Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/DaigGIkOV2h3q47D9SCjaIMuMW0.roa
File: DaigGIkOV2h3q47D9SCjaIMuMW0.roa (raw, json)
Hash identifier: JrJRio0t4XhqqSUjcACXeD/K78lClKALCveDspzto/Q=
Subject key identifier: 0D:A8:A0:18:89:0E:57:68:77:AB:8E:C3:F5:20:A3:68:83:2E:31:6D
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 018CD34ADDBABB78E3BEA767DFEC51F405BE
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/DaigGIkOV2h3q47D9SCjaIMuMW0.roa
Signing time: Thu 04 Jan 2024 07:05:48 +0000
ROA not before: Thu 04 Jan 2024 07:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 15:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d3:4a:dd:ba:bb:78:e3:be:a7:67:df:ec:51:f4:05:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Jan 4 07:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0da8a018890e576877ab8ec3f520a368832e316d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:44:ce:33:8e:db:17:fe:f4:bc:f4:ba:ae:bf:
83:d6:2f:75:7d:87:4b:2e:fc:8e:61:77:e9:4b:01:
5c:d1:3c:9b:44:4e:36:22:85:87:d0:bb:63:84:ac:
d0:28:78:d1:34:51:69:a1:b2:77:af:c0:aa:e8:f0:
73:20:73:94:6f:7d:09:aa:46:a3:7d:a8:ba:60:bf:
aa:2e:ec:37:75:f3:82:d6:7c:f8:89:08:7f:20:42:
5b:3d:cf:95:eb:a4:50:66:d8:ed:99:23:dc:f5:75:
6c:79:c3:c5:54:24:48:0f:1f:fc:2a:91:ed:2c:6e:
80:1b:f5:e5:29:fe:d2:ea:a1:bf:d7:ad:78:eb:6c:
a5:e5:5a:9f:56:c2:c2:1a:4f:bb:28:00:af:b9:e2:
5e:fe:a8:b5:ba:7d:aa:ca:2b:3f:d1:bc:2a:cf:bb:
60:af:a5:07:03:23:de:bb:c3:0c:99:34:a2:42:d9:
ed:40:fb:18:4d:9b:94:36:44:37:13:5d:90:d7:cf:
f5:66:a1:12:18:64:84:f4:ee:5d:b0:2d:98:0d:ee:
2d:1a:1c:f4:24:4f:08:4e:65:de:81:fa:1c:41:c7:
75:a7:fe:da:7d:ed:15:ce:02:17:9a:38:84:6d:96:
fc:87:c4:b1:96:1d:30:af:61:d4:46:18:8d:48:17:
a1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A8:A0:18:89:0E:57:68:77:AB:8E:C3:F5:20:A3:68:83:2E:31:6D
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/DaigGIkOV2h3q47D9SCjaIMuMW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:ef:45:7d:c8:8f:4e:46:fe:93:a5:cc:dd:cb:b8:b6:3f:ca:
3e:0a:64:80:07:59:a2:60:53:a4:89:53:54:3f:7b:ac:78:82:
82:74:54:cb:3f:08:aa:4f:8c:c3:22:7d:b2:00:8f:80:e3:19:
2b:e4:ab:fc:99:64:39:c4:2c:b4:c6:d0:92:05:7d:03:29:fb:
c0:fe:31:e9:18:e8:76:f4:57:e8:c4:0f:24:e6:98:16:7b:1a:
5c:03:fb:82:a7:55:57:56:c2:a3:db:8d:ca:78:99:da:96:00:
f3:e2:ae:40:87:92:d4:6f:c7:9a:97:77:53:5a:21:15:9e:3e:
4c:09:f0:c3:9a:ce:ce:10:92:6a:9d:d0:d9:21:d5:db:ae:51:
d6:b5:17:12:bb:79:64:3d:40:99:27:f0:fb:10:0d:18:7e:be:
2d:31:e0:8e:66:a2:d1:48:ef:22:cf:c1:d0:93:bc:69:3c:69:
bc:94:84:f1:7e:55:8a:ae:79:55:03:bc:43:f9:50:c3:5d:03:
b3:88:4e:2c:fc:48:f5:09:95:a4:63:95:e5:e3:18:af:66:55:
ba:7a:23:b2:92:e0:43:45:1f:70:6f:41:1e:06:68:9d:71:b7:
c3:98:e1:fc:67:bd:0c:53:95:c4:57:90:d2:ba:33:5c:e6:df:
b3:1e:9f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:41 2024 by rpki-client on console-ams.rpki-client.org