Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qbpNQodkJG0OmNpdKCICG7mLZ-o.roa
File: qbpNQodkJG0OmNpdKCICG7mLZ-o.roa (raw, json)
Hash identifier: CiPpxmSETBJt2hye0FXwKoi2tla/5q5wymAmDOonO38=
Subject key identifier: A9:BA:4D:42:87:64:24:6D:0E:98:DA:5D:28:22:02:1B:B9:8B:67:EA
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018C8F5281B24483ED024098229E60AF9B2F
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qbpNQodkJG0OmNpdKCICG7mLZ-o.roa
Signing time: Fri 22 Dec 2023 02:19:58 +0000
ROA not before: Fri 22 Dec 2023 02:19:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271799
IP address blocks: 45.153.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 16:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8f:52:81:b2:44:83:ed:02:40:98:22:9e:60:af:9b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Dec 22 02:19:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9ba4d428764246d0e98da5d2822021bb98b67ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:36:25:b7:c6:19:18:1e:f0:9b:d9:74:51:
f9:cb:fb:a1:14:dc:30:92:af:b7:21:b4:0a:7c:03:
b5:ab:8f:b6:fe:24:ce:36:27:67:73:61:96:f5:13:
cb:6e:45:74:ca:cf:39:31:02:14:43:7a:9f:af:ec:
36:60:06:b8:57:7d:79:b1:37:7c:23:c5:13:54:c5:
d4:4c:99:63:ba:fa:06:16:fa:25:73:23:dd:e4:dc:
c6:3d:e9:ce:74:5d:32:75:93:06:84:5a:2f:60:90:
e0:96:89:f3:9c:7f:b7:0f:17:d1:95:25:fd:10:0b:
90:49:65:d9:91:b8:35:60:84:d5:33:eb:67:1a:68:
e3:a7:a0:fe:f5:f5:f1:4e:1a:2f:1f:0d:fa:18:81:
b3:74:8a:18:3b:0d:a8:5f:b5:87:e0:a4:01:e6:df:
94:da:18:91:2e:bb:03:e0:56:23:f8:d5:8d:5b:06:
6d:90:a9:57:2c:b4:7f:1e:9a:d2:0d:22:05:5a:2e:
ec:2f:f0:53:42:7e:29:b1:85:ec:b5:0f:6f:49:93:
65:b6:0a:2b:97:fd:05:98:68:c4:c7:00:c9:ed:66:
64:0a:76:51:90:32:d3:ac:25:79:f4:90:6a:bf:a6:
2b:60:22:c5:8b:e6:a6:58:b2:56:8d:48:a8:e6:c3:
e8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BA:4D:42:87:64:24:6D:0E:98:DA:5D:28:22:02:1B:B9:8B:67:EA
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qbpNQodkJG0OmNpdKCICG7mLZ-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.165.0/24
Signature Algorithm: sha256WithRSAEncryption
23:14:cb:89:4c:17:3d:22:07:f8:a2:f0:d9:3a:49:bb:dc:3a:
9c:eb:17:ea:49:aa:23:d9:f4:3d:f6:54:d4:02:9e:d5:8d:f6:
da:b7:f2:06:90:cf:dc:99:7b:ec:9d:3b:78:a9:65:b8:b4:09:
60:55:6e:64:af:6f:93:85:ff:bc:26:f2:8a:c8:89:12:f6:eb:
a7:ec:dc:13:26:4b:9e:df:cf:65:73:ff:ce:d1:cf:4f:12:89:
50:9f:f8:bd:7f:c6:39:d0:4c:71:ac:32:9c:ef:61:8b:db:9f:
12:00:60:a2:eb:c7:68:12:e8:4e:08:2a:6e:48:69:bc:be:7f:
5c:fe:f1:c9:a3:0e:30:bd:eb:f8:bb:64:77:3d:38:84:ba:51:
43:fd:37:69:a3:f2:4b:ef:aa:9b:5f:70:9f:f5:0e:30:bc:3c:
7e:1c:8b:c1:1d:93:2e:c6:e9:79:51:40:f6:9e:14:34:08:46:
22:34:f0:77:69:22:d7:54:7d:65:19:21:62:11:14:46:ce:da:
51:01:1d:31:d6:e4:83:c8:72:9d:23:a3:a7:bd:f1:95:3c:f0:
5c:94:e7:46:5c:69:d2:1b:42:f7:19:19:63:43:60:c7:55:ac:
24:ab:17:43:c2:da:6a:31:3c:72:10:5c:a4:70:2c:38:33:33:
56:7f:39:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org