Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8JI9Lbej1mXkjTvI0P4JOkUTPdU.roa
File: 8JI9Lbej1mXkjTvI0P4JOkUTPdU.roa (raw, json)
Hash identifier: Ukg0tfc1huXE7kXlmX9Yn46kp6Xn51y+kJYSqcPsudo=
Subject key identifier: F0:92:3D:2D:B7:A3:D6:65:E4:8D:3B:C8:D0:FE:09:3A:45:13:3D:D5
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018D36A57DE186F93AEC551CAB4F64A18B59
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8JI9Lbej1mXkjTvI0P4JOkUTPdU.roa
Signing time: Tue 23 Jan 2024 14:07:11 +0000
ROA not before: Tue 23 Jan 2024 14:07:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209043
IP address blocks: 45.9.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 16:52:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:a5:7d:e1:86:f9:3a:ec:55:1c:ab:4f:64:a1:8b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 23 14:07:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0923d2db7a3d665e48d3bc8d0fe093a45133dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:b0:d6:20:24:e0:2a:20:82:3f:ec:a5:90:
2f:2f:bd:b0:7f:b6:69:6c:b7:58:05:55:5d:5c:1a:
ed:86:ed:8f:df:b5:45:d7:1b:98:61:3c:9b:48:2d:
69:ef:3e:15:61:88:3d:98:0f:d9:10:8c:6f:51:98:
a5:34:fa:25:7b:a3:ee:b3:ee:d6:80:38:a6:16:63:
4e:1d:d5:86:c9:dc:80:a8:6a:16:6c:52:c1:1a:7a:
17:11:2c:24:1b:f0:80:90:9d:8c:b4:ea:ff:7b:cf:
f4:8d:4d:5a:e6:15:f2:f4:00:b0:cb:a5:ea:ff:bd:
49:35:65:19:a5:3a:04:d9:9d:57:52:f2:e4:85:7a:
50:e5:07:08:0f:c1:72:9a:65:59:40:f1:86:81:09:
3d:5f:4a:73:b9:f4:e5:1e:50:a9:0c:f3:ec:35:a8:
87:5a:c7:26:6b:cd:3a:5d:05:02:21:e7:d9:61:09:
da:1c:38:70:b9:a5:fb:12:39:25:75:12:f1:32:b4:
e8:4e:eb:41:eb:e8:a7:05:76:52:75:4c:e7:9d:72:
5b:d9:ed:d3:3f:72:07:de:f3:6b:a5:b0:ce:36:7f:
9d:b9:18:20:6e:2d:34:7b:16:f5:3a:c9:8d:16:4d:
cc:9a:c9:13:62:ea:2f:65:ad:71:39:c1:22:9c:81:
87:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:92:3D:2D:B7:A3:D6:65:E4:8D:3B:C8:D0:FE:09:3A:45:13:3D:D5
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8JI9Lbej1mXkjTvI0P4JOkUTPdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.152.0/22
Signature Algorithm: sha256WithRSAEncryption
59:25:e4:05:79:10:d7:67:4a:96:ff:a2:3b:0e:b5:bd:03:01:
76:62:3f:0e:6d:ea:94:e1:5b:f5:10:2e:c1:5f:ad:75:a3:2b:
f4:99:c7:b2:ab:2a:b7:e9:62:6f:5c:39:d8:fa:0d:37:1c:cb:
5f:8b:92:94:09:6d:62:74:bd:39:83:6e:eb:2a:63:f6:8d:ff:
3f:c9:8b:56:5c:5e:e0:2b:a3:46:09:b2:bf:ed:64:53:49:45:
ff:c9:e2:5e:ae:0f:d5:3e:06:15:ae:73:18:22:2e:ad:8c:a1:
f7:29:b0:19:cf:21:f2:f6:e5:2b:c1:90:b8:a0:0c:9b:54:2b:
d1:87:46:42:a9:04:4c:03:50:d9:7d:b4:c3:68:e9:dc:69:a2:
0d:0e:73:de:99:ef:e5:f7:83:2e:07:8c:97:aa:15:be:6d:99:
60:79:a1:e0:c9:10:03:42:bd:1a:9b:c9:c3:69:f4:1f:21:13:
73:97:35:60:e9:f4:13:39:a1:5e:e3:77:5f:e3:f2:2c:6d:f6:
06:9c:a7:85:84:95:4b:e2:34:10:7e:fb:0a:1c:2a:30:7c:cf:
90:53:d4:21:0c:d0:df:7d:4c:be:df:ed:06:01:d2:ca:15:8a:
4d:b4:02:db:b4:a2:73:c2:12:e2:60:77:9e:3b:ee:b5:3e:4d:
07:3c:bb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org