Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ykD-bqhTOTAFylXXwsg1U_GOH5M.roa
File: ykD-bqhTOTAFylXXwsg1U_GOH5M.roa (raw, json)
Hash identifier: r2fdt7NqbyyhTAZwqIBrUiezh46H9nqjszHdmipns1w=
Subject key identifier: CA:40:FE:6E:A8:53:39:30:05:CA:55:D7:C2:C8:35:53:F1:8E:1F:93
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018F6DD43D08E6F2C1109725A272993097DA
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ykD-bqhTOTAFylXXwsg1U_GOH5M.roa
Signing time: Sun 12 May 2024 17:22:56 +0000
ROA not before: Sun 12 May 2024 17:22:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 45.9.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 16:37:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6d:d4:3d:08:e6:f2:c1:10:97:25:a2:72:99:30:97:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 12 17:22:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca40fe6ea853393005ca55d7c2c83553f18e1f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8b:a2:07:a4:86:93:5a:fc:b9:8d:2f:db:8d:
e0:94:82:d9:f2:bb:d1:0c:b5:58:f2:83:c7:22:d7:
17:40:cc:8a:fa:91:10:a9:f4:8a:87:26:99:9e:72:
e7:23:40:ac:22:01:ef:2f:9f:85:00:88:3f:5d:ea:
64:21:e2:58:b1:b6:8c:bb:34:7a:32:76:c4:17:5b:
82:4f:78:9a:26:c3:fb:2d:00:b4:dd:c7:93:7a:5f:
3b:54:51:47:06:fb:26:f2:2b:0f:00:d1:46:35:10:
b6:44:43:bd:2b:da:d9:98:17:fb:ba:b9:af:4d:38:
37:62:14:e4:0b:84:0e:3f:ea:c0:ac:14:b5:e8:f5:
96:a2:4d:39:0c:59:f9:8a:da:80:d6:1b:a6:a5:6f:
f5:fc:6b:7c:6f:b6:c2:60:09:8d:9c:5c:6b:1e:d4:
4e:37:4c:e4:c7:7f:82:0f:db:78:e4:25:e1:28:7e:
1b:96:95:d8:a8:42:d6:03:0c:6e:4c:63:d6:18:a0:
6c:c3:e5:0e:88:2f:44:3c:15:de:5a:0f:79:75:c8:
09:62:9a:f5:3b:7a:af:db:32:ae:b0:a9:7f:b7:ff:
fe:8c:58:f4:9e:13:23:c6:37:16:0e:73:31:93:25:
5f:59:0c:2f:80:54:49:85:fc:4e:54:3c:1c:ce:97:
b2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:40:FE:6E:A8:53:39:30:05:CA:55:D7:C2:C8:35:53:F1:8E:1F:93
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ykD-bqhTOTAFylXXwsg1U_GOH5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.30.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:c4:71:eb:42:d6:f9:5f:aa:74:7b:b4:5e:d2:b7:a9:4e:3a:
72:f4:95:c7:e8:4a:29:6e:09:65:d3:45:17:a3:78:19:69:f5:
64:ca:fb:cd:d9:33:9b:68:80:6d:01:88:85:9c:80:25:2f:c3:
b3:a0:2d:62:3a:d5:79:01:91:99:0d:9b:74:ae:57:1f:9d:e0:
bc:d4:d7:a1:f0:3b:e9:05:d6:0e:06:dc:43:e2:79:8a:fb:87:
a9:4b:a2:e6:f4:6b:9f:b5:91:6a:60:7f:71:b1:0c:44:71:27:
79:b9:9e:e0:b2:a1:4f:1e:ac:69:5a:ae:ef:e5:c2:7f:e6:81:
ce:38:16:1d:47:cd:95:41:1a:5b:1f:47:31:29:1d:15:a2:88:
ad:b0:a1:70:9c:5b:5b:c2:00:00:34:d8:6e:52:20:37:38:35:
32:70:86:d3:01:8e:7b:1d:5a:2e:ad:5c:c5:2e:60:07:8b:2f:
10:c1:a3:1e:3f:1a:a9:c6:b1:16:71:ed:e1:4c:79:54:6f:75:
e4:92:71:46:32:4d:32:de:2f:a4:5a:36:6b:03:d1:7c:a6:0c:
aa:f9:03:ec:48:47:fa:3c:26:66:68:27:56:a6:87:ba:18:dc:
76:ba:fc:d7:ef:ab:72:b3:0b:98:d4:92:97:ef:a4:88:dd:5d:
c6:dc:a4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org