Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Z3NOU4gjK_o0rnVWhFV6pXWmfCc.roa
File: Z3NOU4gjK_o0rnVWhFV6pXWmfCc.roa (raw, json)
Hash identifier: fE6inkWiKFD1qwOR56brxCGlnhChTojNaynB8HUGdeE=
Subject key identifier: 67:73:4E:53:88:23:2B:FA:34:AE:75:56:84:55:7A:A5:75:A6:7C:27
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0190A75C2E4CA67B70A1DA07EA3D4738048D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Z3NOU4gjK_o0rnVWhFV6pXWmfCc.roa
Signing time: Fri 12 Jul 2024 14:32:34 +0000
ROA not before: Fri 12 Jul 2024 14:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 45.90.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 14:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a7:5c:2e:4c:a6:7b:70:a1:da:07:ea:3d:47:38:04:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 12 14:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67734e5388232bfa34ae755684557aa575a67c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:a5:32:41:6c:9d:e9:7b:ba:cd:e2:45:05:
ac:39:cf:e3:02:d8:bc:62:1d:0a:fc:39:87:4f:ce:
2c:37:a0:19:79:f4:24:4e:43:2f:ec:a2:de:56:e8:
2b:30:e4:34:5e:1f:29:10:4c:1b:3a:fd:ab:74:86:
76:c5:20:b0:b4:85:81:01:ef:ec:ac:34:43:02:3c:
80:e3:97:dc:46:cc:df:fd:a6:e4:54:c8:d4:e5:6a:
e6:de:0e:5f:26:a0:c4:c3:b7:da:24:6e:22:ec:11:
8f:c0:26:f7:e2:48:8e:f6:93:00:6b:c5:c7:ac:45:
2f:b3:b7:d3:6e:44:a3:07:45:9e:6d:7a:4e:47:b0:
0e:fc:75:67:c8:2e:0b:10:58:06:3c:d9:ab:8d:f3:
84:21:9e:64:3d:fc:a8:9e:81:1a:e0:ff:af:9f:7d:
26:30:e0:5c:4c:40:a8:f5:cf:36:6a:22:a4:f1:d0:
ce:95:c6:f0:ba:40:71:ab:31:47:97:d0:0c:23:ae:
12:45:70:2d:7a:50:85:9d:03:90:36:8f:73:7e:43:
37:26:1f:b7:ce:e5:58:71:40:57:78:e9:69:df:09:
31:a4:c4:8a:b2:31:b9:77:a1:70:44:1e:cb:bd:14:
72:59:88:dc:18:91:60:ac:2c:53:0e:6a:a2:a6:8a:
de:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:73:4E:53:88:23:2B:FA:34:AE:75:56:84:55:7A:A5:75:A6:7C:27
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Z3NOU4gjK_o0rnVWhFV6pXWmfCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:93:11:f5:06:a2:df:84:17:82:f2:5c:a3:16:97:ba:4f:2f:
4b:c6:90:f1:d4:2d:dd:31:18:8b:c0:03:d2:7b:ef:45:e3:49:
e3:e2:83:13:f0:ba:44:c5:36:dd:ee:4a:b2:26:11:c3:20:86:
98:9c:ef:41:8d:fe:f0:3b:9e:14:da:f0:d9:eb:99:50:ff:e9:
b3:a1:50:11:dd:29:3d:34:98:90:2f:2b:8a:f4:51:96:3f:a3:
a8:22:e9:2a:8a:00:24:a0:65:f6:a2:fe:63:e6:4d:e4:bb:14:
b1:ea:81:04:c5:ca:88:f3:e2:50:28:57:8c:73:a8:2f:4a:36:
7f:7c:95:7b:e0:1f:2a:f6:0a:99:7e:e5:5c:79:10:fc:7b:ee:
eb:a4:86:5d:65:1b:91:ec:e9:11:83:2d:b1:bc:ca:75:00:5f:
b2:5e:83:0d:f5:5f:24:de:0d:d8:f5:9d:41:e1:bf:58:b7:7e:
cc:c0:cc:bc:a1:e9:95:24:31:e4:90:88:b2:91:a1:5f:30:da:
70:1d:a8:a0:a7:01:ca:9f:ed:a5:35:8a:69:d9:0c:83:0f:e2:
9a:ca:b2:ad:82:6f:5a:0f:d2:29:99:36:7d:eb:85:6e:35:a2:
1d:8d:23:2e:02:e4:66:b6:31:db:4c:bd:ef:b3:e6:e1:bb:60:
0d:e4:7d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 19:54:08 2024 by rpki-client on console-fra.rpki-client.org