Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Xiq83GegeF7yQoj0sIyD40opLy4.roa
File: Xiq83GegeF7yQoj0sIyD40opLy4.roa (raw, json)
Hash identifier: tkpyqnF7wqLDum1tfEJWzcvtrYI/UfzDuFphKTPiWGQ=
Subject key identifier: 5E:2A:BC:DC:67:A0:78:5E:F2:42:88:F4:B0:8C:83:E3:4A:29:2F:2E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018AEE9E349BC05F98CC32563EBB40A9A19F
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Xiq83GegeF7yQoj0sIyD40opLy4.roa
Signing time: Mon 02 Oct 2023 04:20:59 +0000
ROA not before: Mon 02 Oct 2023 04:20:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.144.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 17:52:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ee:9e:34:9b:c0:5f:98:cc:32:56:3e:bb:40:a9:a1:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 2 04:20:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e2abcdc67a0785ef24288f4b08c83e34a292f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:4e:09:5b:a4:07:13:12:9d:9e:da:81:92:
68:aa:14:83:6d:76:26:90:c4:c1:fc:89:57:34:7d:
bd:e0:0a:18:c4:68:c4:f5:54:ce:0c:8d:cc:1b:e7:
f0:87:ae:bd:3e:f8:bb:01:b1:56:e1:35:7b:45:e7:
d3:31:6f:46:09:ae:8c:84:46:a8:2f:68:e6:9c:2c:
f0:22:d4:c8:be:8f:41:b3:89:c2:a6:f9:c6:fd:f2:
bc:d6:99:ac:bd:7f:16:4c:c8:7b:79:ae:b6:65:78:
e6:f0:91:42:a5:e4:c4:58:0c:38:4e:c8:88:2b:cf:
63:5e:51:b3:06:94:41:09:6e:85:c4:3c:1a:98:78:
e2:ea:94:00:2e:16:13:77:cb:c4:e3:d5:f1:c6:f6:
f3:f1:06:d0:ef:d5:c4:2d:ea:15:cb:ae:df:a8:93:
e1:ce:f1:ba:c4:b6:94:8f:03:e1:1b:71:17:9a:a8:
f4:5d:cb:73:b3:3d:7d:e4:7a:51:d5:b7:d7:a1:8f:
56:96:35:ac:67:cf:7e:d4:79:c2:34:ac:aa:81:39:
e5:0f:74:25:37:74:bc:52:75:4a:3e:07:9c:51:99:
99:68:bc:05:ca:07:9e:c5:83:fa:0b:0e:dc:38:84:
69:5f:39:b0:84:a7:95:2a:55:57:ee:e0:a4:de:0d:
92:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2A:BC:DC:67:A0:78:5E:F2:42:88:F4:B0:8C:83:E3:4A:29:2F:2E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Xiq83GegeF7yQoj0sIyD40opLy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.215.0/24
Signature Algorithm: sha256WithRSAEncryption
94:9c:d9:74:71:06:55:e1:2f:7b:26:6d:d6:b2:61:79:d8:2a:
97:0e:ce:0e:e0:5f:23:ea:db:56:37:a7:ee:74:69:d5:f3:37:
dd:eb:71:3b:0a:bb:b8:e5:d4:e2:ca:87:34:25:78:63:57:e0:
92:7a:b7:bb:6e:0f:b6:ad:e0:b7:ae:7b:03:b7:b3:6c:78:5d:
21:aa:64:d7:34:5d:74:c6:bc:c9:eb:e3:ca:2e:5d:49:22:44:
e1:7d:5a:bf:c1:41:b8:31:dd:b0:91:a8:04:eb:20:ac:21:f8:
43:cb:8b:32:26:1f:1b:87:df:18:04:72:ff:7c:41:aa:8a:25:
38:ca:c1:e2:a4:11:23:a2:53:41:ff:12:93:9f:07:94:fd:f2:
a0:bb:ea:48:0a:05:c8:56:ea:1c:e9:66:ce:bd:e9:e4:98:21:
0e:f7:5a:02:d8:43:9e:9f:0d:6c:d9:37:92:82:4a:f9:80:aa:
23:36:eb:a8:1e:22:0d:5a:42:9f:1b:1e:c0:fe:51:1a:08:28:
d1:57:92:57:8e:6f:83:7d:ee:32:19:33:5a:35:34:1c:67:27:
fe:ae:da:1e:45:1d:e5:82:d2:5b:c4:4e:d7:41:f6:97:2b:9c:
7f:04:a1:e3:a8:85:ed:f7:d6:8b:3f:0e:46:91:d8:70:2a:1b:
ae:33:4d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org