Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/OXRb92q-vHTed2OyyIE5rffKJQk.roa
File: OXRb92q-vHTed2OyyIE5rffKJQk.roa (raw, json)
Hash identifier: xPQQFV1lgT3giOhKbWRfmNhhbqCKNs8C2Vgk0P87OP0=
Subject key identifier: 39:74:5B:F7:6A:BE:BC:74:DE:77:63:B2:C8:81:39:AD:F7:CA:25:09
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018D2D0A62AF353A572DE40E934780B9F671
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/OXRb92q-vHTed2OyyIE5rffKJQk.roa
Signing time: Sun 21 Jan 2024 17:21:11 +0000
ROA not before: Sun 21 Jan 2024 17:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207709
IP address blocks: 45.11.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 12:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2d:0a:62:af:35:3a:57:2d:e4:0e:93:47:80:b9:f6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jan 21 17:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39745bf76abebc74de7763b2c88139adf7ca2509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0e:33:fa:5b:09:aa:dd:91:51:f0:3c:21:52:
6b:b3:0a:7f:df:36:28:d5:20:68:05:35:c4:b7:8f:
06:36:49:2c:d1:eb:e9:6b:32:16:fa:90:14:00:6e:
74:af:2c:57:96:17:b3:c5:41:85:a1:89:45:ad:f6:
94:5e:99:57:0d:25:3a:39:d6:6d:04:76:61:d6:74:
e2:2c:b4:05:ae:e2:0a:1f:c1:3d:1a:6a:f1:3f:e1:
e6:cd:b0:a4:df:9b:bc:76:e6:57:65:f7:02:07:10:
ec:e6:2b:57:7a:75:12:65:f1:fc:c5:a9:0b:dc:23:
bf:66:5d:d9:64:2f:8b:0f:2c:34:1a:82:f3:1b:06:
e3:0b:a8:21:b6:d7:32:b1:a6:03:9e:8a:09:53:a1:
a3:aa:9c:9a:b2:01:92:0c:d0:de:cc:15:ff:01:66:
81:15:4f:71:90:c6:a3:b6:a1:60:ad:ea:0d:b1:66:
c3:24:44:b9:ff:05:fc:c9:f5:ec:a6:94:34:d6:76:
82:a9:cd:8f:e8:08:ba:6b:03:48:ae:c6:a4:f0:af:
d8:01:2d:c7:74:63:d4:af:0e:53:d7:e5:44:ec:da:
9a:76:18:20:70:05:ae:14:55:f1:cf:93:d6:d7:5b:
7b:bd:d1:cd:bf:82:19:b1:0e:67:1d:06:25:ac:b7:
f9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:74:5B:F7:6A:BE:BC:74:DE:77:63:B2:C8:81:39:AD:F7:CA:25:09
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/OXRb92q-vHTed2OyyIE5rffKJQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:96:47:8e:8d:9f:a3:66:a2:85:9f:8e:73:7f:a0:ed:e8:95:
0f:2b:5c:2d:eb:0f:a0:9d:9f:cf:37:c8:87:9f:93:42:0f:57:
f5:49:71:2b:fa:ee:a8:94:2a:d6:69:27:81:19:b4:65:88:61:
ec:51:68:9d:fc:47:56:5b:c8:97:9c:f3:73:5c:b5:ab:1f:cb:
2f:91:f7:e3:9d:b4:a3:96:0c:9d:b8:f0:4f:59:c5:31:60:d4:
e7:b7:aa:01:7c:fe:d3:2e:74:53:c7:1c:4a:49:67:f5:7f:24:
3c:46:fe:85:8b:25:a4:f8:fa:d7:9f:49:f4:c3:4a:d4:46:76:
80:67:64:3a:4f:11:74:81:cd:aa:4e:bf:db:b5:bc:2b:ec:3e:
91:6a:49:51:a0:ec:04:6b:6c:b8:9b:67:32:6d:04:e2:08:47:
1d:a9:0b:9d:ca:b0:c6:f5:fc:66:42:82:67:14:af:69:7f:c4:
35:37:c9:41:f0:cf:d6:6d:00:ca:54:d3:fb:70:b0:03:a9:f7:
0a:c4:db:33:49:c4:03:05:06:25:4f:b9:df:d3:1d:76:69:3d:
50:c9:1e:34:d3:08:0c:61:a2:44:21:a7:61:a1:7a:a1:7a:b9:
13:b8:95:9e:79:15:84:72:a7:42:70:f7:b2:88:5b:c6:c4:b9:
8e:b3:e5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org