Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qjbDpNr2VabGg52ctcvzLGY7eOs.roa
File: qjbDpNr2VabGg52ctcvzLGY7eOs.roa (raw, json)
Hash identifier: 8AzCUhpBJs9Ux9u91NQ/WGA3PMZJmNsPcTxc4n8/EVA=
Subject key identifier: AA:36:C3:A4:DA:F6:55:A6:C6:83:9D:9C:B5:CB:F3:2C:66:3B:78:EB
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0188AF2E5402922B12BA9276FC33161A6461
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qjbDpNr2VabGg52ctcvzLGY7eOs.roa
Signing time: Mon 12 Jun 2023 10:37:08 +0000
ROA not before: Mon 12 Jun 2023 10:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208911
IP address blocks: 45.94.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 18:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:2e:54:02:92:2b:12:ba:92:76:fc:33:16:1a:64:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jun 12 10:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa36c3a4daf655a6c6839d9cb5cbf32c663b78eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d1:c6:e7:cf:4a:2b:c5:37:86:97:c4:bc:8b:
b0:5f:cb:c3:8d:99:b5:47:0c:61:ed:c0:cc:10:04:
1b:94:f7:21:95:03:e8:5b:53:70:53:a5:13:d3:a7:
0b:c8:89:55:50:aa:8a:4d:91:02:a5:0c:f5:ae:7b:
6e:74:99:b1:01:8f:62:9c:99:19:60:a4:55:4c:6c:
54:0a:eb:f0:e3:9e:63:95:6d:e0:be:0e:4f:29:3d:
83:fa:03:5e:34:dc:96:49:25:c8:1f:72:6d:23:47:
40:3d:b1:1d:4b:86:f7:74:f3:ff:9e:59:14:df:80:
e1:44:25:f4:0f:c8:e7:44:5a:b4:3b:73:e7:2d:48:
98:c6:dd:62:84:2d:e0:b1:95:c2:4e:f3:47:d1:0f:
4b:a7:84:61:52:cb:dd:81:79:51:5f:d3:2c:93:1c:
ae:cb:a8:26:43:44:5f:ef:ff:dc:1a:06:ac:1c:bb:
18:7b:2d:20:fe:04:2f:e4:ed:3d:4c:d2:c2:fc:2a:
a5:09:66:93:5d:d1:48:59:be:9c:d4:50:49:de:e1:
ff:ff:a5:59:ad:2d:ad:08:68:34:1c:16:71:47:21:
5c:2a:16:36:15:d9:56:27:69:c8:b3:88:9e:2a:47:
5d:96:fc:45:76:1a:e2:69:c3:aa:1e:08:62:e6:7a:
84:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:36:C3:A4:DA:F6:55:A6:C6:83:9D:9C:B5:CB:F3:2C:66:3B:78:EB
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qjbDpNr2VabGg52ctcvzLGY7eOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.170.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3d:80:8a:cc:98:7d:6a:10:c0:4a:71:cb:c9:b4:f5:f0:1b:
2c:8d:40:a6:14:92:27:6e:d1:aa:26:54:3b:c9:43:00:cf:a7:
ad:7e:c2:34:0d:21:ae:2b:2b:44:8f:3c:8f:b5:29:bf:b3:22:
83:dd:28:4c:38:65:51:19:cd:3b:c5:79:f1:cc:40:3f:8a:6f:
02:ea:cd:16:aa:0a:8a:2e:dd:3a:01:8d:86:9b:b2:bf:a4:d0:
45:7b:58:63:b9:21:62:63:b8:65:b0:9b:94:93:4b:9e:cd:b3:
3f:9d:b5:6f:e2:b2:ac:26:e2:10:c4:25:d9:54:00:b8:14:82:
7a:50:9e:58:01:6b:46:fc:54:4b:5e:02:1a:2b:c8:55:ea:4d:
88:f8:d3:c1:f7:15:6f:37:3e:dc:22:4b:9d:45:08:0b:ed:a1:
a0:fa:6b:55:7d:5a:24:4c:e9:d5:4e:a9:5f:25:50:67:e7:54:
d6:13:8f:56:a6:f5:27:4f:5d:c6:e9:56:82:aa:8e:14:89:b2:
7d:b9:ca:cb:40:f1:f8:13:b6:b6:2d:23:1f:cc:a6:d5:52:15:
d5:72:e4:1f:a1:9f:ca:2c:60:0b:79:ef:fa:63:dc:66:63:bf:
1e:7e:f2:bb:51:9b:e8:69:b1:cf:c8:06:fa:b2:82:39:29:ca:
bc:67:20:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org