Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/bc979PycIlUuwKkxC-yBvU0tGDc.roa
File: bc979PycIlUuwKkxC-yBvU0tGDc.roa (raw, json)
Hash identifier: uSFga4WQM/GtcADJXc8L8MTZdlLSK5YASgPGD+7kBCw=
Subject key identifier: 6D:CF:7B:F4:FC:9C:22:55:2E:C0:A9:31:0B:EC:81:BD:4D:2D:18:37
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 01856F390FCF2E8E34C8EE42B441D746ADD5
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/bc979PycIlUuwKkxC-yBvU0tGDc.roa
Signing time: Sun 01 Jan 2023 21:24:48 +0000
ROA not before: Sun 01 Jan 2023 21:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:0f:cf:2e:8e:34:c8:ee:42:b4:41:d7:46:ad:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 1 21:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dcf7bf4fc9c22552ec0a9310bec81bd4d2d1837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6b:81:c5:68:c3:a4:21:31:90:cd:a1:76:db:
f5:05:de:1a:e2:a4:65:b8:65:47:78:3a:28:6e:cd:
f4:b9:f3:b2:54:1c:41:6e:34:53:e3:e7:ef:53:b8:
64:f2:ea:4e:e7:66:bd:f6:84:b3:14:06:c7:6f:df:
35:c5:1a:51:14:2b:7a:95:2d:0f:ab:85:9b:42:07:
e0:e7:03:54:e8:3f:c6:68:d7:29:68:17:f7:4e:d1:
ee:d8:2a:f9:76:4c:0a:3f:54:32:ec:af:60:ff:e5:
01:96:57:10:e6:ea:74:49:f9:cb:6b:d3:28:c6:7c:
19:98:e8:b2:a6:c0:31:50:08:7e:e5:1a:80:b3:d1:
9c:5c:ad:05:ed:cb:36:7e:2d:33:54:e4:df:a9:86:
56:5d:67:39:5c:c0:9c:38:5e:ec:14:5f:08:12:95:
f2:25:fb:a5:23:e5:8a:6d:74:67:aa:6f:c2:43:99:
a8:a7:5f:f8:29:40:cf:30:31:77:65:db:49:c1:94:
76:42:7f:fe:e4:b6:84:50:59:48:0b:5f:9c:01:36:
62:3b:e4:61:9e:6f:b4:aa:78:52:39:b9:b0:c5:4a:
94:f9:ea:07:47:c1:84:f6:3b:b2:72:9e:98:d0:8e:
ea:d3:d1:32:b8:b6:49:fc:43:cb:79:52:bb:2e:4e:
da:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CF:7B:F4:FC:9C:22:55:2E:C0:A9:31:0B:EC:81:BD:4D:2D:18:37
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/bc979PycIlUuwKkxC-yBvU0tGDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:ed:89:22:ec:ef:ff:e2:c1:c7:7e:81:f2:14:8a:a6:c8:d3:
7b:b4:de:ac:fc:b9:f7:97:33:d6:33:11:5f:56:54:9d:32:c8:
ed:ff:52:15:1e:94:99:46:36:11:ec:dd:24:77:2f:a2:da:2c:
3b:e5:4a:e2:46:44:6b:ef:0f:85:11:64:0f:41:eb:4c:86:33:
b5:6a:e7:f8:c4:81:70:8c:77:0c:36:e0:a1:40:50:3c:51:7a:
5f:fe:43:2c:72:05:a3:a4:09:f3:17:e5:55:75:82:82:27:0e:
08:ed:5f:9a:aa:d5:f6:ab:75:8d:36:8c:28:8b:bd:54:a0:b8:
47:f8:f1:2a:94:de:cd:78:87:d0:0b:25:b5:8b:93:e8:ac:a4:
14:1e:0f:81:ba:8b:9b:60:75:82:b2:f9:13:52:01:7c:4f:89:
64:d7:5e:f3:30:8f:69:d8:96:b4:13:7a:74:24:9e:17:91:02:
93:ce:1e:4f:ee:72:a2:0e:21:d2:ad:25:e5:62:46:83:16:ba:
e5:21:0a:0f:56:1b:3e:62:77:fe:93:d1:54:66:2e:11:7a:ea:
1e:d0:a7:cf:81:fe:a6:50:1e:c7:32:39:87:9c:ff:04:06:2b:
7c:ca:47:36:ed:d2:36:0a:e8:e2:cf:18:86:94:45:94:81:dc:
ce:cc:04:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:42 2024 by rpki-client on console-ams.rpki-client.org