Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/dbe50a-2ca1-4362-b5e7-6683c8fc9e5b/1/NOqSX2xYEi5cYxm8elG7BpGfEP8.roa
File: NOqSX2xYEi5cYxm8elG7BpGfEP8.roa (raw, json)
Hash identifier: OWpXqhw0AtWYvkWNWyOy4FBvxEd8FHMnJqOqOl6oqwA=
Subject key identifier: 34:EA:92:5F:6C:58:12:2E:5C:63:19:BC:7A:51:BB:06:91:9F:10:FF
Certificate issuer: /CN=09ee7ee0f75b7164ac7596197c7f121d6fca1576
Certificate serial: 018A417AD8960C7A6ECCBF85FBA120449BEB
Authority key identifier: 09:EE:7E:E0:F7:5B:71:64:AC:75:96:19:7C:7F:12:1D:6F:CA:15:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce5-4PdbcWSsdZYZfH8SHW_KFXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/dbe50a-2ca1-4362-b5e7-6683c8fc9e5b/1/NOqSX2xYEi5cYxm8elG7BpGfEP8.roa
Signing time: Tue 29 Aug 2023 13:28:04 +0000
ROA not before: Tue 29 Aug 2023 13:28:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13009
IP address blocks: 216.245.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:7a:d8:96:0c:7a:6e:cc:bf:85:fb:a1:20:44:9b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ee7ee0f75b7164ac7596197c7f121d6fca1576
Validity
Not Before: Aug 29 13:28:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34ea925f6c58122e5c6319bc7a51bb06919f10ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:3f:46:d1:93:e4:51:17:b1:3e:a3:3c:76:
44:e3:c4:ef:79:4c:c0:cc:86:c4:11:61:4e:78:95:
fa:51:49:ec:e4:26:38:3f:2a:de:06:ba:c3:07:98:
8b:2f:37:54:8e:5b:e5:91:83:a8:4a:a9:f8:aa:e0:
b4:84:70:6f:8b:b1:57:60:1f:b4:d6:7e:30:bf:d0:
15:bf:83:db:ba:68:b3:3c:b3:66:cd:ea:7c:9f:35:
d0:27:e0:30:82:16:a4:68:9f:8f:81:31:2a:fc:9e:
f2:bd:7f:0d:02:c9:a7:27:b6:8e:d7:54:aa:aa:08:
7f:f4:70:d4:a9:61:ae:e8:29:45:58:7b:7d:b2:00:
14:1a:f7:8f:c5:c7:b8:81:dd:d0:6f:65:8d:51:d4:
9b:72:0e:7a:72:3f:bb:06:04:b8:f6:5f:92:7e:b6:
c1:41:18:a3:0a:f2:4e:fd:b3:35:df:08:76:71:11:
d2:90:45:52:a4:1d:9e:0d:9d:60:a5:ef:17:a2:0d:
64:f9:75:c6:3d:6c:56:ab:5b:f6:4e:ed:a8:d9:26:
e5:c5:96:97:b3:4e:f7:56:2b:ec:2f:8b:67:20:60:
a9:cf:49:50:d3:e6:4b:bd:bb:96:7c:3e:e3:4c:cb:
e9:f3:ae:d5:c4:cd:b0:91:f1:fe:05:08:d1:9c:de:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EA:92:5F:6C:58:12:2E:5C:63:19:BC:7A:51:BB:06:91:9F:10:FF
X509v3 Authority Key Identifier:
keyid:09:EE:7E:E0:F7:5B:71:64:AC:75:96:19:7C:7F:12:1D:6F:CA:15:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce5-4PdbcWSsdZYZfH8SHW_KFXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dbe50a-2ca1-4362-b5e7-6683c8fc9e5b/1/NOqSX2xYEi5cYxm8elG7BpGfEP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dbe50a-2ca1-4362-b5e7-6683c8fc9e5b/1/Ce5-4PdbcWSsdZYZfH8SHW_KFXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.245.80.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6f:ea:0c:59:5d:18:ec:00:c9:f1:5a:c9:7c:45:56:7e:e7:
60:a7:f4:6a:bc:64:b2:ee:f1:bc:62:20:5e:49:48:f1:33:31:
8c:04:ef:78:d4:37:b6:bd:96:ab:5d:de:6c:81:f6:ba:a9:cc:
47:26:88:9b:36:f2:06:26:55:a7:bd:c5:55:2f:5c:53:8e:72:
81:6b:85:60:a2:65:11:f5:e2:f5:c9:4d:8d:ed:13:ba:42:84:
78:a4:88:39:bc:b9:4f:f5:ad:47:d3:af:5a:ce:0a:86:4b:64:
d2:d8:ef:1f:1f:a3:11:80:d6:12:aa:23:e4:5e:76:62:3d:38:
94:e2:ee:4f:59:96:0f:93:2d:18:8a:b0:46:78:de:0c:db:14:
91:23:90:66:0e:6a:a1:b7:36:08:fe:86:5f:48:f7:69:4c:88:
d9:ec:7a:ba:fe:cf:7c:2c:b3:c2:ac:34:d5:6a:82:e3:27:ed:
20:b8:6d:06:0d:0b:30:54:97:71:3c:b1:34:06:5f:d3:71:29:
64:94:39:5a:fa:c4:a2:34:b7:42:75:b9:3e:68:db:d4:eb:82:
b3:f3:82:34:3d:05:cb:90:16:99:95:e7:ec:2f:cd:3b:ab:e0:
e4:85:8f:48:3e:87:73:40:d0:76:fc:f5:1a:6f:b9:52:81:b3:
b0:fe:93:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org