Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/I_dCcxMrtqIoAJFqk7Rh3HRuViM.roa
File: I_dCcxMrtqIoAJFqk7Rh3HRuViM.roa (raw, json)
Hash identifier: yqUujq4Yt+0KuoMl2ItOpcBLu5l9yYhHLdmfpuMzlGQ=
Subject key identifier: 23:F7:42:73:13:2B:B6:A2:28:00:91:6A:93:B4:61:DC:74:6E:56:23
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B8F03DA7920890D564979018D270680C9
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/I_dCcxMrtqIoAJFqk7Rh3HRuViM.roa
Signing time: Thu 02 Nov 2023 07:51:16 +0000
ROA not before: Thu 02 Nov 2023 07:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 45.138.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 15:06:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:03:da:79:20:89:0d:56:49:79:01:8d:27:06:80:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 2 07:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23f74273132bb6a22800916a93b461dc746e5623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:8a:95:99:1c:05:fd:94:7c:2a:34:ef:87:
f7:4c:e3:09:8b:48:2c:da:3f:31:72:e6:34:84:90:
02:56:fa:ac:42:83:fe:1a:7d:af:c0:06:96:27:af:
3d:dc:f0:9c:ac:f2:c9:ab:2f:d0:45:c5:4a:9a:bb:
8a:29:34:c8:97:d0:4e:02:51:74:24:47:bd:be:52:
6c:83:d2:d1:f8:8f:64:26:1b:14:f4:a9:7c:35:30:
30:22:d4:a0:aa:fe:49:ea:99:b7:5b:a9:86:f8:03:
13:44:5f:15:1a:4a:1e:65:58:dd:31:51:1d:07:d8:
98:dd:6e:3a:07:57:9b:e6:8f:c5:90:2d:b2:4c:69:
cb:08:72:e4:25:84:d5:a1:5b:61:80:8a:a4:1a:98:
30:0a:09:78:f0:8a:b0:14:65:de:d4:45:5a:f9:c3:
57:7d:44:30:b8:f1:01:a6:99:de:a9:2f:b8:1f:e1:
d5:a9:60:73:41:2d:70:5b:12:22:39:c5:a3:ed:3f:
aa:7a:3f:3f:3c:fb:15:54:0b:6b:8f:58:1e:05:d1:
93:b9:25:1d:de:78:8a:d8:6c:ec:48:8f:4e:fd:9e:
6c:ab:7f:3a:2c:eb:de:ae:0e:21:da:08:09:8d:d4:
f4:83:18:44:d4:6d:18:65:77:45:40:69:c7:75:5e:
94:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F7:42:73:13:2B:B6:A2:28:00:91:6A:93:B4:61:DC:74:6E:56:23
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/I_dCcxMrtqIoAJFqk7Rh3HRuViM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.183.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d9:ab:e1:ce:97:8b:fd:41:f5:e7:f2:d3:05:3b:f7:fa:3a:
90:0a:94:dd:f0:8a:38:e3:aa:c0:75:18:37:2b:ac:24:51:a6:
66:0b:24:1f:f4:88:d4:e7:d8:dc:5d:80:fb:c1:ac:f6:37:1b:
2a:18:bb:fc:eb:30:19:69:6f:50:38:5f:b1:7d:9a:d7:05:05:
f7:66:64:7a:71:89:17:78:27:2f:d6:60:81:9a:56:be:29:00:
1f:f4:75:60:25:23:28:21:98:a8:0e:ca:89:7e:1d:47:6c:d9:
3a:cd:ff:ca:a7:d9:3c:e8:ac:69:c1:fb:29:e3:91:f4:6e:7d:
f1:44:41:39:86:94:bc:02:07:1f:fc:34:60:4b:aa:b9:b6:9d:
18:4b:ef:c6:19:f1:4a:41:0c:2b:04:26:34:69:fc:c6:d1:68:
3f:f5:92:27:dd:5e:1c:85:22:31:7d:33:20:2c:28:b4:d4:6e:
2e:fc:21:2b:94:5e:73:f9:4c:60:fc:dd:c7:c1:75:e9:54:d0:
2b:45:16:1d:61:cd:f9:4b:91:bb:51:7c:69:0e:26:d0:72:ca:
fb:96:8d:ed:6d:a0:64:42:a4:37:19:8b:18:2f:55:4f:9b:ac:
c4:81:7f:bb:0d:0b:2a:bd:39:35:a2:c4:68:5d:f6:f9:2a:51:
f4:e2:55:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org