Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/is1nFokn6okSnOKlD-gsOgyv3V0.roa
File: is1nFokn6okSnOKlD-gsOgyv3V0.roa (raw, json)
Hash identifier: gnwrmX/mtImRdFY5qlG4gh/NhwNV5pBreT6ntVZBy7M=
Subject key identifier: 8A:CD:67:16:89:27:EA:89:12:9C:E2:A5:0F:E8:2C:3A:0C:AF:DD:5D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018CEDF89656D58867E2931B0E3F4D76B08C
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/is1nFokn6okSnOKlD-gsOgyv3V0.roa
Signing time: Tue 09 Jan 2024 11:25:40 +0000
ROA not before: Tue 09 Jan 2024 11:25:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59504
IP address blocks: 147.45.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 14:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:f8:96:56:d5:88:67:e2:93:1b:0e:3f:4d:76:b0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 9 11:25:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8acd67168927ea89129ce2a50fe82c3a0cafdd5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:12:52:83:f8:f0:89:b8:13:71:2d:bb:7b:
a7:d6:30:8d:c3:1d:f9:7c:89:9b:1e:1e:d1:8a:24:
62:e6:59:da:69:9c:1e:38:e7:e5:95:31:44:b5:5f:
be:34:1d:6d:a0:4e:b1:84:87:d8:fa:92:71:61:d3:
1a:38:d2:47:31:b7:fa:10:ef:a7:b0:c5:00:64:19:
86:b9:98:87:d5:cb:de:c4:f3:86:7c:54:e3:0f:7a:
8c:2d:d3:54:b5:ef:44:cc:08:4e:61:8f:6a:08:f5:
c7:41:13:4b:7c:15:d7:b6:f3:8c:1a:8b:68:ef:92:
22:9f:2c:bc:0f:0f:9d:83:56:65:ca:ef:02:17:fe:
94:3d:d0:53:ae:5a:28:81:97:78:79:0e:79:d9:7e:
b4:d1:13:8c:36:1e:15:b3:67:34:4c:4a:85:93:c0:
90:ef:ef:59:7f:42:4e:d3:9f:9c:62:d4:d4:42:78:
ca:e8:e3:b6:01:c6:e7:e0:8b:39:da:58:ea:3e:6a:
5c:62:32:d3:d0:7d:09:05:10:99:f8:11:53:d6:c6:
90:b8:df:b4:4f:f0:86:cb:4a:51:d4:06:56:d1:91:
e7:30:2b:85:7c:35:ef:d9:a2:09:af:17:db:19:4e:
e0:e6:32:18:6d:bc:86:43:5d:2a:35:ca:eb:f9:f5:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CD:67:16:89:27:EA:89:12:9C:E2:A5:0F:E8:2C:3A:0C:AF:DD:5D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/is1nFokn6okSnOKlD-gsOgyv3V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.45.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:88:40:25:41:f3:7a:97:73:1f:95:ca:37:56:5c:3b:70:51:
f2:91:3a:b9:b0:66:a5:fd:97:cb:73:ce:92:2e:d8:86:9b:6b:
c0:5d:db:7a:e6:e3:d8:3e:cd:16:28:76:13:72:38:44:50:ee:
02:29:9f:b6:96:da:de:d7:e6:a1:67:54:32:90:8d:87:cf:78:
d6:23:14:6d:64:41:11:c0:9a:32:d2:6c:f2:62:bb:83:4f:79:
53:d3:d2:32:2c:14:2d:0a:6c:46:b6:57:a3:bf:c1:ca:b6:41:
a9:97:f7:6c:21:d9:02:7f:bb:cf:28:c1:55:d7:ff:1e:91:4c:
69:14:65:f5:a3:e9:a8:db:94:44:bc:42:fd:44:4c:8a:b8:09:
53:76:86:34:4f:e1:40:e7:09:d7:70:b1:56:8a:23:f6:9d:fd:
87:b5:a8:2a:ea:9b:3a:31:89:b3:59:d4:d1:cd:29:49:7a:94:
87:e7:28:9f:66:51:39:d1:42:88:bd:4c:8e:fa:f3:d4:19:69:
62:ef:f9:69:51:e1:7f:f0:93:9e:dd:fd:a3:38:84:88:60:8d:
1c:be:ab:80:fb:5c:c1:42:1c:87:f3:17:b6:f5:14:cf:dd:7b:
64:8b:25:db:c6:6a:54:ce:2b:15:14:03:62:96:ce:be:8b:fe:
af:52:4e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 18:34:34 2024 by rpki-client on console-fra.rpki-client.org