Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/K-AqkvZYdG_6Ef9zuto8ryncskg.roa
File: K-AqkvZYdG_6Ef9zuto8ryncskg.roa (raw, json)
Hash identifier: tYBt9WCViTz5cx2wXaZycUHLWguQb11n3R0U9RR3bak=
Subject key identifier: 2B:E0:2A:92:F6:58:74:6F:FA:11:FF:73:BA:DA:3C:AF:29:DC:B2:48
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01865B7BFCE5A71024D442E3FB179C1985F3
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/K-AqkvZYdG_6Ef9zuto8ryncskg.roa
Signing time: Thu 16 Feb 2023 18:28:17 +0000
ROA not before: Thu 16 Feb 2023 18:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201021
IP address blocks: 45.13.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Apr 2023 14:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5b:7b:fc:e5:a7:10:24:d4:42:e3:fb:17:9c:19:85:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Feb 16 18:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2be02a92f658746ffa11ff73bada3caf29dcb248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f8:ab:a3:86:71:cd:8e:38:8f:8c:1a:f0:05:
ff:e8:a5:4c:5b:ad:69:8c:76:a4:29:93:22:ab:b3:
cd:d6:16:ce:e9:8c:ed:b1:6c:34:3a:36:8f:29:1a:
6c:df:16:98:41:13:08:f0:8f:c5:b0:61:c6:7c:ce:
c4:bd:d1:e2:fa:6f:77:80:8e:dc:cc:65:b7:a2:73:
60:69:f2:1e:23:e1:4a:72:50:67:d6:f7:c0:40:e1:
b1:48:3d:80:5e:7f:5d:96:97:8b:bb:3e:2a:4d:43:
5e:dc:ff:20:ac:5e:9a:ef:c5:88:00:53:e6:0f:7e:
11:83:f1:21:12:44:e2:4a:74:80:7f:cf:85:d7:c9:
9e:bb:20:12:85:27:e7:2d:df:8d:2e:9e:26:ad:05:
2a:8d:f6:bd:47:63:9b:42:a8:bc:00:e7:26:78:f2:
48:f4:37:b1:49:67:04:23:7f:6d:8c:3f:22:ac:e3:
ed:00:f7:43:ad:16:b8:ac:ae:e5:e0:5a:1b:26:e6:
a8:0a:c9:d4:c8:81:13:60:3a:6d:36:dc:50:c0:c9:
cc:1c:eb:31:25:54:de:f8:0d:59:43:0a:05:cc:8f:
2b:c2:eb:cc:7b:7b:45:55:72:13:f4:7b:d7:cc:13:
3d:2d:3d:08:96:a0:ac:4e:6f:e4:6c:90:0d:27:16:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E0:2A:92:F6:58:74:6F:FA:11:FF:73:BA:DA:3C:AF:29:DC:B2:48
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/K-AqkvZYdG_6Ef9zuto8ryncskg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.189.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a4:1b:0c:43:ea:92:41:11:4a:11:fb:bb:0f:ff:d8:19:a1:
13:4a:0c:7e:4e:d8:b1:59:0e:31:ec:9c:6a:e2:f9:34:d8:20:
28:b5:83:dc:36:0f:5a:8c:fb:ec:8b:94:23:47:47:36:2c:f3:
95:b7:31:a2:e3:73:ab:98:28:8f:7f:5f:4d:59:53:2c:e7:8b:
51:03:3b:25:fc:fe:91:2d:37:36:90:25:ee:9b:d5:83:1f:2c:
7a:43:ff:6d:35:0e:9e:86:8a:85:4c:95:d8:ce:27:04:ba:87:
8d:08:d5:09:ed:b8:38:9e:7d:05:5b:af:38:cf:d9:9c:54:98:
db:76:66:ac:d3:ca:e6:d5:09:eb:c7:89:e7:0a:9b:dd:31:3a:
15:51:64:cc:15:bc:46:61:19:07:aa:43:3d:47:68:1c:27:a8:
f1:7d:67:49:2c:66:ba:15:b4:1c:67:d7:d1:0d:be:3c:65:2a:
fa:e2:0a:ab:4b:ad:11:f3:10:5f:c7:78:e9:81:d9:4a:63:ce:
54:20:3c:b5:08:ff:15:99:e8:d1:b2:d8:6a:d4:4b:ab:71:39:
c1:ea:02:c3:6c:4d:5c:02:25:ad:7c:7f:75:60:9b:ca:99:a7:
54:e3:01:59:73:75:26:95:1f:75:89:ec:2c:5a:7f:6b:65:c8:
08:fd:7c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org