Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ey0brAsKh9dHYJVDfWLKSoApKAM.roa
File: ey0brAsKh9dHYJVDfWLKSoApKAM.roa (raw, json)
Hash identifier: jSM/+JeqINSS6DasK8j7uDcZ5/M63aMIDaIWnU5LWG4=
Subject key identifier: 7B:2D:1B:AC:0B:0A:87:D7:47:60:95:43:7D:62:CA:4A:80:29:28:03
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 01856F0232CFC5ED1A7FA904EE17664B07AD
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ey0brAsKh9dHYJVDfWLKSoApKAM.roa
Signing time: Sun 01 Jan 2023 20:24:53 +0000
ROA not before: Sun 01 Jan 2023 20:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 21:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:32:cf:c5:ed:1a:7f:a9:04:ee:17:66:4b:07:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Jan 1 20:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b2d1bac0b0a87d7476095437d62ca4a80292803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fc:30:e4:3b:c9:ae:52:ed:79:65:ad:4f:d8:
3a:77:1c:94:16:e5:05:61:9d:08:7b:9c:7d:ba:49:
c3:67:c6:46:7a:5b:4d:81:62:01:69:cf:27:27:dd:
ec:2a:f7:72:87:f4:9a:42:2f:fc:6c:e0:6a:b8:54:
41:e0:ec:96:44:40:9f:ad:30:e3:c0:a0:0a:3c:1e:
08:d4:fa:81:8e:7e:90:4b:2a:8e:51:4f:c7:a4:08:
44:b9:0f:ef:1a:27:c5:c4:8e:cb:06:13:06:e8:17:
67:9c:41:45:a1:b9:ee:a9:d6:0a:c1:4d:7d:95:a5:
27:bd:48:09:11:1f:a4:b5:d3:c2:a2:55:32:b4:3e:
ba:d9:6a:e1:b2:56:6f:86:96:fa:41:7f:91:05:f6:
95:67:7b:01:c7:a8:ba:97:f2:7e:dd:f2:6e:70:69:
01:a2:9c:9f:78:8e:b4:4e:d4:2b:30:1c:83:45:ac:
a0:1a:d5:7a:c5:f6:ce:6f:cd:0d:83:29:b0:86:fd:
6b:be:64:fd:26:9e:03:23:73:01:62:e2:ec:bf:85:
40:dc:31:63:11:f2:94:05:04:c9:f9:f9:06:25:12:
28:ed:e1:c1:46:16:a3:f9:2e:5a:04:23:98:40:3f:
ec:94:90:18:e6:5b:88:17:46:9b:64:8a:5c:ab:3e:
4c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:2D:1B:AC:0B:0A:87:D7:47:60:95:43:7D:62:CA:4A:80:29:28:03
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ey0brAsKh9dHYJVDfWLKSoApKAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:bd:79:5e:dc:ed:51:5b:3c:ea:76:bc:37:f9:44:66:16:69:
7c:54:67:e6:5f:ce:57:8c:cd:83:04:91:b2:ee:b6:4d:0a:be:
f0:3d:1f:d5:65:df:bf:cc:75:ed:09:35:51:e1:85:08:23:18:
32:ce:a8:90:44:2b:8e:74:07:d5:c8:86:d2:4d:1a:cd:c9:08:
66:b4:ee:94:2d:05:57:4f:ec:57:ad:d2:9c:a6:3d:8f:79:83:
4a:a1:e6:83:74:9d:be:0d:cd:13:a8:81:54:26:06:0a:a9:7f:
d4:86:f4:3c:67:58:28:f1:37:98:fa:04:78:7a:63:ad:3f:53:
7f:09:77:4e:28:d3:e5:02:71:b6:7c:94:9e:3d:5b:82:02:0d:
c3:47:50:59:18:6c:cf:f4:f1:6b:1d:bf:89:16:b1:9f:9f:dd:
2b:ca:5f:2f:0f:6e:3e:40:74:27:22:65:8f:e6:f1:5f:ef:c9:
02:7a:fe:1e:20:7f:2e:cf:07:50:48:47:d4:ba:b3:f3:72:e7:
1b:03:0f:45:29:60:6e:09:c2:25:36:04:6c:a1:02:66:66:c1:
81:bb:dc:0b:8b:79:01:10:6f:0c:97:49:bb:da:0d:24:b3:77:
28:b1:a6:6f:41:df:b9:8e:7d:b2:c7:3d:59:0d:73:e4:9e:af:
eb:63:e2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org