Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/vD2eMppbu5o-YtWJLCY9hLrk3uI.roa
File: vD2eMppbu5o-YtWJLCY9hLrk3uI.roa (raw, json)
Hash identifier: AuLCxpQpkC9IbEvxKAkXEBWnX2qmuPoZuSyvn6H92n8=
Subject key identifier: BC:3D:9E:32:9A:5B:BB:9A:3E:62:D5:89:2C:26:3D:84:BA:E4:DE:E2
Certificate issuer: /CN=787650d0951529b1a817232c12c42e49b889e1b8
Certificate serial: 018D1D8C515DAA63C0A7E8000B37F32AEEFE
Authority key identifier: 78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/vD2eMppbu5o-YtWJLCY9hLrk3uI.roa
Signing time: Thu 18 Jan 2024 17:09:11 +0000
ROA not before: Thu 18 Jan 2024 17:09:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215772
IP address blocks: 45.150.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 12:05:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1d:8c:51:5d:aa:63:c0:a7:e8:00:0b:37:f3:2a:ee:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787650d0951529b1a817232c12c42e49b889e1b8
Validity
Not Before: Jan 18 17:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc3d9e329a5bbb9a3e62d5892c263d84bae4dee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:41:6d:67:0e:3d:19:9c:7f:f9:b4:c6:07:4b:
de:d3:8f:0e:7f:7d:6c:9c:01:19:a8:0f:17:e2:4f:
1e:ad:35:71:eb:47:ff:4c:bd:0f:a6:a8:97:ff:5a:
16:89:17:19:ab:08:ac:59:c9:0b:13:a2:72:40:1a:
5c:50:f6:b4:1f:85:0f:b9:cb:09:e2:95:38:89:52:
f5:de:ea:b6:3b:58:88:8d:4f:86:3f:d4:08:24:d6:
ec:d9:3d:2b:c0:e1:5d:56:80:ce:92:a3:25:31:67:
4b:49:9a:f0:a3:6a:eb:3b:1c:24:25:82:c1:23:49:
b3:ba:b4:87:01:29:59:65:46:60:aa:30:80:06:47:
be:a4:e4:e9:31:c5:13:b0:aa:72:cb:cd:c5:06:1f:
3e:fb:6c:a3:ec:56:af:57:5b:ef:d6:12:a6:17:2c:
96:98:c1:09:07:86:cd:40:61:50:40:b8:c4:aa:83:
c3:f2:29:ea:f9:ca:75:78:b4:a1:5f:b9:4e:75:ba:
8a:dd:f2:74:2d:aa:34:df:1a:1a:d1:f3:e0:9e:69:
75:a2:78:ba:ab:58:4b:1c:5c:35:04:55:39:67:8c:
a5:8e:d3:d6:02:38:ef:c6:54:6b:55:82:8a:7e:2b:
cd:d0:cc:a2:f4:41:26:f2:f3:79:8a:3a:4b:e7:f6:
13:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3D:9E:32:9A:5B:BB:9A:3E:62:D5:89:2C:26:3D:84:BA:E4:DE:E2
X509v3 Authority Key Identifier:
keyid:78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/vD2eMppbu5o-YtWJLCY9hLrk3uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.149.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a8:d0:17:53:34:ee:b3:97:69:a4:2e:fc:9b:3f:b5:54:27:
98:cd:24:27:6b:31:be:97:d4:29:d7:25:0b:7b:8c:c1:25:8f:
26:82:ec:f2:7a:3b:9e:03:70:6b:1a:13:fd:20:08:c4:54:1c:
71:6b:7c:7b:56:c3:20:13:f7:68:d7:9a:97:e8:19:d2:63:fb:
77:8b:92:e4:c1:5f:d0:d9:19:d4:56:9c:0b:92:db:e3:f6:a1:
6d:64:08:1c:91:9d:af:bf:ad:80:75:a6:03:6d:81:90:13:8a:
55:2c:cb:64:fc:42:8e:ce:af:04:1a:0c:1f:74:c9:5c:cc:64:
45:dc:1c:62:88:2f:9d:30:81:4f:35:c6:9b:69:50:7d:81:68:
84:f7:68:70:58:fa:d9:08:98:37:7f:0a:ec:50:a8:88:3c:b4:
51:da:c0:25:ca:37:1a:4e:f7:1c:83:81:42:13:79:af:97:5f:
3f:e1:5d:3e:39:91:24:31:af:b9:63:56:7b:d6:38:35:31:b5:
d2:ea:50:07:39:e3:04:50:53:6c:e2:60:b9:7a:3a:a6:02:48:
9b:44:a9:50:75:6c:6c:54:df:46:8a:51:42:d3:6e:44:ed:68:
10:26:a7:d0:86:04:8a:01:b0:32:ea:51:b6:d0:c0:52:61:c0:
9c:e6:7b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:53 2024 by rpki-client on console-ams.rpki-client.org