Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/m1snSqZI84L5E39MObOm2dL18Sw.roa
File: m1snSqZI84L5E39MObOm2dL18Sw.roa (raw, json)
Hash identifier: xSA4gKw2Opfb7uqdjny4eJT29nS/i2cDdVL51DVAD/I=
Subject key identifier: 9B:5B:27:4A:A6:48:F3:82:F9:13:7F:4C:39:B3:A6:D9:D2:F5:F1:2C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B60E277FA4625A25E1AF3B095B53CBD02
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/m1snSqZI84L5E39MObOm2dL18Sw.roa
Signing time: Tue 24 Oct 2023 08:52:16 +0000
ROA not before: Tue 24 Oct 2023 08:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 45.151.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:e2:77:fa:46:25:a2:5e:1a:f3:b0:95:b5:3c:bd:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 24 08:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b5b274aa648f382f9137f4c39b3a6d9d2f5f12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3a:06:5b:6a:41:b4:67:c8:48:29:1e:a4:17:
8f:ad:8a:f2:a1:2d:29:23:86:fd:68:7a:cc:23:25:
e3:a8:4c:a2:a2:fc:4e:25:7e:94:29:e0:cf:d8:13:
44:b4:ba:ad:f5:63:9d:59:bf:49:24:35:9f:e6:9c:
e4:93:18:44:32:0b:c8:30:12:61:f0:87:08:e8:de:
ce:dd:70:58:31:6c:b5:64:7f:3e:42:f6:91:bb:ec:
d7:39:10:9b:f8:ab:63:f3:b1:8b:68:fe:36:b9:dd:
27:fc:46:08:69:9c:2a:39:ec:00:97:12:6c:b0:bc:
c1:3e:3a:7a:5c:14:e2:a9:60:ac:e2:fc:c1:df:4d:
92:c2:95:a4:8a:49:26:28:c3:89:9c:bd:49:a3:d7:
66:ae:9b:c3:18:ac:dd:23:29:6f:b8:23:ae:dc:f9:
60:80:d9:9c:72:ee:ea:54:cd:91:c7:89:2e:0b:eb:
b0:83:ce:cb:b0:eb:d7:6b:a6:6c:26:88:ce:61:c1:
06:4e:3c:b9:74:c6:62:2a:d1:9b:13:eb:f0:2d:d1:
4c:94:ef:cf:4f:13:ea:e2:63:14:df:2f:30:fa:91:
a0:94:33:b6:c0:66:f0:a8:97:4e:20:42:1e:86:90:
56:ba:b8:88:49:16:09:3e:8c:c5:93:9b:ff:2e:e5:
ce:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5B:27:4A:A6:48:F3:82:F9:13:7F:4C:39:B3:A6:D9:D2:F5:F1:2C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/m1snSqZI84L5E39MObOm2dL18Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6e:bb:1b:45:be:bd:8f:06:89:4e:30:79:ae:26:1e:30:a7:
b3:03:ed:56:47:9f:1f:48:ce:c8:90:21:04:69:44:64:a5:d3:
78:cb:1e:bd:29:72:78:a3:04:6c:d3:06:d4:3b:91:2f:2a:31:
ee:fe:75:56:e3:e9:71:49:ca:86:0c:9a:3c:b1:49:c5:7b:84:
30:ba:d6:18:c2:cf:08:83:89:05:49:52:50:67:38:b2:22:93:
68:49:7d:43:2b:f7:18:63:cb:4f:8a:f6:55:b5:fe:47:ee:45:
c6:5b:b4:76:3b:70:a6:95:c9:76:4d:c5:fe:00:23:78:90:98:
7b:b2:2d:71:5f:8a:cf:60:09:a3:d4:9b:57:6a:cf:97:5d:f3:
28:0e:33:dc:31:3c:4d:d6:5d:30:b4:9e:c1:34:31:02:7e:6f:
b4:c9:f6:89:10:3a:67:3b:ca:6d:c0:6a:18:b9:2a:af:7c:f6:
d6:94:6a:a4:b2:29:d8:92:0d:99:ab:a0:1d:bc:91:9a:03:69:
4b:8a:15:76:19:50:86:53:ba:05:cc:58:eb:48:47:c9:20:22:
00:74:d5:38:02:df:93:1b:25:7e:00:54:4a:10:5d:29:b5:c1:
e0:05:be:fb:19:ae:5c:fa:1d:8d:a2:46:27:40:de:a7:fb:32:
73:47:0a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:13 2024 by rpki-client on console-ams.rpki-client.org