Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9Nqaz1X5V1H1SOqF4jWiSr4T_es.roa
File: 9Nqaz1X5V1H1SOqF4jWiSr4T_es.roa (raw, json)
Hash identifier: BbMaH14pPjy+/UpCD2p+mjEeD9ifJwvnrD7ytAd7pSg=
Subject key identifier: F4:DA:9A:CF:55:F9:57:51:F5:48:EA:85:E2:35:A2:4A:BE:13:FD:EB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DEE4E0D9CC0D5E8393BF05DAC6151CE71
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9Nqaz1X5V1H1SOqF4jWiSr4T_es.roa
Signing time: Wed 28 Feb 2024 06:01:49 +0000
ROA not before: Wed 28 Feb 2024 06:01:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215998
IP address blocks: 45.84.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 08:42:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:4e:0d:9c:c0:d5:e8:39:3b:f0:5d:ac:61:51:ce:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 28 06:01:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4da9acf55f95751f548ea85e235a24abe13fdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:ce:53:13:85:86:7c:cb:f8:6c:35:3b:54:
f5:9b:b0:b5:f3:c0:3e:4f:bf:16:f1:e9:1d:69:7c:
c6:35:42:68:40:93:59:5d:23:90:90:bc:e1:79:c8:
6e:eb:67:4b:bd:78:58:36:4b:c5:6f:42:bc:ea:63:
bb:4c:a7:17:e4:62:85:94:05:8b:c8:25:71:8e:05:
51:7a:13:b3:47:c1:4d:e2:80:e3:b6:89:c0:4c:53:
62:db:fe:aa:56:7b:68:b2:38:14:54:f4:76:d0:eb:
8a:f8:0c:9f:06:19:2a:dc:b3:39:74:04:d3:59:61:
8c:ba:f1:ba:f2:e9:d2:a7:c5:86:15:37:a8:d3:1c:
9b:b8:b7:4c:85:7a:8e:d5:55:bf:ff:aa:36:8b:6f:
8e:63:c3:36:9d:0d:f8:53:06:85:af:28:96:92:83:
77:5f:4e:5a:7b:9e:5e:b0:3b:c2:d2:88:21:30:b1:
58:bf:14:97:c4:3f:fd:dc:ea:76:0a:2c:b6:f9:89:
c9:8e:44:81:65:ae:a5:73:93:81:22:e3:c9:7a:60:
32:06:66:dc:c1:51:23:7f:a9:76:46:50:5d:3e:86:
33:87:1b:ad:7f:fc:30:d4:e2:8f:b5:78:90:82:d5:
20:5c:fe:92:c0:97:af:dd:94:3c:d0:ef:83:43:1c:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DA:9A:CF:55:F9:57:51:F5:48:EA:85:E2:35:A2:4A:BE:13:FD:EB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9Nqaz1X5V1H1SOqF4jWiSr4T_es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.89.0/24
Signature Algorithm: sha256WithRSAEncryption
77:94:67:22:a3:35:05:00:b3:c7:13:48:c6:34:cd:6e:5a:e7:
aa:15:2c:3f:8b:5d:2c:49:3d:9f:8f:69:e8:cb:ca:69:49:05:
13:96:63:ee:6b:fd:b3:38:52:a9:82:6f:3a:8f:81:97:74:ec:
92:6f:d7:4c:6d:e3:cf:3b:c9:9e:59:1c:a8:b1:df:24:10:27:
f1:93:d3:29:71:f7:d0:be:88:4c:17:e2:d4:51:64:5f:ff:25:
ea:47:03:95:57:65:87:c3:89:4a:f4:0f:5a:6c:ca:1f:73:12:
3b:a0:bd:7e:6e:ca:5d:1a:49:05:6f:f4:dd:44:4c:41:14:d6:
d8:08:8a:5d:b2:ba:36:72:91:35:33:08:37:70:3f:a4:cc:ef:
54:55:ec:c2:6d:c1:76:0b:43:15:4a:a4:cf:80:24:04:19:3c:
b5:1e:fe:3b:52:42:5a:fd:6f:94:d2:80:95:31:80:f1:60:0d:
13:c9:9a:3f:7b:34:01:0a:04:44:09:8b:ce:bc:33:3d:45:d5:
61:6e:2c:db:c7:8c:d7:f4:23:c1:3d:cf:38:01:96:0f:78:9e:
31:83:07:1b:58:2e:97:8a:05:8a:ce:12:32:f9:13:cf:af:be:
3f:47:83:7d:76:07:42:d8:f0:c6:5f:2a:26:33:e4:34:22:fc:
a7:e2:cb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 11:55:48 2024 by rpki-client on console-ams.rpki-client.org