Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/9fj5idX4BjD0LtilEIYJ2XWvjJY.roa
File: 9fj5idX4BjD0LtilEIYJ2XWvjJY.roa (raw, json)
Hash identifier: PUfjFikKvboM7ipJNUwjLIVsbEXHtYwQcZU5Wo6N5j4=
Subject key identifier: F5:F8:F9:89:D5:F8:06:30:F4:2E:D8:A5:10:86:09:D9:75:AF:8C:96
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 01856FE6FB629E663663B3E60E161AF628E9
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/9fj5idX4BjD0LtilEIYJ2XWvjJY.roa
Signing time: Mon 02 Jan 2023 00:34:46 +0000
ROA not before: Mon 02 Jan 2023 00:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212301
IP address blocks: 45.67.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 11:41:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e6:fb:62:9e:66:36:63:b3:e6:0e:16:1a:f6:28:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Jan 2 00:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5f8f989d5f80630f42ed8a5108609d975af8c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:34:30:3a:9c:35:1d:a0:81:90:07:98:20:ee:
e1:2c:96:4c:23:cd:1e:d0:60:45:e8:0b:bf:f8:aa:
ac:c1:36:27:68:9d:8d:18:3a:5f:42:96:5e:6d:94:
99:d6:b0:d2:76:6e:9b:5e:87:ea:02:86:9c:49:50:
c6:cd:a0:e1:76:be:76:9b:58:c1:b5:da:1a:96:1a:
62:55:52:00:bb:fc:62:9e:75:2a:36:e2:02:69:ec:
16:ed:24:f0:bc:23:dd:cb:47:3f:cd:ee:b6:b5:65:
ad:de:0a:30:55:c8:d9:fd:88:67:f5:2a:1c:33:9e:
84:e1:db:74:78:f2:34:ba:e2:8f:c1:36:61:eb:94:
fa:70:3b:78:28:72:ec:53:ed:1e:70:48:c8:94:35:
17:2a:3b:5c:9a:26:c0:99:7a:7f:91:e5:da:f2:eb:
fc:d6:b5:8e:02:13:25:9f:ad:e4:44:f7:99:7d:a9:
c1:53:1c:c5:9a:ce:89:be:0d:09:8a:59:bf:67:dd:
89:a6:c8:91:7b:59:ef:82:e3:dc:f8:9f:ed:f6:06:
de:e4:52:e5:d2:c4:bb:ac:43:1e:49:1e:80:cb:46:
f2:f0:ed:ce:ca:7c:ef:54:f1:12:68:08:a0:d5:eb:
a4:28:58:b2:09:18:10:2a:68:9b:87:11:09:ea:6d:
bf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F8:F9:89:D5:F8:06:30:F4:2E:D8:A5:10:86:09:D9:75:AF:8C:96
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/9fj5idX4BjD0LtilEIYJ2XWvjJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.232.0/24
Signature Algorithm: sha256WithRSAEncryption
96:bc:2c:ad:e8:09:2b:cc:6e:04:3f:59:fc:e8:62:05:59:41:
60:a6:c8:18:6a:29:df:95:37:36:e8:98:60:e1:b7:04:69:5d:
a1:c7:9e:bd:39:4c:2f:e9:ee:36:db:e2:30:e5:b5:95:b6:67:
95:7a:9a:31:a9:18:95:01:f2:23:bb:92:76:bf:cb:15:71:e6:
a1:53:65:e3:01:15:95:6a:d2:d0:08:b4:e7:44:bf:8f:1a:9f:
68:fb:2e:a3:67:19:71:dd:92:62:17:c2:97:48:7d:49:fc:b4:
fe:9e:68:70:8f:cc:72:da:de:cb:a1:d5:30:19:fb:e8:2f:e9:
57:5f:ab:b0:30:85:3f:a6:9e:0e:27:9d:32:74:af:ec:d7:c7:
ba:5c:b4:be:c1:5d:28:18:8d:f8:5d:f0:51:db:ff:19:90:e2:
fe:15:7a:04:90:5d:cc:3e:9e:c2:55:8e:9b:2a:52:d7:7b:f1:
09:97:81:bd:c5:c3:98:9b:28:f6:10:cc:b7:e7:e0:a7:e5:67:
3d:4c:13:a2:33:26:27:fb:c8:d5:f5:41:6e:d2:35:77:38:7f:
41:1e:98:ae:a2:1b:4a:9e:ec:25:3a:df:2b:6a:96:ac:87:a9:
44:0e:df:77:9c:bb:ba:e5:a4:53:aa:28:6b:a5:38:cc:a1:69:
d4:e9:65:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:02 2024 by rpki-client on console-ams.rpki-client.org