Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/ToVbhMLu9WpULe4SuiQ2qFQFvbo.roa
File: ToVbhMLu9WpULe4SuiQ2qFQFvbo.roa (raw, json)
Hash identifier: wmOUPvoQbfYmf8eTUDIpTk1GTyRzTmOKciZOLqo3HXY=
Subject key identifier: 4E:85:5B:84:C2:EE:F5:6A:54:2D:EE:12:BA:24:36:A8:54:05:BD:BA
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0189655B0972BCDEF69A20CB4FDAEFD0AC27
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/ToVbhMLu9WpULe4SuiQ2qFQFvbo.roa
Signing time: Mon 17 Jul 2023 19:36:52 +0000
ROA not before: Mon 17 Jul 2023 19:36:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 45.152.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:5b:09:72:bc:de:f6:9a:20:cb:4f:da:ef:d0:ac:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jul 17 19:36:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e855b84c2eef56a542dee12ba2436a85405bdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:35:6b:df:fc:10:da:50:40:62:56:f8:06:ba:
45:00:80:da:1b:34:5f:0f:88:0c:05:e9:0b:dd:48:
5c:1e:43:e1:e1:2d:d9:00:45:cb:e3:06:fe:24:b3:
45:5b:d3:c3:d0:b2:3a:a7:3e:33:5f:b1:28:09:03:
42:2d:c2:7d:a2:ec:84:96:44:df:60:23:1a:29:be:
14:23:d9:25:b3:76:15:fb:97:5e:ac:3b:c6:71:42:
72:5a:38:22:94:34:85:33:f4:df:d4:47:dc:31:02:
b1:45:03:dd:6e:5f:e5:1e:fe:6a:b2:f4:e4:92:40:
f8:ef:d5:f6:64:ce:e9:eb:cf:0c:70:7a:54:2e:6e:
67:e7:6b:f5:9d:df:1f:63:f6:7b:86:d9:ca:f3:30:
c7:c8:1e:5d:2e:c0:9b:0f:f5:2b:ea:d0:69:f1:76:
56:94:2e:1e:94:1c:88:85:0e:45:e9:c4:19:51:c2:
91:12:65:da:6c:de:04:a3:bc:8a:20:9f:6c:dc:a1:
57:c5:6d:d2:0b:6e:64:fc:5c:15:99:35:59:ee:62:
87:7a:95:a2:22:b2:56:65:76:f1:45:9c:f7:76:f4:
0e:2c:27:51:df:97:72:fc:ff:df:ad:76:de:e7:8a:
a0:8d:99:db:ec:eb:7b:b1:8d:10:26:87:ed:18:df:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:85:5B:84:C2:EE:F5:6A:54:2D:EE:12:BA:24:36:A8:54:05:BD:BA
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/ToVbhMLu9WpULe4SuiQ2qFQFvbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.177.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:42:b3:9a:be:5b:88:31:7a:79:65:ef:c3:0d:69:b7:35:4a:
81:d9:a4:74:57:cb:6f:5b:9a:3e:e6:ca:f7:97:f3:28:b9:32:
a7:f5:6a:9f:f1:59:ca:b9:58:c0:5b:d4:5c:89:77:05:ae:e4:
e1:d1:f1:2e:92:ef:69:61:d3:49:87:19:cf:1e:09:03:92:47:
99:4e:a6:6e:e1:70:b5:bf:c0:28:a1:d7:0a:8d:24:1c:69:f3:
17:c7:22:2d:3f:11:5c:df:f0:6f:8c:b1:3b:7b:9d:e7:64:da:
2c:38:97:c2:20:44:fa:48:6b:35:1f:3d:1a:46:ed:16:5a:65:
e9:9a:03:65:e1:f9:1a:32:d6:7f:47:00:bf:85:49:08:9d:09:
92:e9:ba:b4:da:c1:9f:47:44:05:f2:79:07:d6:2d:2a:b6:44:
c9:9a:7f:5e:b4:72:61:9a:d3:6a:13:4a:11:6b:6e:e5:65:30:
0a:81:2a:f2:e5:0f:7b:62:38:27:dd:c8:29:1f:c2:a7:dd:a9:
dd:6e:bb:b4:e8:0e:11:06:ea:79:1f:24:d0:ef:c5:ab:9b:16:
b6:3e:87:dd:9b:35:ec:1d:16:ea:b3:b2:c0:5e:29:24:5f:48:
52:fc:7c:b7:4f:d1:68:a7:bd:03:f7:9b:d4:92:49:27:de:9c:
39:19:2e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:41 2024 by rpki-client on console-fra.rpki-client.org