Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/9-qlvEaIwQVcvYi07WMdnZvhrW4.roa
File: 9-qlvEaIwQVcvYi07WMdnZvhrW4.roa (raw, json)
Hash identifier: WW0N86u41EWRi4OvEZeeZ2vGLI37LdPBZWHUw9nRaP4=
Subject key identifier: F7:EA:A5:BC:46:88:C1:05:5C:BD:88:B4:ED:63:1D:9D:9B:E1:AD:6E
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018582767DA85FDE4F0E7121B45B74775CF3
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/9-qlvEaIwQVcvYi07WMdnZvhrW4.roa
Signing time: Thu 05 Jan 2023 15:04:41 +0000
ROA not before: Thu 05 Jan 2023 15:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41378
IP address blocks: 45.11.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 11:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:76:7d:a8:5f:de:4f:0e:71:21:b4:5b:74:77:5c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jan 5 15:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7eaa5bc4688c1055cbd88b4ed631d9d9be1ad6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:eb:da:2f:bd:22:a5:8d:60:76:02:16:5a:03:
58:05:a5:7a:09:a8:0c:3a:cb:42:9a:0e:e5:c8:12:
d3:1c:1b:15:54:88:fd:34:e0:e6:5e:8b:29:46:5e:
28:4c:2d:26:08:54:b4:99:fc:44:0d:df:09:8b:50:
54:17:a0:e2:df:54:64:e2:aa:88:19:1f:6c:03:49:
be:9a:3a:d8:d8:ba:36:da:87:71:d7:64:ff:e3:dc:
3d:a4:7a:09:37:26:54:8b:ea:48:5b:d5:6c:5a:c1:
ff:59:2f:50:f4:d8:07:0a:7e:a9:d4:68:69:43:30:
b1:be:39:82:c2:49:7a:4e:cc:33:d0:c1:58:bb:39:
b3:9d:dd:1a:87:90:c8:0d:ed:f2:56:0d:8f:5c:2b:
8e:80:1c:38:f5:a7:e2:ba:45:5a:99:85:21:a8:74:
2b:42:03:a2:d0:59:4c:ac:b9:b5:36:90:d7:cc:3b:
bd:2f:3a:5e:6f:4b:e6:09:65:a7:b5:7d:09:2a:90:
dd:13:c2:af:4c:d1:74:96:b1:1e:c5:de:47:b3:df:
1b:13:58:e8:38:7f:8e:aa:4b:8e:ed:cc:38:56:9b:
45:9c:9f:18:ae:b9:24:49:30:77:59:2d:44:64:d5:
93:7a:17:14:89:a3:1c:8a:cb:0b:81:df:ff:52:04:
3f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EA:A5:BC:46:88:C1:05:5C:BD:88:B4:ED:63:1D:9D:9B:E1:AD:6E
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/9-qlvEaIwQVcvYi07WMdnZvhrW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/23
Signature Algorithm: sha256WithRSAEncryption
60:ee:a5:cf:a0:bc:2e:3a:2d:36:a8:0a:ed:a8:63:42:b3:3b:
a9:fe:8c:de:5b:32:01:32:84:02:3e:09:d8:52:9a:c6:83:3f:
25:57:bb:92:3e:7a:16:35:96:d2:58:74:00:85:26:6c:29:c6:
74:b1:73:e3:36:0a:99:4d:b6:eb:71:1c:b7:2e:b4:a7:11:43:
e0:df:d8:4a:8d:44:d7:ab:f6:cf:22:41:cb:4e:43:91:f0:f5:
22:59:85:42:7e:53:8f:69:bc:de:13:78:32:0d:00:96:7a:0d:
e4:bd:ce:02:3b:f8:fa:54:0a:de:e1:dc:e7:94:57:0f:c8:71:
5e:54:d5:03:15:18:86:b4:ab:de:46:4a:28:d5:55:16:c9:60:
02:f6:21:f1:c9:1c:76:57:02:a2:64:41:3f:f3:7d:f5:2e:60:
78:07:2f:74:a4:60:ca:93:7d:2c:ee:07:6b:be:f2:52:5f:db:
41:ee:23:4a:93:27:86:b0:ef:73:bd:25:65:27:dd:e7:88:9a:
f1:93:99:b7:33:ce:bf:1f:c4:81:29:34:7d:dc:a3:5e:b2:f2:
55:d7:3a:1d:5e:5a:ef:6e:92:1d:78:5a:17:f7:34:06:1f:d6:
77:19:d3:dc:0e:4c:f8:48:e0:d7:a0:a7:83:18:68:f8:e1:61:
19:e6:19:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org