Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Pmn02o4w3zElajAaRNTwHsDGWnw.roa
File: Pmn02o4w3zElajAaRNTwHsDGWnw.roa (raw, json)
Hash identifier: 13VWhRpin2TljAJfBaDt03AY+dncASwr7s9tY3GDtKs=
Subject key identifier: 3E:69:F4:DA:8E:30:DF:31:25:6A:30:1A:44:D4:F0:1E:C0:C6:5A:7C
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018571E88836F48D80D28638CE90335DF312
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Pmn02o4w3zElajAaRNTwHsDGWnw.roa
Signing time: Mon 02 Jan 2023 09:55:42 +0000
ROA not before: Mon 02 Jan 2023 09:55:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 45.13.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e8:88:36:f4:8d:80:d2:86:38:ce:90:33:5d:f3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 09:55:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e69f4da8e30df31256a301a44d4f01ec0c65a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:02:b8:a6:9f:fa:52:ef:46:68:8e:0e:37:a9:
c2:4d:ca:61:63:40:fa:5f:77:b7:d2:65:92:a5:b6:
41:68:cc:dd:36:95:6f:f9:ff:50:df:d7:95:ba:ce:
2f:ef:9a:cc:dc:c5:5a:04:02:17:1c:a8:5f:cf:81:
b4:86:fc:9f:13:21:82:3b:8e:f7:21:84:5a:7f:a4:
82:d8:5c:70:ca:54:17:24:b7:b1:63:f5:92:ad:cf:
bf:25:58:4e:29:3e:ef:6a:3d:27:11:a9:35:4c:7b:
6b:53:81:2a:07:c6:88:8c:39:54:8e:20:8e:71:59:
9a:b5:17:d5:cd:72:2b:4d:4d:eb:c9:f4:f3:84:13:
c7:5a:e7:ed:23:62:40:74:6f:f4:c5:53:e4:02:29:
dc:0d:8c:4d:81:0c:51:4f:c7:82:a3:6b:2f:e7:e5:
eb:da:b5:a0:3a:59:02:c3:e7:bd:cb:db:b1:68:6a:
c4:f9:18:a4:a3:25:3e:30:88:00:60:90:ff:48:66:
9b:94:ad:5a:cf:07:95:d1:0f:3f:6c:03:b8:24:2a:
cc:b6:70:b1:95:cb:a1:fc:0e:fe:fc:c1:e7:2c:88:
9c:f3:e0:c5:33:0f:5b:8c:fa:be:63:11:fc:0e:59:
3b:a9:f9:17:a9:82:cb:62:7e:62:01:da:b1:6f:a1:
ae:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:69:F4:DA:8E:30:DF:31:25:6A:30:1A:44:D4:F0:1E:C0:C6:5A:7C
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Pmn02o4w3zElajAaRNTwHsDGWnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:9c:05:78:e0:ce:03:4a:20:19:c3:08:63:be:22:4f:6b:68:
b4:60:21:5c:8a:0a:85:7f:f2:e1:6a:ed:b8:2a:31:05:e6:95:
cc:85:99:ce:11:d3:8f:c8:c8:70:bf:d7:25:7a:e9:e9:5e:06:
52:7a:e2:10:4c:60:15:04:f4:b6:bb:af:f9:43:eb:a3:0f:d0:
36:c7:3f:37:35:e2:0b:32:a5:4b:ca:9c:a4:98:c5:60:4e:51:
22:14:4d:39:8f:10:f2:4e:73:26:73:76:58:8f:d7:d3:42:85:
2c:7b:5d:4c:d1:7c:99:50:ca:13:3a:a1:40:fa:46:e0:d7:f5:
4b:a9:05:37:12:90:f4:45:35:a9:20:c5:8d:7d:e4:b1:12:3d:
02:77:54:8a:e0:2e:fb:b6:2a:6f:75:88:67:d3:9a:ea:3d:9d:
be:a9:41:ca:1f:00:ce:7c:67:17:0a:bb:b3:b8:49:81:47:2a:
b3:67:20:c0:b6:ca:16:1b:3d:0b:5e:fc:49:97:da:c1:2c:cc:
67:c8:47:8c:10:09:66:39:6d:96:06:6a:f6:bc:12:6b:ee:ea:
dc:9a:81:dc:67:f3:ce:42:31:88:64:01:ff:57:3c:cd:1d:c8:
f4:fe:d3:47:f2:2b:3e:f7:55:6b:82:7c:08:d7:b6:34:c6:42:
de:25:32:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org