Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-NBd3DnAZP1l6XSdvD0rEEoVDYw.roa
File: 1-NBd3DnAZP1l6XSdvD0rEEoVDYw.roa (raw, json)
Hash identifier: Qndv77CIYIVLAWIxR/f2ElXBmoyt9w2kWzGvUE4Y5bs=
Subject key identifier: F8:D0:5D:DC:39:C0:64:FD:65:E9:74:9D:BC:3D:2B:10:4A:15:0D:8C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189217E45A3F626383D9EBE25665CDE2F82
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-NBd3DnAZP1l6XSdvD0rEEoVDYw.roa
Signing time: Tue 04 Jul 2023 15:21:10 +0000
ROA not before: Tue 04 Jul 2023 15:21:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.147.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:21:7e:45:a3:f6:26:38:3d:9e:be:25:66:5c:de:2f:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 4 15:21:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8d05ddc39c064fd65e9749dbc3d2b104a150d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:a3:b0:16:cc:e9:5b:7c:ee:84:c5:12:d3:
f0:3c:2d:d3:20:0c:9b:a7:6a:17:1e:ad:69:81:39:
93:52:c3:65:7c:d8:b7:87:1f:0d:c2:a4:04:1a:51:
9a:fb:b3:d0:a2:fb:15:ae:9a:f2:d9:d4:bb:96:27:
d3:d1:01:d1:b9:39:f3:b9:49:80:ab:29:d2:77:97:
8a:cc:68:25:ef:5d:f6:e3:49:f5:6e:34:72:e9:ce:
9c:d9:07:fe:3b:d1:4a:f0:74:65:7f:75:3c:ac:59:
f8:75:78:60:7e:33:e3:82:e2:72:f8:7f:6a:21:45:
db:a0:dd:a2:f5:b0:60:7d:4f:b7:d5:1d:48:d6:1b:
5c:e2:6d:a0:85:c6:e5:01:b4:a5:c6:03:a5:ab:a1:
be:97:0d:4a:6d:df:76:01:ac:dd:17:85:38:94:34:
6c:f8:96:72:ee:35:5b:06:84:a5:fa:47:96:17:79:
3b:16:6d:86:1d:9e:06:ee:64:83:00:8f:97:df:62:
45:a6:63:95:38:8f:43:9d:23:90:9a:71:d4:c7:60:
40:3b:d9:14:32:9c:01:84:a0:ba:ae:dd:12:a8:5f:
cf:35:44:dd:1f:a4:f0:75:eb:6b:27:b9:c9:7a:ad:
37:cd:e1:97:6e:13:13:5c:b3:07:c2:e1:14:80:b8:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D0:5D:DC:39:C0:64:FD:65:E9:74:9D:BC:3D:2B:10:4A:15:0D:8C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-NBd3DnAZP1l6XSdvD0rEEoVDYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.227.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:4c:b5:36:47:be:f8:85:17:88:ed:87:fa:7c:86:f2:46:d9:
5e:1c:31:46:d3:ff:12:8b:ea:56:74:39:27:b2:c4:ae:79:af:
35:bd:a8:22:e0:35:9e:93:a6:57:37:bd:6c:d1:b3:e3:be:b0:
7b:a3:88:0a:29:11:32:7a:86:2e:ef:d9:33:24:6c:a5:f0:a7:
2a:d0:b7:99:b3:13:5b:77:b1:fc:bf:1e:2e:e1:93:d4:3d:3d:
9c:6f:62:3f:c9:75:ec:60:34:c5:da:81:13:37:11:28:e6:50:
cf:21:77:bc:9d:44:fb:3a:c0:04:e2:f9:69:69:1c:38:fa:ef:
bf:60:c5:20:9e:90:1f:9d:5b:67:b9:98:57:67:d1:9a:8b:8b:
43:80:b0:87:be:4b:a8:79:53:48:25:ef:61:da:c7:0f:5e:ed:
6e:19:c6:93:29:62:b8:db:bf:a3:f0:ac:6b:9b:bd:1a:e8:ca:
f2:a5:a8:5f:df:ad:c7:63:3d:71:86:a5:7a:de:c1:ac:f3:bb:
16:84:89:bb:af:e9:76:ed:ab:34:95:ee:6e:09:bc:3d:ae:75:
f9:e2:53:50:48:95:2a:c3:cd:6c:78:21:9c:81:96:1e:5e:d4:
7a:38:63:b4:d6:99:15:ed:35:d5:c4:a0:db:1b:12:a1:d1:79:
24:2c:d2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org