Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/3ObR9ofmIi2KsWbhtPihfiTnI6A.roa
File: 3ObR9ofmIi2KsWbhtPihfiTnI6A.roa (raw, json)
Hash identifier: IqmuW3U7m8189l18oezZvt8sfdfnzm4+9UsGGwYd0wg=
Subject key identifier: DC:E6:D1:F6:87:E6:22:2D:8A:B1:66:E1:B4:F8:A1:7E:24:E7:23:A0
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 019146CAC66B5FD36C909E54A1F1011F3391
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/3ObR9ofmIi2KsWbhtPihfiTnI6A.roa
Signing time: Mon 12 Aug 2024 13:32:59 +0000
ROA not before: Mon 12 Aug 2024 13:32:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47757
IP address blocks: 45.9.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 09:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:ca:c6:6b:5f:d3:6c:90:9e:54:a1:f1:01:1f:33:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Aug 12 13:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dce6d1f687e6222d8ab166e1b4f8a17e24e723a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f7:c4:d3:7d:eb:51:87:49:20:68:ca:3e:82:
14:70:5e:07:29:db:58:05:ef:8b:5d:90:ca:9f:a9:
be:3a:1c:94:67:7a:ff:10:53:29:8c:f1:9f:4a:ae:
52:de:8c:ec:c5:d3:ad:8f:9d:29:aa:b0:6f:91:46:
d3:8a:d6:19:6e:7f:ce:f7:37:6a:07:52:2f:66:82:
38:b3:6c:6a:f1:09:9f:14:17:b4:23:d0:1a:c5:95:
03:6a:a4:2c:8e:c2:83:f7:1c:41:75:d0:ee:15:e3:
c0:15:d0:7e:3b:15:ea:91:d3:d4:f9:87:2d:1c:34:
b0:03:bd:a0:3e:8c:70:e0:96:cc:9f:80:c2:88:44:
13:d8:04:59:9f:d1:ed:89:3e:ae:43:40:79:8f:85:
a6:1b:59:7e:5e:15:5b:a1:01:01:37:96:03:b4:b6:
4f:4c:53:d2:59:d0:8c:a7:18:2a:40:06:3d:02:df:
85:ee:c0:3a:4a:04:d9:c8:dd:cb:a2:da:b4:3a:31:
cd:d3:38:60:7b:89:75:2f:ba:22:87:1d:d7:57:5c:
84:ab:b4:6a:4e:86:0f:40:0f:2d:17:bc:0b:16:bf:
8a:f8:cc:a3:cb:a6:16:00:b5:67:e0:49:42:6b:a8:
3e:ef:6e:b1:e8:82:41:2c:38:84:ed:0e:b9:13:04:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E6:D1:F6:87:E6:22:2D:8A:B1:66:E1:B4:F8:A1:7E:24:E7:23:A0
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/3ObR9ofmIi2KsWbhtPihfiTnI6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.30.0/24
Signature Algorithm: sha256WithRSAEncryption
36:3d:3a:ae:04:19:7e:1a:15:c4:ce:46:35:03:12:95:f2:23:
70:cf:a5:aa:80:c5:52:14:7f:f1:d1:4f:ee:0b:20:ed:b1:1a:
c5:f2:ed:3b:5f:4e:e1:57:19:e8:05:bf:5d:d4:f3:16:c1:db:
7a:7e:6e:15:39:e8:24:02:00:d1:3e:ed:83:e7:4c:fe:7a:a4:
31:e0:5c:56:42:6c:4a:00:36:67:49:48:7f:76:fc:ca:75:64:
0f:80:88:24:f2:fc:a0:ed:a3:43:0b:d3:e9:26:b1:9b:88:cb:
f4:cb:91:9d:a2:29:c4:2e:0e:30:1d:55:6d:b8:05:c9:f4:92:
28:3e:5b:33:d6:69:e8:ca:33:3a:58:db:2a:e1:ba:3e:4b:60:
1d:1b:fc:e1:53:1f:e2:cf:df:f3:5e:86:81:f2:d9:94:d3:09:
bb:25:2b:99:50:1a:7b:27:0d:49:94:33:fc:c4:dd:b6:ff:55:
9c:65:96:5f:89:a1:c0:a2:d9:84:5c:01:88:09:11:53:1a:e8:
64:1e:5f:20:98:02:2d:f5:d2:b7:7d:95:a6:7a:71:b3:6b:c3:
1e:f2:6f:d4:6d:f9:8a:f2:18:33:33:0d:7a:38:a3:26:5a:ea:
7d:9b:99:03:7a:07:38:9a:03:99:ff:22:25:01:ef:c6:3b:54:
9e:f9:0b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 12:59:25 2024 by rpki-client on console-fra.rpki-client.org