Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/nhGPy0F3yhShZV_I_l9N59eJ-7w.roa
File: nhGPy0F3yhShZV_I_l9N59eJ-7w.roa (raw, json)
Hash identifier: 1WQTAYQLhjs0Z69RiaDM/0zmAT78jyF+SA5VHsU+jFA=
Subject key identifier: 9E:11:8F:CB:41:77:CA:14:A1:65:5F:C8:FE:5F:4D:E7:D7:89:FB:BC
Certificate issuer: /CN=988296c50d94bbed225f2867231fa5093debea91
Certificate serial: 018572A7E1EAB8728DAD93EA5C1DDF9B40F8
Authority key identifier: 98:82:96:C5:0D:94:BB:ED:22:5F:28:67:23:1F:A5:09:3D:EB:EA:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/nhGPy0F3yhShZV_I_l9N59eJ-7w.roa
Signing time: Mon 02 Jan 2023 13:24:43 +0000
ROA not before: Mon 02 Jan 2023 13:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208757
IP address blocks: 45.86.48.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:e1:ea:b8:72:8d:ad:93:ea:5c:1d:df:9b:40:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=988296c50d94bbed225f2867231fa5093debea91
Validity
Not Before: Jan 2 13:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e118fcb4177ca14a1655fc8fe5f4de7d789fbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:44:f8:e1:bd:aa:3f:a4:68:e8:28:e5:a8:
89:32:db:39:f2:b7:ee:21:95:da:e3:ad:a5:ec:96:
a5:1f:9e:35:72:56:d3:28:39:b8:7b:56:6b:8e:9c:
65:29:f1:3c:eb:ed:05:fb:c3:9e:cd:c1:b8:05:e5:
2d:79:9e:98:6a:56:ad:2c:d9:45:87:1a:ca:60:5e:
bb:1a:2d:78:f5:4c:60:50:a6:84:a5:44:f0:3c:ee:
8c:47:c7:ac:39:21:7d:30:93:a1:34:3e:48:9e:3c:
b0:1d:9a:02:48:63:ea:f8:23:c3:d8:e2:96:a7:20:
07:26:2c:2a:60:35:21:26:6d:0b:5e:b4:4c:2f:92:
88:52:c1:3e:2b:8f:b3:44:53:16:33:bd:08:34:15:
18:9e:17:3e:84:a4:87:25:55:bc:38:20:43:28:8a:
2e:88:72:1a:a1:b3:37:95:c0:e4:f4:c1:44:9d:70:
43:42:a4:39:9c:27:a9:44:b9:94:34:8f:80:d9:4d:
d6:33:be:31:fc:16:62:23:93:ee:41:b8:6d:0c:04:
90:c3:8a:66:d4:f9:53:41:bf:9a:90:61:d3:91:4d:
f1:69:a1:f5:5e:73:27:93:2c:fe:84:d9:46:9e:2e:
28:84:aa:c2:6c:81:5a:98:25:5b:a4:79:90:95:94:
82:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:11:8F:CB:41:77:CA:14:A1:65:5F:C8:FE:5F:4D:E7:D7:89:FB:BC
X509v3 Authority Key Identifier:
keyid:98:82:96:C5:0D:94:BB:ED:22:5F:28:67:23:1F:A5:09:3D:EB:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/nhGPy0F3yhShZV_I_l9N59eJ-7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.48.0/22
Signature Algorithm: sha256WithRSAEncryption
20:91:24:d3:67:86:f3:8d:a2:d7:c0:27:4a:c0:ba:c4:a0:46:
be:c2:2c:c9:42:e2:a9:65:33:bf:04:cb:e4:24:c7:3b:ad:33:
4d:bf:b3:f0:96:2c:f0:a8:22:8e:55:c8:fa:ca:5c:c6:b8:72:
1a:ee:97:4e:5e:8b:53:4a:50:f4:41:01:87:43:26:55:ee:f0:
c5:22:b8:d7:0e:51:e5:75:7e:a2:b8:0c:ff:21:08:35:fe:14:
35:d3:60:7b:27:d1:72:d6:fb:44:49:43:bd:34:d4:e4:ca:7d:
8f:2c:1c:b1:db:ac:c5:02:c5:00:56:60:8e:7e:44:1f:75:9d:
bf:da:aa:17:43:9e:00:2b:2a:aa:d2:4f:4b:65:fe:ac:2f:9d:
04:91:f7:ff:d6:0e:40:a3:d6:2b:8f:90:2a:d3:c1:3b:57:d7:
4d:da:27:7e:26:d2:e0:5d:06:fb:47:e2:25:ef:37:9b:25:2a:
44:8e:ca:7a:16:41:33:7c:fd:7c:2b:0a:5b:79:67:23:03:de:
6c:8a:39:6a:2b:04:7c:47:ef:49:ff:b4:d9:25:ab:01:f2:4e:
ea:1d:e7:69:ce:17:cb:f2:9d:4d:90:7d:30:7f:ce:77:8d:22:
b5:c0:0b:59:bb:2f:cd:33:35:94:fa:ab:b4:b2:2c:bb:94:4e:
c4:d3:d5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:49 2024 by rpki-client on console-ams.rpki-client.org