Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ohDpAiYMN2bmJbUqKie_aEBp8fA.roa
File: ohDpAiYMN2bmJbUqKie_aEBp8fA.roa (raw, json)
Hash identifier: WDMKcU+cZzJxRL0w8U2a4XG5yJtNwK/nFEHuXyp3oqQ=
Subject key identifier: A2:10:E9:02:26:0C:37:66:E6:25:B5:2A:2A:27:BF:68:40:69:F1:F0
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 018A6F39342C697D1A7854B830F6A3EC5B39
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ohDpAiYMN2bmJbUqKie_aEBp8fA.roa
Signing time: Thu 07 Sep 2023 10:38:54 +0000
ROA not before: Thu 07 Sep 2023 10:38:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18464
IP address blocks: 45.136.0.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:39:34:2c:69:7d:1a:78:54:b8:30:f6:a3:ec:5b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Sep 7 10:38:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a210e902260c3766e625b52a2a27bf684069f1f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a8:9b:ae:07:0d:e6:a8:d7:e5:57:52:ea:68:
a9:08:d8:1a:f5:3e:e0:2c:97:3f:4f:58:6f:95:c8:
b1:a6:e9:2e:76:7c:0b:71:a2:2b:a1:26:9e:c2:4c:
21:0d:db:59:71:75:52:97:ad:be:9c:cd:3e:33:97:
3e:74:27:dc:01:72:ab:9b:33:1d:4e:90:04:bc:34:
03:7e:bf:b8:48:43:46:8e:cd:dc:46:5a:0f:38:0c:
fe:39:04:e8:de:c3:bd:23:df:d6:f4:2c:fa:3e:76:
6f:c0:36:6a:e2:ae:ac:35:2f:11:70:89:31:82:5a:
46:05:01:d6:9d:2b:a8:cd:d3:47:9b:01:e6:e3:79:
4f:ef:f4:55:61:dd:74:c8:19:87:62:dd:67:9a:97:
36:ca:e5:fc:38:af:df:29:e0:8b:52:09:ad:5a:da:
ec:b6:04:27:9c:18:62:c1:04:1f:f1:da:a7:e1:31:
d9:e4:96:96:7c:36:21:17:ad:38:63:eb:bf:fe:5e:
1d:cc:6b:87:af:16:72:b0:e5:c5:56:68:53:03:82:
b8:df:eb:8d:bf:e0:7a:70:25:91:0e:78:94:a0:b1:
81:8f:c0:42:f3:0f:55:fd:e8:62:8b:ca:81:54:61:
d1:81:13:db:d0:c1:3f:2c:9e:28:cb:43:41:9e:52:
40:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:10:E9:02:26:0C:37:66:E6:25:B5:2A:2A:27:BF:68:40:69:F1:F0
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ohDpAiYMN2bmJbUqKie_aEBp8fA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.0.0/22
Signature Algorithm: sha256WithRSAEncryption
26:63:28:97:a9:3c:d7:e3:b3:d8:78:a0:35:ce:bd:e2:9d:4c:
f1:59:92:ac:00:24:87:3a:ff:4e:e7:da:84:e3:40:8b:6c:6a:
51:84:3f:5b:32:74:11:2b:9b:4d:61:0a:36:76:f0:89:1c:4b:
ad:b8:31:29:3a:0d:c4:8e:5e:4e:83:d9:9e:26:ec:aa:6b:4f:
2d:8b:57:12:b2:db:08:3a:f0:e7:0b:8b:30:d6:e2:70:85:32:
f3:ad:56:e6:c3:cf:f7:8e:87:95:37:91:7c:9b:f4:3d:14:ab:
59:2f:61:02:4a:f2:e7:20:19:a6:31:79:00:24:f3:a7:cb:43:
6b:72:1a:7c:72:8a:82:37:a5:15:a8:53:7a:15:23:4c:c5:c8:
c6:47:9b:96:9d:58:82:37:25:33:a2:bc:dd:bd:a2:14:4e:f2:
85:21:1d:7e:aa:59:eb:96:ff:2c:73:36:61:0c:b0:85:76:00:
1a:7f:ef:41:65:43:34:4d:58:d3:9a:6a:a7:6d:6e:a8:32:75:
3a:16:b1:27:9c:4f:4b:d4:68:66:d2:09:cc:e2:9e:b2:75:6f:
db:f0:50:0b:f0:63:03:8f:07:3b:70:2f:9e:4e:66:7b:fe:8c:
25:39:d7:56:63:ff:88:82:81:56:0d:dc:e8:ce:ed:49:53:46:
c4:99:ec:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:00 2024 by rpki-client on console-ams.rpki-client.org