Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/4a395c-5185-42ee-948b-8fc2b71d030f/1/n2YLIRhyOYmg_SAxJQfMoU0y-I8.roa
File: n2YLIRhyOYmg_SAxJQfMoU0y-I8.roa (raw, json)
Hash identifier: tyB8eQ6OjPp2SY/PnFvvRMWqxC/ezxja4mgsjaJZdKk=
Subject key identifier: 9F:66:0B:21:18:72:39:89:A0:FD:20:31:25:07:CC:A1:4D:32:F8:8F
Certificate issuer: /CN=32ed014577ac73ff87ef20ca6f75795e4c937fce
Certificate serial: 018916ECFF0BEE4D4ED2BC62D8D62AE37486
Authority key identifier: 32:ED:01:45:77:AC:73:FF:87:EF:20:CA:6F:75:79:5E:4C:93:7F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu0BRXesc_-H7yDKb3V5XkyTf84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/4a395c-5185-42ee-948b-8fc2b71d030f/1/n2YLIRhyOYmg_SAxJQfMoU0y-I8.roa
Signing time: Sun 02 Jul 2023 14:06:17 +0000
ROA not before: Sun 02 Jul 2023 14:06:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206551
IP address blocks: 45.90.64.0/22 maxlen: 22
2a0c:ab80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:16:ec:ff:0b:ee:4d:4e:d2:bc:62:d8:d6:2a:e3:74:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ed014577ac73ff87ef20ca6f75795e4c937fce
Validity
Not Before: Jul 2 14:06:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f660b2118723989a0fd20312507cca14d32f88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:28:10:99:d9:94:cb:38:ab:62:52:24:33:1d:
01:5d:59:05:da:0e:b5:d4:2c:32:cc:7b:c1:36:56:
de:d6:34:3d:71:86:c3:9b:f9:79:75:7c:32:8c:cb:
8e:fc:0c:bd:8f:81:a2:13:41:2b:89:ac:55:e6:9d:
d0:6d:5b:b5:c4:08:2a:57:2d:d4:6c:b5:d9:76:ad:
62:18:0e:3a:ef:a2:df:c5:c3:30:65:06:94:03:7a:
44:1d:fd:a9:66:06:1a:64:71:3b:33:9f:98:28:8b:
15:ba:cf:85:08:40:b2:95:7e:9e:2b:df:0d:e9:58:
9b:c9:fd:16:9e:69:eb:de:cd:45:7f:bd:a9:56:4d:
d2:1e:97:17:fc:36:56:3a:ae:4f:ec:3b:73:04:c7:
d5:1c:dd:b7:8c:a7:b2:dc:f4:0b:b0:43:6e:4d:f3:
3b:b1:84:a9:bd:61:41:04:8a:85:fe:eb:ab:1a:dc:
3a:bf:55:7e:da:24:1c:43:64:16:a0:bb:0c:d0:21:
a5:b8:27:b3:9a:23:14:61:fa:7b:56:83:89:d3:9a:
01:d0:ff:a6:a0:61:65:19:a2:32:f8:6d:60:64:84:
98:23:f7:b3:20:c5:97:d3:38:b5:a1:47:4e:55:c6:
6b:33:d0:b0:c4:b6:39:8d:8a:8f:ef:55:7e:c6:dd:
20:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:66:0B:21:18:72:39:89:A0:FD:20:31:25:07:CC:A1:4D:32:F8:8F
X509v3 Authority Key Identifier:
keyid:32:ED:01:45:77:AC:73:FF:87:EF:20:CA:6F:75:79:5E:4C:93:7F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu0BRXesc_-H7yDKb3V5XkyTf84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4a395c-5185-42ee-948b-8fc2b71d030f/1/n2YLIRhyOYmg_SAxJQfMoU0y-I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4a395c-5185-42ee-948b-8fc2b71d030f/1/Mu0BRXesc_-H7yDKb3V5XkyTf84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.64.0/22
IPv6:
2a0c:ab80::/32
Signature Algorithm: sha256WithRSAEncryption
2b:43:82:f0:c1:a5:92:f0:b0:97:4d:43:b3:8e:7f:a7:19:e0:
23:9f:23:76:42:d5:ae:02:9b:49:6e:af:dd:f8:ac:42:13:08:
fb:de:e1:c1:58:c1:35:9a:02:43:fe:c8:97:6a:2a:22:b3:4c:
87:04:7c:df:4f:a8:d3:62:3d:2c:57:1a:15:07:1b:eb:ef:24:
82:0f:20:fc:b6:fe:ca:d7:19:51:5f:6b:7d:2a:5c:4d:88:de:
9d:65:bc:58:16:a3:24:b6:6f:d6:d5:af:00:80:24:d2:8e:30:
81:24:10:2c:90:9e:08:80:75:82:72:7f:f7:d0:4b:8d:69:8c:
37:c3:61:39:19:13:82:88:98:35:7a:1a:1e:a0:ff:4e:4a:e7:
90:6e:d5:83:b9:6a:87:8c:13:fc:b2:84:54:ab:87:69:a8:55:
98:69:ff:ef:5b:fb:46:b3:9d:1a:a9:06:4f:0f:3a:0d:c7:02:
2a:c6:66:eb:99:a1:7f:d4:77:9b:f7:4c:2c:3a:91:f8:a5:bf:
a3:a3:b9:93:d2:80:b3:e9:d1:6d:ce:da:31:53:69:5c:88:c0:
58:63:86:20:14:e5:02:43:31:ce:fa:29:f6:8a:c6:79:c0:b6:
f3:6c:38:a2:61:3d:80:0f:96:34:e0:4b:69:6f:ba:e7:5c:f8:
86:8e:2f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:49 2024 by rpki-client on console-fra.rpki-client.org