Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w15Nq6PPeC34zAnQHhGOs1ORO9I.roa
File: w15Nq6PPeC34zAnQHhGOs1ORO9I.roa (raw, json)
Hash identifier: bpGJy0oCmNSDzMPNDXdby4eZnmcbOGv5vSSVzfNugfc=
Subject key identifier: C3:5E:4D:AB:A3:CF:78:2D:F8:CC:09:D0:1E:11:8E:B3:53:91:3B:D2
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018D265FD7A8F9D87033594DDF665F1735D5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w15Nq6PPeC34zAnQHhGOs1ORO9I.roa
Signing time: Sat 20 Jan 2024 10:17:11 +0000
ROA not before: Sat 20 Jan 2024 10:17:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 147.45.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 15 Feb 2024 13:18:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:26:5f:d7:a8:f9:d8:70:33:59:4d:df:66:5f:17:35:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 20 10:17:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c35e4daba3cf782df8cc09d01e118eb353913bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:18:e4:b6:83:f9:7c:19:cf:ee:ec:21:f3:c1:
b1:16:3e:8d:19:a4:cc:94:6f:19:bc:02:c1:12:7e:
75:7e:90:0d:85:89:f2:18:f3:f8:a4:d1:30:1f:3b:
f5:e0:7b:db:e5:16:3a:e9:d1:51:1c:d1:d0:13:ea:
45:23:4e:2e:13:4a:e0:ea:b4:8d:56:98:60:1f:a7:
93:c9:4f:20:e3:7e:41:88:23:2c:5e:92:80:d9:91:
90:2c:e4:18:d8:5d:75:d8:77:eb:66:a3:79:6c:a7:
c6:3e:d6:47:3d:63:7c:da:f6:6b:d7:9d:0a:2f:9c:
73:aa:8f:52:57:5c:26:2b:0c:e2:26:4d:97:ed:2a:
3d:d3:94:73:b8:ae:53:56:90:1e:05:b6:67:1e:f8:
9a:48:75:2f:97:c4:cc:64:32:81:10:2f:57:01:90:
17:35:67:ea:94:65:bd:f5:a6:cd:2c:33:6c:e6:e2:
02:80:df:ca:fa:e1:f0:9f:69:c4:52:0a:a0:c4:ec:
eb:f3:bb:c2:4b:54:5f:5a:07:5b:be:10:47:ab:7f:
b0:78:47:87:f2:8b:4c:77:05:85:21:5a:11:1a:4e:
87:4c:fb:d1:70:1c:9f:7e:a6:76:7a:31:d0:73:a5:
a2:90:67:72:89:b5:bc:be:ac:89:f5:91:8e:7d:ec:
08:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5E:4D:AB:A3:CF:78:2D:F8:CC:09:D0:1E:11:8E:B3:53:91:3B:D2
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w15Nq6PPeC34zAnQHhGOs1ORO9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.112.0/22
Signature Algorithm: sha256WithRSAEncryption
03:0e:4f:32:cb:70:5b:da:c8:41:82:62:c2:6f:d7:37:85:fe:
57:85:16:5b:32:18:c5:17:3b:15:6b:e5:be:a9:c7:06:0a:b4:
34:f1:86:37:86:ac:f4:9a:18:1c:10:6b:f3:34:28:38:47:0f:
39:00:54:8e:e3:68:93:86:49:d4:7d:57:fb:4b:76:44:8a:f6:
ae:01:88:06:43:d1:58:88:53:7d:d0:cd:73:38:22:03:ce:3d:
47:e9:62:57:77:51:05:46:11:96:fb:21:b8:fd:3d:a8:76:2f:
3a:2b:6b:39:bb:73:64:5f:51:d7:26:1b:b4:15:85:ca:27:b4:
d5:a0:ad:d0:a6:d7:dd:29:4d:ed:70:ba:80:18:06:dd:04:84:
df:31:54:24:55:25:75:62:b0:47:b8:a7:8c:e5:86:27:d4:d2:
e5:62:90:a5:ab:77:9e:90:80:a8:f3:ed:9e:ec:22:a1:51:72:
79:1f:a8:8b:68:87:56:fb:7a:4a:00:63:57:a7:97:df:6a:cf:
bd:c1:78:f8:bd:6c:5e:89:7c:61:aa:02:cb:81:48:eb:7f:d0:
b2:59:72:d1:5e:6b:7d:57:28:8e:e6:aa:42:5e:c6:64:cf:cd:
36:9c:10:19:de:aa:8a:7c:50:70:d4:99:ee:d7:ac:13:c0:41:
ff:2e:0c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 15:51:01 2024 by rpki-client on console-fra.rpki-client.org