Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/ITvYvsPdC-HN3zQmOQTSVTyfBXA.roa
File: ITvYvsPdC-HN3zQmOQTSVTyfBXA.roa (raw, json)
Hash identifier: dTWW5/TxkfferVFnuVPLpT9nL7zB947QpcJUFnj9+Ls=
Subject key identifier: 21:3B:D8:BE:C3:DD:0B:E1:CD:DF:34:26:39:04:D2:55:3C:9F:05:70
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0188B4A52C3DFA2DF894B936A8D59013504C
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/ITvYvsPdC-HN3zQmOQTSVTyfBXA.roa
Signing time: Tue 13 Jun 2023 12:05:03 +0000
ROA not before: Tue 13 Jun 2023 12:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55154
IP address blocks: 45.11.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 14 Aug 2023 23:09:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:a5:2c:3d:fa:2d:f8:94:b9:36:a8:d5:90:13:50:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jun 13 12:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=213bd8bec3dd0be1cddf34263904d2553c9f0570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:97:8e:bb:14:01:91:cf:fc:a4:b7:65:08:70:
6f:c5:22:0a:16:e9:3f:fe:39:c0:04:73:e2:52:49:
87:73:58:18:66:45:1e:71:9f:2f:05:e9:85:d6:10:
1b:44:af:d3:60:97:19:c9:d6:78:73:e2:b4:0d:9a:
6d:01:64:7f:a7:0c:a9:74:1c:26:8c:72:6c:1e:40:
2d:b0:f5:8d:f2:c9:7d:aa:b9:37:63:66:b7:5b:27:
44:4c:15:a3:c6:54:23:4b:32:ee:48:fc:59:31:e6:
d7:e8:c4:06:87:77:36:dd:87:64:88:cc:c3:5c:0b:
ad:26:a5:fc:8f:de:83:b8:aa:e9:ed:6b:80:3a:e1:
b3:b6:69:e5:16:7c:c2:f1:e7:a8:a7:be:2a:d6:51:
53:09:19:51:18:9e:1e:28:2e:66:0d:42:24:9f:cf:
a1:0f:0d:68:a7:43:a3:e4:8b:29:cd:d8:16:5f:87:
ec:c0:dc:de:2a:13:84:36:d2:53:a9:fc:d2:2b:01:
5f:5a:0f:1f:ac:09:c5:e4:7e:25:23:c4:8f:b8:39:
e2:2f:fb:25:25:16:0d:47:b1:c0:52:4d:0c:ad:20:
c7:20:68:38:28:b0:f2:19:77:8b:41:71:bf:4f:89:
51:5a:11:2a:4a:41:6c:cc:4f:e4:5d:63:a0:7a:1e:
b5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3B:D8:BE:C3:DD:0B:E1:CD:DF:34:26:39:04:D2:55:3C:9F:05:70
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/ITvYvsPdC-HN3zQmOQTSVTyfBXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:85:b7:95:33:1b:1b:c3:26:0b:f4:ef:d0:36:c8:3d:93:21:
44:23:a8:22:90:a1:b3:40:c8:82:43:10:ed:ca:92:10:10:bf:
66:e4:3b:60:8e:95:4c:46:db:15:45:b5:a7:b1:e4:eb:8a:75:
aa:44:c7:31:27:42:81:0c:66:71:15:11:83:1b:bc:87:4c:39:
56:ad:48:ed:04:12:d7:51:40:5a:1f:4f:b7:33:c6:2b:8f:c0:
86:dd:f6:56:e1:c5:ce:a7:85:51:40:40:85:87:ad:f6:63:ea:
c4:18:4a:23:da:9e:cc:2d:ef:ad:de:1f:8c:13:91:86:cc:c0:
e3:da:0b:d9:99:8b:5d:e8:05:37:14:01:95:d0:6a:af:32:f7:
93:79:04:5a:88:85:ae:34:db:f2:6b:7e:bb:7c:76:1b:01:53:
ad:f5:29:72:04:84:20:4d:16:b4:85:f9:2a:84:23:2a:96:a9:
fb:18:2e:c0:8b:8a:80:a5:62:29:98:c9:e6:7a:fd:0e:7f:42:
60:a9:50:2a:c2:99:f6:6f:3a:e5:2a:b7:fb:83:9c:8c:98:c6:
61:22:04:48:57:eb:16:4b:47:39:b1:d8:38:f8:44:d2:92:bd:
12:81:a5:d5:c1:c7:2b:0f:48:6d:e7:6c:ce:eb:ba:1d:60:d5:
25:e3:69:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org