Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j7UTmDpgf9mLA1GmWd2U7xIUUnE.roa
File: j7UTmDpgf9mLA1GmWd2U7xIUUnE.roa (raw, json)
Hash identifier: OoAxTrISVLhrFffBo/5RNwkRk2sVwffveWVA6ypS7qc=
Subject key identifier: 8F:B5:13:98:3A:60:7F:D9:8B:03:51:A6:59:DD:94:EF:12:14:52:71
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192D6D246231F10257AB3503277F11F0CE5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j7UTmDpgf9mLA1GmWd2U7xIUUnE.roa
Signing time: Tue 29 Oct 2024 05:49:17 +0000
ROA not before: Tue 29 Oct 2024 05:49:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62425
IP address blocks: 45.95.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 13:24:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d6:d2:46:23:1f:10:25:7a:b3:50:32:77:f1:1f:0c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 29 05:49:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fb513983a607fd98b0351a659dd94ef12145271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:92:0d:a7:b2:34:c0:83:b2:0e:3f:67:17:05:
0f:ac:bd:22:d2:6f:db:be:0c:2c:93:c8:1d:94:e4:
ad:1e:d4:80:98:a1:d6:0b:10:19:2d:90:ab:05:eb:
7b:01:56:87:3d:79:ae:d2:d5:f5:08:0b:3f:3d:85:
b9:b9:31:83:12:10:03:8f:b2:21:71:95:30:49:a7:
89:2f:99:d3:6f:4d:b3:92:27:c0:0a:1b:bb:33:09:
11:01:20:d5:b5:95:86:5e:a7:8d:12:cf:57:ed:86:
26:ef:50:63:c2:65:46:7f:5e:07:bb:8d:fb:55:cc:
26:e2:f5:e1:c1:58:9d:1d:63:82:73:8c:da:a0:eb:
d4:04:31:c1:43:be:b2:85:1a:2c:e4:06:e3:cd:33:
92:12:d5:b9:70:91:4a:51:68:20:8d:ed:75:2f:98:
c0:8c:fc:11:82:18:9e:9e:eb:c4:e1:f2:15:18:e8:
ae:e8:24:ea:f1:a3:e0:a5:f4:0e:c6:0a:75:a2:89:
58:9e:a0:6b:17:e6:33:8d:bb:ba:36:13:d9:be:4c:
e3:6f:e1:9b:dc:8f:77:5f:4b:de:8b:db:16:e7:03:
9e:dc:1d:e0:17:ad:2e:b7:47:bb:d6:c6:fe:52:cc:
c1:bf:f6:78:91:e9:fc:f0:1c:8d:d2:26:83:e3:77:
43:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B5:13:98:3A:60:7F:D9:8B:03:51:A6:59:DD:94:EF:12:14:52:71
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j7UTmDpgf9mLA1GmWd2U7xIUUnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.3.0/24
Signature Algorithm: sha256WithRSAEncryption
79:aa:01:12:06:54:5d:6d:a2:89:f9:9b:ef:68:f2:33:23:b4:
c8:7d:c5:ae:9c:2a:c5:39:1f:9f:38:73:37:3b:8f:3a:c4:3e:
df:1b:5e:80:cf:e1:00:5f:75:84:77:6e:ba:dd:52:7b:d2:7b:
ed:ec:2c:57:18:39:a3:2f:46:11:7f:93:d1:dd:73:c8:6e:d4:
31:a6:83:53:09:9d:85:f7:5b:01:34:f4:33:31:e9:c9:62:bd:
a2:af:0d:bc:82:6c:54:61:5d:27:51:2a:cb:25:30:b5:5c:8f:
97:f3:21:51:21:d0:50:86:8d:3b:58:d4:0d:22:48:db:cc:16:
30:b0:47:73:21:b6:b1:67:68:bb:ff:96:fd:d4:d9:67:a7:59:
e9:30:98:40:a2:71:49:db:37:29:e4:56:3f:5d:90:54:5e:7b:
aa:df:82:da:2f:06:e3:77:ec:5b:8c:bb:65:99:f9:45:39:3c:
67:f0:d8:f3:47:9f:43:23:5f:68:08:20:3d:7a:23:5e:48:2b:
fa:d7:12:de:57:37:1e:8b:e9:0c:3e:93:8b:a7:be:13:7d:66:
4c:a8:10:4e:0e:ef:59:cc:0b:03:79:5c:73:f1:e5:dd:8d:14:
08:95:f7:a5:a0:61:7f:ff:d1:31:ae:e0:2e:e6:26:a8:ea:cf:
4b:ab:95:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 17:50:19 2024 by rpki-client on console-ams.rpki-client.org