Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/CQ1gZ5Lgb8x-B2-f-DcY0fIt1ks.roa
File: CQ1gZ5Lgb8x-B2-f-DcY0fIt1ks.roa (raw, json)
Hash identifier: 0Sf36x2C69ugFGPn1/afpDy6nSMkbEx5X/Hcasj5aXA=
Subject key identifier: 09:0D:60:67:92:E0:6F:CC:7E:07:6F:9F:F8:37:18:D1:F2:2D:D6:4B
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CF8B32B79D837BE167C6F102C6A481598
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/CQ1gZ5Lgb8x-B2-f-DcY0fIt1ks.roa
Signing time: Thu 11 Jan 2024 13:25:40 +0000
ROA not before: Thu 11 Jan 2024 13:25:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 45.144.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 18:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f8:b3:2b:79:d8:37:be:16:7c:6f:10:2c:6a:48:15:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 11 13:25:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=090d606792e06fcc7e076f9ff83718d1f22dd64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6e:c5:af:57:f2:29:a4:a4:fc:32:5a:92:47:
6f:72:c4:f2:6b:c4:4e:47:0c:2a:7f:4f:20:97:35:
d7:a1:5e:e1:74:66:36:2e:57:c4:39:2c:82:5f:f2:
b0:bc:85:1d:7e:9e:40:be:56:5f:61:e4:8a:63:3c:
67:04:b6:1a:d2:5c:8f:5e:d8:43:cd:c4:a1:8f:3e:
cd:10:28:f6:36:c1:0e:25:21:4f:e8:8a:8e:87:2b:
c8:b7:a7:79:8a:b1:e5:eb:5b:66:3c:80:f3:11:9d:
fc:3a:1a:b0:be:f9:f6:03:21:58:82:c5:cd:90:d2:
d1:07:4a:3f:86:c6:fc:17:90:1c:dc:a0:62:61:8c:
dd:81:5e:3a:c1:27:ec:19:5d:69:88:55:08:82:06:
a0:fb:78:a3:13:d3:9e:69:55:00:5f:c2:9c:0e:9e:
e6:1e:c1:15:1c:5d:df:68:77:ea:7d:d4:19:9e:75:
49:3b:22:6e:27:ed:9d:ce:d6:74:89:53:69:15:b3:
40:6c:f9:af:30:6f:49:63:b6:9d:72:28:5a:36:70:
bb:90:3c:80:01:92:7f:89:9c:ab:8e:f3:18:2b:11:
7a:af:76:81:c3:f0:29:27:9c:59:60:25:fc:6d:2c:
1c:1f:38:36:a5:a0:80:30:49:9d:ad:13:84:d0:ea:
f2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0D:60:67:92:E0:6F:CC:7E:07:6F:9F:F8:37:18:D1:F2:2D:D6:4B
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/CQ1gZ5Lgb8x-B2-f-DcY0fIt1ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.214.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:5d:b5:40:f8:7c:4c:eb:52:6d:e2:1e:72:5f:55:66:98:ad:
45:18:73:08:62:61:47:d6:97:8c:49:4a:7d:28:0f:a3:e7:1f:
ef:3e:a9:2a:91:d8:3e:97:c7:0e:7f:77:56:50:63:9a:23:1b:
9a:e3:84:95:a6:05:b7:8e:16:ce:2f:25:45:a5:90:60:78:30:
b1:d9:1c:32:d3:37:55:7b:44:f5:9d:0c:65:29:58:e6:8c:8a:
28:3e:28:7f:fa:ef:d6:5b:03:14:de:3e:31:49:d6:12:1a:15:
89:0b:04:f4:0f:f6:47:b7:c7:8c:10:31:0b:2e:b3:07:20:a5:
cd:6c:48:f8:e4:54:96:ec:24:29:b9:85:de:f7:a8:4e:d3:e4:
03:76:fb:4d:e5:d6:8a:84:45:d2:c2:d2:5f:0b:a8:b5:54:c4:
39:f8:94:ab:6e:53:32:69:96:09:33:c6:f0:d1:2d:a9:fc:38:
54:0f:03:ee:19:1b:03:9d:20:08:c9:eb:99:2f:46:cb:de:c8:
b9:13:de:8e:65:93:c3:23:2f:2e:e6:e0:5e:33:84:34:34:67:
0c:f0:41:a8:9b:d7:39:e1:2a:b1:a0:b2:c7:49:1e:5c:11:cf:
22:88:79:99:a5:a6:dd:57:21:5e:7a:02:51:fe:ee:ea:10:21:
cb:2d:d3:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:30 2024 by rpki-client on console-ams.rpki-client.org