Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/cCb9lC7pns-f0nYo3PnR6gbzZV0.roa
File: cCb9lC7pns-f0nYo3PnR6gbzZV0.roa (raw, json)
Hash identifier: 6ctSliGtE4i10wPmnWAzZpEXM0RAnUWkmRLXHgf7hz4=
Subject key identifier: 70:26:FD:94:2E:E9:9E:CF:9F:D2:76:28:DC:F9:D1:EA:06:F3:65:5D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018C49C33C54206C73798F662AB8879172D1
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/cCb9lC7pns-f0nYo3PnR6gbzZV0.roa
Signing time: Fri 08 Dec 2023 14:09:40 +0000
ROA not before: Fri 08 Dec 2023 14:09:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62904
IP address blocks: 147.45.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 12:45:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:49:c3:3c:54:20:6c:73:79:8f:66:2a:b8:87:91:72:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 8 14:09:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7026fd942ee99ecf9fd27628dcf9d1ea06f3655d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f3:77:57:18:38:ba:bd:d5:d8:a9:7e:ae:c4:
cd:0e:49:ee:65:99:a1:1e:06:63:3d:6b:37:b1:87:
70:15:41:10:da:31:7c:a5:d2:7c:93:7f:9f:d1:1e:
76:2d:2d:d8:40:4b:0f:a3:10:1c:be:5c:09:37:35:
66:ef:fe:d2:3d:12:31:56:60:b7:e5:6d:87:00:d1:
1a:1c:25:20:43:6e:ac:7f:fc:fb:68:eb:ed:e8:9a:
34:7a:d3:71:66:32:57:81:bc:d3:a0:3b:ae:fe:09:
1b:9b:6e:17:0b:e2:37:b4:67:70:8d:bd:d6:7c:93:
68:78:ef:32:32:31:c3:70:a8:ed:73:de:3e:76:7c:
a4:4a:74:d7:7f:05:5b:29:62:06:a9:90:25:27:ff:
5e:58:aa:3b:d9:be:d8:4c:f3:17:24:ed:7a:fb:db:
bf:92:ed:69:7a:99:2d:ec:02:fb:ac:aa:2a:c6:c7:
b8:65:9c:26:f6:e0:03:0f:b3:e0:bb:93:36:5a:f7:
b6:ce:8f:74:e2:ee:1d:e1:74:bb:56:a1:80:42:06:
e0:92:e6:4d:5c:1e:5c:f3:d5:75:3f:fb:59:6f:7e:
3e:b4:0d:d1:c1:ad:36:db:76:92:70:8f:4c:a0:dd:
eb:35:0d:ee:5c:86:82:ae:9d:eb:92:42:89:53:6e:
38:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:26:FD:94:2E:E9:9E:CF:9F:D2:76:28:DC:F9:D1:EA:06:F3:65:5D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/cCb9lC7pns-f0nYo3PnR6gbzZV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.124.0/22
Signature Algorithm: sha256WithRSAEncryption
14:48:b8:29:c4:5a:45:a0:a5:e0:4b:2e:9f:07:8b:60:61:c1:
9a:88:a9:be:3b:a0:07:7d:81:cb:22:ca:ee:11:e4:7f:1e:73:
f6:4c:bf:69:99:35:41:17:05:ce:0d:44:3c:25:05:96:7a:e3:
55:be:16:fc:ab:f5:ad:ca:5b:32:55:48:32:dd:b5:23:d4:97:
cd:36:3d:cf:15:2f:f8:55:50:2a:95:56:ac:bb:f4:8c:07:36:
8f:60:36:42:4c:53:c2:65:d6:88:64:a5:a2:ff:2f:c6:55:e3:
eb:1a:fb:1b:55:eb:8f:32:c6:f7:da:a3:f8:27:e7:8c:76:46:
7e:69:39:b8:6a:17:77:15:53:2e:bc:0e:55:16:66:f4:26:3e:
3c:63:67:bb:92:09:6f:6c:e5:15:52:37:ed:db:95:5e:44:2f:
82:2c:26:0c:93:4f:e8:6b:a6:64:2f:16:d0:a3:8c:5a:aa:7a:
16:ed:e6:10:f9:e0:83:f7:0d:3b:7a:77:ff:d1:77:c5:29:44:
60:0f:6c:23:c6:e3:8f:95:b5:c0:86:31:af:3d:2b:05:8c:98:
1c:e2:86:16:72:c4:91:15:cc:21:d5:b1:f5:f6:cc:45:2e:c8:
50:a7:29:a4:30:f6:ca:bc:6c:db:0e:79:31:5d:57:72:5b:c9:
59:11:b4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org