Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nB25ZnJqVM0-gOnJI9VjsxKkefs.roa
File: nB25ZnJqVM0-gOnJI9VjsxKkefs.roa (raw, json)
Hash identifier: yj7I8omGZqOIMW1Z0wURux9MLquV2V9hqw4W+uPTZvU=
Subject key identifier: 9C:1D:B9:66:72:6A:54:CD:3E:80:E9:C9:23:D5:63:B3:12:A4:79:FB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0189933BF905117849DCDB5489EB64D2BF2D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nB25ZnJqVM0-gOnJI9VjsxKkefs.roa
Signing time: Wed 26 Jul 2023 17:25:28 +0000
ROA not before: Wed 26 Jul 2023 17:25:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207252
IP address blocks: 45.84.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 15:53:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:93:3b:f9:05:11:78:49:dc:db:54:89:eb:64:d2:bf:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 26 17:25:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c1db966726a54cd3e80e9c923d563b312a479fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9d:67:78:47:a4:6a:cb:7f:1a:b9:00:9c:f4:
94:7d:07:fc:7f:52:ad:bb:08:6a:5b:5e:d2:cb:c7:
d0:0e:a0:b5:54:df:1b:21:b8:68:de:b0:68:10:bf:
d7:97:00:45:f2:b6:9a:0b:a3:ff:8d:4c:5a:d1:05:
03:82:8f:58:40:27:b5:d6:7d:42:62:fa:12:77:3a:
c8:55:73:1e:01:3b:d3:6d:83:87:05:4e:b1:54:ee:
7c:7a:d3:32:f3:36:97:94:29:b3:85:73:1b:3f:d4:
33:bc:53:c3:b9:af:44:79:ae:c0:a3:0d:2b:ab:9f:
e8:7e:56:c5:2c:64:31:49:c5:68:3f:a7:ef:9d:c9:
ed:ca:39:51:a5:52:d7:4c:9b:e4:f4:ec:75:79:ce:
4f:97:1e:49:e0:5b:d8:1f:2f:18:ce:cd:7d:91:9c:
a9:fb:87:fb:a4:cc:d9:fe:24:36:31:c5:d0:ae:6b:
47:da:9f:c2:24:cb:96:ab:6e:24:81:af:15:f2:5c:
1a:8a:25:c5:34:14:b4:3d:3d:23:e5:8d:a8:8c:36:
ca:ce:7f:b3:fd:be:c7:50:ba:27:b7:32:f1:84:a2:
c6:e5:55:54:73:5b:a7:5a:63:1e:68:4a:04:ee:14:
5c:59:95:51:80:27:a8:ec:28:05:08:65:0f:94:c7:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1D:B9:66:72:6A:54:CD:3E:80:E9:C9:23:D5:63:B3:12:A4:79:FB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nB25ZnJqVM0-gOnJI9VjsxKkefs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f5:8c:f7:77:c1:45:3e:68:30:8a:18:80:7f:45:ad:d4:f2:
89:41:97:b2:9d:ae:c6:49:24:49:8e:1b:e2:1d:f3:ee:a6:33:
a9:c3:45:a9:af:9a:67:02:63:4f:f7:f3:07:f3:4e:a0:cf:e4:
11:f6:62:ea:da:0a:76:54:98:fa:ac:8e:35:56:c3:d9:2b:ac:
a0:f5:cb:5d:cb:b8:e1:ce:e0:2d:f5:b8:b6:86:e1:e7:ea:f2:
aa:1f:bc:b0:f7:25:f9:f3:f6:5a:e8:ab:53:56:98:ed:91:b9:
bb:fe:d5:4c:e5:b6:72:9b:ab:3f:b6:d6:f3:c7:10:e5:0d:b8:
33:b4:e1:25:d5:e6:6d:25:78:bb:ee:c7:28:33:d6:7b:99:d5:
3e:8c:9e:98:62:01:9e:6d:17:c1:df:d1:23:f9:20:2c:42:dd:
3f:a8:6b:b7:40:65:a1:3b:5b:c4:08:bb:69:0a:f0:e2:b5:65:
44:f6:ae:f5:2b:6b:6c:cc:79:ce:f8:2a:4e:fe:01:07:7f:43:
5d:c9:cd:87:37:ec:f0:5f:22:ee:a7:ca:46:f9:79:26:b6:ae:
4d:6e:78:1b:f6:76:39:a5:ca:77:7e:d0:5a:b1:58:5e:af:cb:
a9:7a:15:66:33:da:b6:a5:cb:55:a9:dc:f8:6a:0a:36:0a:c6:
6d:22:6b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org