Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ffMkd3Faz_Lobf9OlvXQl3lcAHI.roa
File: ffMkd3Faz_Lobf9OlvXQl3lcAHI.roa (raw, json)
Hash identifier: rIZp+JgAu9nJWTEP8lRWWbDhjl1BjvAyOBWpy6+XWWU=
Subject key identifier: 7D:F3:24:77:71:5A:CF:F2:E8:6D:FF:4E:96:F5:D0:97:79:5C:00:72
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01876F253730558EC30278E36041A7AC396D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ffMkd3Faz_Lobf9OlvXQl3lcAHI.roa
Signing time: Tue 11 Apr 2023 07:08:42 +0000
ROA not before: Tue 11 Apr 2023 07:08:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.14.166.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 22:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:25:37:30:55:8e:c3:02:78:e3:60:41:a7:ac:39:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 11 07:08:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7df32477715acff2e86dff4e96f5d097795c0072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:1a:c0:22:e4:30:04:67:bc:aa:70:00:6f:
7c:e0:f0:cd:52:aa:1f:74:f2:8c:66:54:eb:70:e8:
09:e8:48:aa:71:7c:e1:47:48:59:4d:3b:67:1f:60:
26:cd:a5:2c:d6:96:9a:ae:14:d7:06:ab:c3:4b:4c:
ef:9f:0a:1b:30:79:bb:c9:86:a2:14:f3:08:98:00:
18:31:7b:d0:69:36:0a:2d:a3:35:8f:3e:67:41:1c:
25:3c:2e:71:bc:68:64:2a:7d:7d:15:30:95:88:fa:
a1:fe:94:5b:42:1e:43:7c:af:c9:ee:dd:8a:c2:ad:
16:fa:bf:a3:09:8c:fe:9b:87:94:97:1d:bb:7d:7c:
2e:99:91:e3:24:65:7b:ac:1a:89:f7:03:2d:4a:47:
c3:77:10:2d:19:c0:01:7f:f4:f2:b2:9e:90:43:1b:
c3:03:b1:d6:ab:61:85:e6:64:1e:65:a8:f8:5c:67:
c5:89:64:a1:06:57:f4:f7:52:c4:a4:1e:1a:19:57:
a6:0a:db:d5:67:0a:10:8a:95:b4:95:68:a4:7e:1c:
f0:ff:45:c0:99:04:58:25:ae:d7:a7:d2:9b:d9:86:
ae:fb:17:76:22:3f:8f:ba:7d:cd:5b:ad:d7:50:58:
5f:4c:66:5a:c0:75:3d:4c:79:72:a8:ac:9c:85:b6:
71:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F3:24:77:71:5A:CF:F2:E8:6D:FF:4E:96:F5:D0:97:79:5C:00:72
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ffMkd3Faz_Lobf9OlvXQl3lcAHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.166.0/23
Signature Algorithm: sha256WithRSAEncryption
63:f2:f5:5f:c9:33:55:17:3a:00:22:ff:ff:0a:d2:37:e0:70:
23:84:18:cc:60:d4:87:83:30:3d:79:07:a3:dc:e7:46:13:7c:
a8:c2:24:7d:76:b5:c2:53:48:59:f6:f2:98:59:a0:d2:50:f9:
7a:0c:f7:06:82:28:d5:77:22:bf:df:8e:cc:e2:42:fb:d3:79:
9b:d5:00:5c:5f:1f:fd:ae:83:bc:c7:89:63:05:a4:a9:91:ca:
b9:8f:a5:e3:47:b7:82:82:ec:0f:a6:f3:25:66:51:37:34:f6:
b3:7e:c1:d6:aa:9e:13:bd:52:34:aa:3d:05:b1:0e:1a:7c:b2:
e6:cf:1d:4e:35:bb:e3:5b:44:35:e0:3e:39:b3:11:b5:d8:c0:
51:a8:58:31:77:73:a4:e6:66:79:ed:58:aa:16:37:f8:55:73:
ce:1d:ed:d2:38:f8:5a:6e:f3:96:9f:60:04:0d:79:d2:af:85:
20:6e:b3:bc:23:c2:12:d4:5c:3e:5f:6b:56:0b:c0:20:2d:28:
1d:c9:f1:f3:81:f3:70:cb:2b:fb:99:10:e1:3c:79:3c:ea:70:
9a:e2:d6:64:f9:52:c5:90:11:e4:8b:d1:f0:18:e0:e3:89:35:
d7:de:aa:a4:46:3e:cf:4a:c7:d9:1d:da:84:04:f9:dc:ce:bd:
7d:89:f2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:16 2024 by rpki-client on console-fra.rpki-client.org