fe:9d:9d:95:
d7:18:64:5e:39:9e:66:8c:75:ac:3e:9c:e1:e4:c1:
31:95:a9:8f:a0:e1:d6:d7:83:9e:3d:c6:0e:68:b5:
e3:2d:c0:58:94:0f:26:bc:8c:8d:bb:6a:20:c8:8e:
f1:e2:7e:a0:72:98:d8:c1:46:f4:d4:85:bf:59:46:
17:7e:14:0a:a1:b1:f3:7d:00:e7:7b:c4:03:01:cf:
b6:0c:d1:2e:d8:59:1f:3a:6e:20:b2:fb:37:ee:6e:
8a:1b:40:d1:3c:44:2d:0c:d6:13:56:ee:da:a5:6c:
4a:3d:1c:24:08:2c:98:78:e2:3a:b0:58:37:d8:95:
7e:34:25:5a:8c:c8:f6:20:15:ad:db:a6:18:cd:77:
46:24:79:74:44:c2:c0:6d:22:0f:49:6b:03:3d:a5:
3e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6A:2B:90:3C:41:D9:2F:9F:E1:7A:39:E2:74:91:0F:8B:42:0A:B5
X509v3 Authority Key Identifier:
keyid:78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/p2orkDxB2S-f4Xo54nSRD4tCCrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.149.0/24
Signature Algorithm: sha256WithRSAEncryption
26:16:37:3c:17:2d:22:a2:0b:0c:20:77:11:6f:0b:55:65:c8:
13:bf:45:5d:b7:30:21:eb:c6:7c:6c:23:21:5b:c3:8c:11:9c:
95:3e:7e:2b:25:dd:a7:36:95:97:7d:f0:d0:a6:77:98:72:90:
ec:a1:a2:d7:8a:8e:4e:fe:eb:3d:ba:fa:f6:ba:1f:ea:42:42:
51:69:5b:49:fb:69:ca:a8:11:62:c1:b8:09:2b:69:8c:73:b8:
24:4a:f0:f0:13:45:b1:c8:dc:d6:5c:5d:ed:6d:29:41:8b:06:
35:9f:27:50:21:28:5a:67:8e:21:68:f3:93:e8:46:98:e9:5e:
d1:36:05:65:1a:60:b6:49:5e:fe:9a:b5:93:98:27:80:ef:da:
18:a5:77:d1:0e:e1:de:fa:b2:cf:f4:ac:18:9c:39:9e:cc:3f:
86:d9:76:de:2e:62:8a:fb:98:75:1e:50:bb:76:f7:cd:3e:5d:
66:00:79:ff:8b:37:9e:32:88:12:44:5b:c2:62:fd:5e:64:f7:
1e:2f:e6:52:0a:70:68:97:2b:64:75:38:a3:b8:d4:4f:19:6c:
8e:6a:b6:5f:72:29:3a:36:3d:2b:88:b5:9a:24:2e:ca:5c:a3:
09:98:c8:04:5a:18:6d:13:4f:11:10:ae:95:28:87:dd:dd:2f:
ec:a7:5e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:33 2024 by rpki-client on console-fra.rpki-client.org