Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/__sqwtko0IAo-yXRDD8gYm5xkfA.roa
File: __sqwtko0IAo-yXRDD8gYm5xkfA.roa (raw, json)
Hash identifier: VDRVtyAE010VeevSgshMQ7L0py+BxHUw+HnnCZ/WAaY=
Subject key identifier: FF:FB:2A:C2:D9:28:D0:80:28:FB:25:D1:0C:3F:20:62:6E:71:91:F0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 01857139D7B66AAC0188739B2289B064DD03
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/__sqwtko0IAo-yXRDD8gYm5xkfA.roa
Signing time: Mon 02 Jan 2023 06:44:54 +0000
ROA not before: Mon 02 Jan 2023 06:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.11.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:d7:b6:6a:ac:01:88:73:9b:22:89:b0:64:dd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: Jan 2 06:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fffb2ac2d928d08028fb25d10c3f20626e7191f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:97:5d:ef:04:c0:e0:bb:fa:c2:cd:13:d5:71:
cb:8a:33:c1:be:dd:c5:e1:e0:0c:07:30:d8:f8:f8:
e9:c0:6e:2e:1c:a8:a5:cc:bc:08:3d:52:6b:c7:41:
94:dd:d3:7c:46:80:b7:a2:1d:cc:4a:45:8f:f1:8f:
c3:fb:20:c4:f1:2e:4c:6f:d4:c1:f2:b0:32:80:e2:
81:c1:fd:e4:24:d1:b3:e5:7f:45:4e:2d:1a:0e:18:
83:47:64:17:b8:20:03:2f:7c:8d:9f:af:59:d3:6b:
61:e7:e3:7d:f9:bb:37:72:0d:0e:77:51:d0:96:a6:
cc:18:42:d5:75:58:f9:15:39:1b:88:a7:0c:fb:53:
1d:ec:0a:37:c8:0a:8b:39:41:b1:14:cf:6d:cf:ec:
5a:9a:db:cb:32:78:9b:16:9e:9f:86:d6:b5:f9:ef:
c6:20:d4:4c:89:13:37:af:e0:83:1d:03:7a:bf:de:
55:23:df:48:24:aa:2d:9c:bb:5d:88:6f:e6:2d:29:
2c:58:28:90:b3:df:08:bc:87:7a:3a:0e:2b:0d:cc:
e8:40:7f:16:0a:dc:f0:c7:03:b3:4d:42:fa:8c:32:
e7:25:e4:13:01:38:06:5a:f3:ec:07:57:7d:36:a9:
36:ee:08:63:99:c5:f4:e2:bf:7f:76:77:e3:53:32:
4a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FB:2A:C2:D9:28:D0:80:28:FB:25:D1:0C:3F:20:62:6E:71:91:F0
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/__sqwtko0IAo-yXRDD8gYm5xkfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.252.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:c3:8f:e9:5a:12:f4:48:2e:38:60:f4:0a:f1:ef:59:b2:c9:
2b:d5:75:98:99:c3:14:d9:6b:c2:06:b6:c0:eb:02:61:4b:88:
a9:e2:e8:b4:11:d2:bb:21:45:b0:b7:69:6d:dd:c4:5f:9b:32:
a4:01:c7:c5:57:f1:1a:82:ff:65:a1:f7:ba:7e:40:f0:1b:40:
53:0d:b7:18:1b:d1:8a:e9:42:be:db:dd:ec:90:16:b2:0f:5e:
42:5d:e2:65:3c:54:05:84:d6:dc:45:a2:0c:47:fc:99:a3:07:
16:35:a9:7d:3a:fe:88:8f:9f:ff:c8:84:63:1b:bc:16:9a:c2:
a2:e9:50:3e:77:e8:20:8f:bc:22:1e:b2:80:74:f4:be:26:cd:
8a:81:c7:fc:aa:d4:e6:cc:7f:75:42:11:27:0a:b4:da:bb:d6:
01:5f:96:f0:e8:f2:5b:81:70:4e:d3:62:56:34:ba:56:9f:ae:
e4:2d:bd:7f:43:f2:54:43:af:d3:75:67:b2:6a:c6:39:a5:e3:
c6:c9:44:06:b7:05:24:1a:ea:fe:52:3e:fd:c4:31:a2:50:66:
2c:71:0a:fe:df:f5:31:a7:2e:ae:56:62:82:2c:e8:0c:87:8e:
8a:e9:e6:56:5d:c1:29:74:d3:55:c0:72:2f:fe:b0:fa:db:95:
f0:22:80:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:23 2024 by rpki-client on console-ams.rpki-client.org