Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/45dbMZcpYLiWatKwEjjG7xhT_NM.roa
File: 45dbMZcpYLiWatKwEjjG7xhT_NM.roa (raw, json)
Hash identifier: gAZAlqW9wksYxeCgiwhUQZba/IY/CwN6fryQvpbulqE=
Subject key identifier: E3:97:5B:31:97:29:60:B8:96:6A:D2:B0:12:38:C6:EF:18:53:FC:D3
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185EDD920D83E40293F71DDC4049D06A879
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/45dbMZcpYLiWatKwEjjG7xhT_NM.roa
Signing time: Thu 26 Jan 2023 11:31:47 +0000
ROA not before: Thu 26 Jan 2023 11:31:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202358
IP address blocks: 45.147.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:d9:20:d8:3e:40:29:3f:71:dd:c4:04:9d:06:a8:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 26 11:31:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3975b31972960b8966ad2b01238c6ef1853fcd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c8:57:50:12:71:b6:75:4e:77:8a:6b:1a:06:
fb:c5:df:79:e1:18:b5:52:d9:52:22:29:a2:9f:b8:
07:31:75:f8:a1:92:19:c8:0b:0c:e4:00:30:8a:45:
fd:24:9b:2d:b5:26:bb:28:af:69:43:4c:a3:dd:aa:
a1:d2:13:2e:bb:98:2b:a0:8d:42:b2:6b:50:88:70:
7f:b2:e8:d0:5e:f5:96:27:36:d3:eb:6b:01:c6:87:
08:11:a2:ff:93:b7:51:7f:ec:d6:fd:a8:af:1f:cf:
9e:74:79:25:f6:65:80:a9:2b:ab:38:56:d0:df:5c:
87:1b:d5:48:91:17:f1:a1:88:fa:9d:31:7c:f9:a4:
36:2a:6e:67:9b:26:14:d1:9b:34:37:02:ad:09:58:
e9:f6:39:be:0c:c9:14:46:7c:b0:cf:7d:a8:ce:48:
71:e6:3c:48:30:a2:df:5d:63:f0:26:1d:18:2a:87:
0e:96:c8:45:ec:71:37:07:97:ac:38:d2:b2:93:68:
65:f8:5d:d1:55:db:21:ca:ef:b7:d5:04:5f:e3:c9:
7b:ad:63:3e:3f:fe:c9:a1:94:58:bd:20:90:56:02:
15:2f:e2:71:93:ae:0d:ea:91:42:6d:b6:6d:d4:c1:
c3:80:d2:7b:2c:26:89:a3:5d:36:4f:82:4b:d6:1c:
80:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:97:5B:31:97:29:60:B8:96:6A:D2:B0:12:38:C6:EF:18:53:FC:D3
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/45dbMZcpYLiWatKwEjjG7xhT_NM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d9:56:48:3a:2a:4f:79:d7:f3:ec:5f:51:8a:21:65:7a:47:
6f:64:40:cd:09:a3:93:b9:b3:cf:d9:2d:e5:e9:cc:c5:c4:51:
05:a8:29:9f:e5:89:05:87:8c:bc:45:74:fb:78:fd:c6:ac:b1:
78:34:7e:33:49:04:5f:2f:77:75:ed:05:f8:90:5f:01:83:4e:
a7:81:54:38:ef:a5:d1:e7:84:b2:da:80:ab:89:ed:fb:51:f0:
37:ea:de:b6:6d:4c:71:4b:b1:ac:b1:0d:0c:51:ff:c3:12:b5:
c5:09:50:53:e3:32:77:72:60:ce:96:6e:2d:12:ab:04:67:d2:
4a:de:82:63:aa:cf:78:98:7b:10:12:bd:22:1e:7c:dd:c2:3c:
f9:bf:8b:07:36:7f:cd:42:54:90:04:3f:02:8d:60:c8:0c:09:
c2:e7:7b:c8:1d:30:96:7c:80:9f:44:c4:70:be:52:e8:6c:04:
d1:db:37:2b:47:37:b1:c8:fd:4b:0e:69:44:41:a6:63:e2:fd:
d3:48:64:6c:6b:a5:77:13:89:bb:92:87:69:6d:68:b0:46:4a:
5a:f8:c6:60:33:93:f6:3c:c6:17:13:7f:d4:78:ce:6a:72:2f:
38:f1:72:77:e4:59:a2:2f:52:d8:9f:4d:3a:a0:1f:98:39:27:
43:b6:3a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org