Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/_3z8alj-zioJTAxV5w5R_y-kGHw.roa
File: _3z8alj-zioJTAxV5w5R_y-kGHw.roa (raw, json)
Hash identifier: lGYDx/tUkApF7YzVykhZVM7JWZLsJuZLS6kyo+ld+1U=
Subject key identifier: FF:7C:FC:6A:58:FE:CE:2A:09:4C:0C:55:E7:0E:51:FF:2F:A4:18:7C
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 01905539EF3FE400907CC1319A77DCF8F717
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/_3z8alj-zioJTAxV5w5R_y-kGHw.roa
Signing time: Wed 26 Jun 2024 15:46:18 +0000
ROA not before: Wed 26 Jun 2024 15:46:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 45.149.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:39:ef:3f:e4:00:90:7c:c1:31:9a:77:dc:f8:f7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jun 26 15:46:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff7cfc6a58fece2a094c0c55e70e51ff2fa4187c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e0:37:9a:6d:1a:57:8f:68:22:71:64:d7:e6:
08:eb:58:99:7e:4d:b2:d0:10:e3:c8:e7:aa:11:81:
b7:cc:8c:07:bd:e5:bd:20:ae:59:22:8b:89:56:ce:
1e:ac:20:b7:1d:24:a0:29:9f:04:af:82:ae:fc:02:
a6:1a:0b:a0:3b:8e:ea:35:7f:f0:a4:88:9e:94:87:
82:5c:48:cd:93:eb:a2:0b:2d:45:4b:34:c2:41:9e:
30:5d:c4:f4:ce:dc:e1:19:ef:64:85:c1:af:bf:fa:
ff:20:93:9b:f4:3a:61:cd:c1:57:d5:ee:ea:ef:37:
7f:33:50:78:92:d3:39:ff:0c:96:ed:a7:7a:74:5b:
3c:5f:28:92:00:40:b0:c1:ed:c4:6e:1e:3c:93:74:
bd:5a:22:c7:ba:4a:0a:a9:05:dc:7a:2b:e0:10:a5:
ac:02:e9:41:7e:a8:ac:c4:13:22:d5:4a:2c:1f:7e:
cf:1c:ff:aa:95:38:1d:b4:ac:f8:19:fa:09:57:00:
f5:66:76:64:cc:41:3a:f9:93:34:65:a2:68:77:08:
e8:ce:9f:3e:a4:d5:9a:a6:68:02:7e:fc:3c:a3:ca:
b0:f0:67:51:a7:50:52:db:f8:67:74:9d:75:b4:03:
f0:ac:d5:fb:5a:f8:0d:6c:9a:2c:8d:47:9e:84:88:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7C:FC:6A:58:FE:CE:2A:09:4C:0C:55:E7:0E:51:FF:2F:A4:18:7C
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/_3z8alj-zioJTAxV5w5R_y-kGHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.5.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c2:5e:1c:a1:83:73:56:cd:13:08:42:f2:bb:57:56:47:07:
82:12:01:ed:53:21:c0:b5:28:dd:b1:46:94:93:42:32:32:5c:
b7:e8:4d:b5:0b:80:7d:fd:e6:1c:8d:0b:d4:af:5b:ce:64:c3:
cd:b7:62:ff:14:1c:f2:c1:db:8f:65:78:32:5c:c2:35:6e:00:
46:6f:48:4a:75:41:54:02:e2:66:db:d8:2d:ef:52:ce:a5:03:
08:01:d5:2e:35:aa:8e:fc:91:b5:a8:e4:18:00:93:d8:7f:f1:
2b:e9:ca:22:ba:4d:09:47:31:ee:c3:63:16:6f:e0:1d:28:7b:
da:e8:5e:0a:76:cf:df:3c:23:42:73:bb:7e:74:5d:34:cd:d1:
fc:18:21:81:8b:83:3b:eb:e1:76:2f:e6:5b:12:4c:45:10:88:
4d:84:1d:80:36:83:29:03:bc:1d:a4:ba:c1:52:27:98:c1:a1:
25:7a:b2:4b:78:db:56:9f:ef:22:df:fe:95:28:d2:40:9f:3d:
6e:2f:7a:9f:8e:d6:b0:11:b0:cc:a6:6a:1a:aa:c6:a2:07:14:
5b:2e:1a:4e:60:19:f1:d8:36:22:b0:20:f0:96:76:00:35:6d:
38:ec:aa:00:bd:e9:5b:8e:f1:d8:63:ab:55:03:30:b6:e4:d3:
3f:34:6e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 14:45:33 2024 by rpki-client on console-ams.rpki-client.org