Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/bbsfYh640VfsWHlACqBkVDyIizQ.roa
File: bbsfYh640VfsWHlACqBkVDyIizQ.roa (raw, json)
Hash identifier: j1uKNmdpjaxNV6VG8RwiuVMSlmjcRJkbMTvhI1Gskmw=
Subject key identifier: 6D:BB:1F:62:1E:B8:D1:57:EC:58:79:40:0A:A0:64:54:3C:88:8B:34
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 018CCA2BDD14A454A47AE0EBE8A38F79EFE9
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/bbsfYh640VfsWHlACqBkVDyIizQ.roa
Signing time: Tue 02 Jan 2024 12:35:21 +0000
ROA not before: Tue 02 Jan 2024 12:35:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34661
IP address blocks: 45.152.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 20 Feb 2024 12:35:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:dd:14:a4:54:a4:7a:e0:eb:e8:a3:8f:79:ef:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Jan 2 12:35:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dbb1f621eb8d157ec5879400aa064543c888b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5c:bd:c3:35:32:17:05:25:c4:96:8b:f0:af:
9c:69:69:38:2e:44:b8:72:cc:0b:20:c9:c9:d0:12:
bb:a5:20:9b:7a:60:ad:34:bf:d7:ba:f1:37:9f:3a:
77:0f:af:7e:d2:35:f4:05:98:c1:eb:ea:4c:c3:79:
85:d4:5f:2c:1c:b4:5e:7f:d4:fd:19:2e:30:2b:21:
e0:c6:71:f3:1a:a5:b6:b2:14:d5:4f:fe:1b:b5:96:
dc:91:87:5d:b2:aa:0a:fd:9f:fc:1a:99:ae:43:57:
ee:35:98:4f:30:e5:be:d6:43:1c:c3:3c:ef:8a:78:
4f:99:d5:3a:94:5e:ee:49:75:d8:74:67:33:e1:a8:
e0:e0:5d:c2:cf:40:85:58:d1:b6:58:2e:75:06:ba:
76:4c:db:b8:a8:ed:f9:72:7d:3a:4d:f4:35:4d:9a:
e5:55:fb:07:39:45:fd:bd:e0:cc:f3:f8:71:32:19:
10:a1:bf:f8:5d:87:43:a2:90:b2:62:9d:b2:e1:a9:
e9:59:2d:1d:02:8c:10:cc:64:88:e6:57:6e:e1:8d:
24:08:10:fc:07:f3:11:41:13:bc:cc:57:2e:85:0e:
c0:21:23:fe:2c:f9:02:f6:e2:ff:56:78:43:78:5b:
c6:d1:5a:6e:09:9d:b3:f8:0e:e6:af:15:6b:5c:cb:
7c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BB:1F:62:1E:B8:D1:57:EC:58:79:40:0A:A0:64:54:3C:88:8B:34
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/bbsfYh640VfsWHlACqBkVDyIizQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:bd:64:70:cd:40:0a:e4:40:70:82:66:5e:8f:ec:3f:dc:77:
da:34:fd:4f:f4:36:e9:99:70:97:ef:7f:72:56:b9:69:12:de:
66:86:c3:cf:ad:33:d8:b4:0b:74:b1:33:42:c4:ba:d0:de:b2:
09:3c:2e:64:d9:b5:62:d5:69:e1:13:15:b5:3b:d3:3a:31:3a:
ca:d5:45:eb:f7:46:86:eb:4d:13:fb:da:a5:08:95:19:63:92:
da:f9:23:eb:20:76:69:b0:f2:af:cc:c6:02:a9:79:af:f4:e1:
a5:fe:27:ef:8e:c0:d5:ba:92:d3:f1:cb:19:3d:28:48:78:74:
11:1c:22:25:83:d2:64:38:60:54:95:28:ef:e6:f2:27:09:71:
fb:c5:3b:c2:5e:85:b8:ca:8c:5b:b0:f7:e8:bf:b5:b9:b1:10:
7e:b8:c3:c3:4a:13:07:e0:0f:9a:a8:63:eb:78:69:da:2c:e6:
4b:9d:5c:b2:0a:c3:6c:98:6c:03:27:85:0e:82:ac:d7:aa:43:
1e:fd:5d:f2:61:ae:18:05:b5:bd:2f:a7:11:2c:96:c7:e5:fd:
1e:f4:27:0f:98:58:5a:df:8e:01:d8:28:68:65:60:18:27:1a:
47:45:ef:40:0d:42:2a:a5:ed:6e:fb:a5:98:e8:35:e8:46:dc:
69:17:54:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org