Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/IHgUeGFl7Vvv3DS3Z2OplK-_1ho.roa
File: IHgUeGFl7Vvv3DS3Z2OplK-_1ho.roa (raw, json)
Hash identifier: q/cEYJKXq7Z8cHg/TdaNs7ru1nm4CBhS+/BaK6c8Cxo=
Subject key identifier: 20:78:14:78:61:65:ED:5B:EF:DC:34:B7:67:63:A9:94:AF:BF:D6:1A
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01876A924124968BD0CD20BD710489BABB3B
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/IHgUeGFl7Vvv3DS3Z2OplK-_1ho.roa
Signing time: Mon 10 Apr 2023 09:49:42 +0000
ROA not before: Mon 10 Apr 2023 09:49:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 45.94.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:92:41:24:96:8b:d0:cd:20:bd:71:04:89:ba:bb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 10 09:49:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=207814786165ed5befdc34b76763a994afbfd61a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ca:bf:d4:f3:88:36:e7:86:31:a8:c3:14:67:
60:ea:92:30:d9:cf:73:bf:e8:8a:9a:6c:f1:c9:07:
ed:b7:8e:56:3b:ff:d4:07:16:e4:81:4f:fc:a8:fc:
86:55:a4:a6:02:f1:fa:79:ec:16:75:49:bb:0c:ad:
a8:de:26:0f:49:53:31:e7:c8:56:60:5b:6b:be:41:
40:ca:f2:37:87:72:06:d4:c3:5b:52:bc:f1:f2:1a:
8e:7c:8d:cd:eb:d2:8d:4b:bf:b6:65:cd:18:c6:ca:
34:0c:c8:91:c8:4c:8b:3f:e8:62:d2:68:3b:c7:98:
43:0a:e2:28:55:d3:a9:ff:2d:b8:00:a1:77:3c:45:
bd:81:a4:a8:57:a1:05:f4:fc:3d:d2:19:1e:83:0b:
bb:bc:e3:f9:4c:d1:41:01:28:9a:83:00:f7:11:5f:
8a:82:54:33:04:ac:68:03:54:24:59:f3:8b:42:5d:
3d:47:70:82:9d:a0:5d:23:ca:08:ec:f2:6c:db:ee:
b9:c0:86:43:ee:0b:94:7d:c1:b3:f0:55:8f:1d:e8:
2d:5a:cf:79:65:9d:89:76:33:ca:a3:07:07:cc:9c:
1b:a2:a4:42:4b:e4:0e:28:e9:a0:74:2b:d7:b2:d9:
4f:1c:a8:92:c1:27:c3:4f:c9:11:f5:a6:35:bf:4a:
d1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:78:14:78:61:65:ED:5B:EF:DC:34:B7:67:63:A9:94:AF:BF:D6:1A
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/IHgUeGFl7Vvv3DS3Z2OplK-_1ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.170.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:51:84:7f:50:ff:f1:c0:b1:bb:5a:04:45:c5:36:bf:ba:46:
19:7b:c8:8f:08:65:f3:dd:08:0b:9b:f8:bd:ea:30:e9:ff:7f:
5e:28:d4:71:1d:bc:ff:80:35:b6:18:a3:da:d1:db:79:b3:4f:
33:96:42:ea:9e:b2:59:c5:c0:46:aa:af:50:f0:9f:c7:e5:4a:
73:1c:4e:90:e6:db:13:51:8a:ea:34:1d:a2:2a:29:f4:c8:40:
dc:60:63:01:b9:3b:96:b6:2a:42:ec:57:54:f5:f8:96:d8:40:
44:37:ab:81:25:6e:89:21:c8:e3:0b:18:6c:70:7d:f5:8c:12:
30:75:43:30:1d:5c:cd:78:cf:3d:63:27:a7:aa:25:80:6f:44:
c8:de:4d:29:8d:85:69:f7:c8:31:58:25:6d:b5:79:c1:f7:e2:
cf:83:e8:c5:ac:10:f5:72:5a:cd:2e:df:a5:c3:6c:d9:61:aa:
c6:fe:10:e5:b4:7c:02:07:71:8c:2f:69:de:0c:70:39:fd:e5:
4d:b9:13:79:b9:af:15:82:a3:35:e9:d7:33:a0:5f:e4:83:6a:
a3:f0:b3:ca:c1:4a:0b:bb:c8:c7:f5:79:19:4c:86:be:a5:0e:
79:61:74:82:c2:45:9d:fe:89:f3:80:76:9f:e0:25:4c:cd:20:
f3:65:cf:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org