Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/BXYpX0o7w3sO7Oio5FzVAZsNnac.roa
File: BXYpX0o7w3sO7Oio5FzVAZsNnac.roa (raw, json)
Hash identifier: rK5lseSOqNkT2aX9zd/Wy6ZAJF7Duy0KHx/UxG3t6Q8=
Subject key identifier: 05:76:29:5F:4A:3B:C3:7B:0E:EC:E8:A8:E4:5C:D5:01:9B:0D:9D:A7
Certificate issuer: /CN=b814345affd1506af9af32ec0d77399b7664aa3f
Certificate serial: 018962AE34945DDB5B04D7DE5ABD36D05C75
Authority key identifier: B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/BXYpX0o7w3sO7Oio5FzVAZsNnac.roa
Signing time: Mon 17 Jul 2023 07:08:51 +0000
ROA not before: Mon 17 Jul 2023 07:08:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56382
IP address blocks: 45.144.104.0/24 maxlen: 24
2a0e:ec40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 24 Jul 2023 13:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:62:ae:34:94:5d:db:5b:04:d7:de:5a:bd:36:d0:5c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b814345affd1506af9af32ec0d77399b7664aa3f
Validity
Not Before: Jul 17 07:08:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0576295f4a3bc37b0eece8a8e45cd5019b0d9da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f6:98:af:f3:ea:35:12:2e:55:fd:28:df:13:
f0:53:bb:b1:ea:37:88:a4:c7:d4:7d:d7:34:05:fa:
79:8f:df:6e:d6:1f:90:a0:17:99:b0:be:88:ce:71:
13:db:76:96:51:0f:a1:84:c0:7c:6a:fe:38:df:1d:
30:53:b4:78:bb:d4:91:dc:98:5a:56:5d:d0:e5:eb:
82:a9:21:bd:3c:37:96:d3:22:29:28:a4:dc:8c:fd:
09:19:ac:2e:ee:37:bc:c6:85:8e:e3:96:39:5d:a3:
0d:a2:09:ad:81:cb:c0:07:7b:30:20:79:49:ce:85:
55:58:53:cd:2d:43:89:e0:b0:79:ee:f6:3a:a1:a3:
55:79:94:63:89:50:7e:ba:c8:27:0c:32:38:4b:fe:
40:5b:96:f6:a8:8a:27:76:ae:b1:f6:18:cb:ca:16:
70:4b:d2:b6:5f:b8:60:91:0a:c1:87:1e:e1:64:a4:
16:d6:69:a1:26:ba:91:32:c1:a6:da:c6:c7:15:99:
7c:61:58:92:f8:35:32:c0:08:3f:f0:da:bb:5a:dd:
b1:b9:55:6e:32:46:1a:1d:65:e6:52:cb:c9:03:cb:
04:e0:3d:5c:7c:0f:1d:cb:70:f7:a8:46:fc:43:d8:
15:a6:82:ff:5a:b4:52:da:23:b1:9a:e4:36:62:65:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:76:29:5F:4A:3B:C3:7B:0E:EC:E8:A8:E4:5C:D5:01:9B:0D:9D:A7
X509v3 Authority Key Identifier:
keyid:B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/BXYpX0o7w3sO7Oio5FzVAZsNnac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.104.0/24
IPv6:
2a0e:ec40::/32
Signature Algorithm: sha256WithRSAEncryption
a9:91:b0:01:79:83:8d:5a:69:03:3f:49:70:a4:c4:68:52:b9:
cd:39:ae:ea:e2:c1:7e:40:13:d6:06:9d:5c:af:00:77:a3:79:
5f:04:f7:3f:4e:6f:cc:e1:66:92:47:20:9b:fe:99:24:ce:67:
39:f7:63:2a:a2:9f:6f:09:0b:d6:be:c8:5f:2c:0f:39:9b:82:
f7:3d:21:c1:dc:ec:7a:91:06:92:23:7a:c6:91:96:dc:9a:cb:
9d:89:a2:75:43:f3:21:8a:c6:f8:f2:34:e3:c1:c3:d8:52:8b:
e3:2f:a6:d6:b6:78:ee:8d:fd:cb:72:15:6f:ae:d7:b1:f1:ff:
b0:3e:65:80:56:0f:b5:af:be:fd:05:28:69:33:87:7d:e0:8a:
17:88:52:ee:fa:fe:1e:83:ae:5a:da:9b:f2:6e:ac:67:6e:a4:
f7:15:41:e4:b5:0a:2f:4d:f8:97:c4:85:36:34:0e:43:56:4c:
bc:61:97:e4:8d:1c:5d:bf:b1:13:1a:d8:34:d0:c1:e7:86:81:
69:07:1a:44:06:e8:64:71:73:02:02:64:ae:5c:65:0d:0e:37:
54:6f:72:48:1b:42:75:db:ba:7a:ba:bb:b0:f9:a4:78:4d:ee:
06:cd:79:a4:32:6c:cc:44:fa:68:ea:3e:e3:a8:48:78:a3:96:
5a:a1:a5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:22 2024 by rpki-client on console-ams.rpki-client.org