Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/65Yk6qPg4myRoedH7gtAOKltIPU.roa
File: 65Yk6qPg4myRoedH7gtAOKltIPU.roa (raw, json)
Hash identifier: BBfL4MdpVGVZodeyWAqtKulfdc1bxeHvOQxJkToCo1w=
Subject key identifier: EB:96:24:EA:A3:E0:E2:6C:91:A1:E7:47:EE:0B:40:38:A9:6D:20:F5
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018AD0C1F9A2216A540C94E125789FDCF754
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/65Yk6qPg4myRoedH7gtAOKltIPU.roa
Signing time: Tue 26 Sep 2023 09:11:27 +0000
ROA not before: Tue 26 Sep 2023 09:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 45.130.82.0/24 maxlen: 24
2a0b:64c6::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 27 Sep 2023 06:42:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:c1:f9:a2:21:6a:54:0c:94:e1:25:78:9f:dc:f7:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Sep 26 09:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb9624eaa3e0e26c91a1e747ee0b4038a96d20f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:64:28:dc:44:55:28:fb:41:aa:4d:df:95:d1:
cb:88:54:12:83:09:1b:6f:2f:f6:57:fd:a6:e1:d0:
c8:22:71:4c:be:b0:a3:6d:e7:06:e4:d6:f1:2f:aa:
05:27:8e:7f:5c:03:a3:e0:f6:11:87:d7:8f:28:b2:
03:0f:ad:48:b3:91:fb:78:8e:04:dc:01:f3:9b:f9:
37:b1:f6:7a:ca:4a:7b:f7:9a:6d:e4:d1:73:59:2d:
90:65:ea:d2:92:6c:f8:27:a4:40:7c:a2:df:7e:86:
fc:d9:f7:7a:5d:ce:d1:ec:66:86:ac:ec:3f:30:5a:
6b:39:39:d3:5b:ab:ad:1f:86:ac:9a:1f:73:b7:f1:
f0:25:36:1a:e3:ec:5d:5a:94:ba:e0:5e:30:0f:7a:
6b:ee:d9:b5:63:ad:f2:27:83:be:59:79:26:ba:c9:
2a:58:b4:3e:44:d1:71:89:ac:f1:ca:b6:4a:70:b6:
3f:28:90:0d:12:42:38:fc:90:7f:82:a5:6d:19:9c:
76:3c:d4:f7:2b:6d:22:39:e5:8a:96:29:93:38:22:
50:31:22:a5:7e:16:1d:c9:52:64:22:11:aa:ac:78:
04:02:e8:0e:b7:8f:05:e5:4b:33:a0:d4:dd:ac:bf:
26:4e:5e:b4:a9:e3:21:aa:cc:2c:76:0a:ee:46:cb:
84:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:96:24:EA:A3:E0:E2:6C:91:A1:E7:47:EE:0B:40:38:A9:6D:20:F5
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/65Yk6qPg4myRoedH7gtAOKltIPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.82.0/24
IPv6:
2a0b:64c6::/32
Signature Algorithm: sha256WithRSAEncryption
40:24:e7:c1:3a:1c:bf:0a:3f:07:cc:c2:ef:97:83:53:08:42:
3e:f7:28:51:fd:14:0d:f8:ec:40:3d:1a:40:91:99:6a:78:83:
de:34:7c:91:d9:40:7d:7b:7c:33:e0:78:da:6a:56:00:77:fc:
7a:de:4b:0f:c7:3a:3d:61:a8:36:cc:d2:1a:f9:2b:a0:01:65:
e6:05:62:f2:53:8d:0f:4f:54:4a:dc:33:ef:d6:32:f2:d8:2e:
57:02:72:55:27:16:79:24:a1:af:46:a2:82:ad:80:d8:fa:b0:
c6:5d:15:8e:ca:f2:83:62:76:c9:43:62:39:06:b1:94:92:51:
fb:9e:20:70:aa:a1:39:b3:92:f1:84:0c:8a:83:ec:b2:25:b2:
83:8d:29:72:45:aa:8d:32:84:5d:57:c6:54:72:cd:04:b7:95:
ca:f7:0b:29:d1:9b:ad:5e:e0:b5:c3:06:46:7f:08:13:be:93:
03:e1:5c:8d:4a:69:2d:69:d3:9b:45:6f:3e:05:01:ea:13:b6:
d3:fb:16:a5:06:99:5b:33:ae:73:c5:7f:45:5e:3d:33:8b:fc:
a8:f9:85:de:c8:00:c9:58:ad:b6:53:4c:6a:3c:55:75:e8:d3:
11:6e:d5:c3:5b:3e:58:41:3f:ad:0b:0a:35:df:2d:8e:d2:61:
e2:b8:27:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:44 2024 by rpki-client on console-fra.rpki-client.org