Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/CZljSBQDdlofBekccUD_ywqoH0g.roa
File: CZljSBQDdlofBekccUD_ywqoH0g.roa (raw, json)
Hash identifier: nGqr6Mvq4QOp4unlILEhZcygAb9EuwyOKm/HAoSD+ck=
Subject key identifier: 09:99:63:48:14:03:76:5A:1F:05:E9:1C:71:40:FF:CB:0A:A8:1F:48
Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Certificate serial: 018B28C2C86304197C3E1BAEA74F73EF736B
Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/CZljSBQDdlofBekccUD_ywqoH0g.roa
Signing time: Fri 13 Oct 2023 11:18:55 +0000
ROA not before: Fri 13 Oct 2023 11:18:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216154
IP address blocks: 45.10.172.0/23 maxlen: 23
84.252.102.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:c2:c8:63:04:19:7c:3e:1b:ae:a7:4f:73:ef:73:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Validity
Not Before: Oct 13 11:18:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=099963481403765a1f05e91c7140ffcb0aa81f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d7:02:dd:09:2e:34:ee:b6:f8:a2:be:b7:51:
ef:79:85:8b:c9:22:16:86:4b:6f:5f:40:2c:ad:b2:
12:9c:0e:dc:b6:af:60:0e:c4:46:34:c9:fa:d4:fc:
8b:69:36:da:fc:e0:a1:50:2b:f9:16:88:10:04:64:
d7:27:d4:93:29:fe:27:a2:a6:cb:84:d7:fb:01:9a:
02:47:56:b6:2c:1c:46:8a:ec:eb:32:70:1e:67:18:
05:fd:c0:7c:86:de:6f:9f:c0:c9:65:95:c4:66:f3:
48:80:52:5c:27:9b:9c:8e:be:2c:b9:ae:61:67:3e:
e1:50:ad:ad:13:d6:ed:6b:ad:95:c9:c3:fc:37:6c:
aa:f6:14:f6:35:f1:ee:0f:69:94:9e:e9:21:be:57:
12:7d:b9:54:b8:9b:ff:30:55:78:63:9e:0d:1e:90:
c4:79:06:1b:e4:f8:f9:e0:11:a0:63:af:9d:55:e8:
11:6e:d3:4c:a7:3d:19:de:68:a5:03:24:86:e7:7c:
71:ad:01:db:31:dc:58:7e:44:11:d4:5d:4b:a7:82:
0f:fc:02:26:db:07:d2:a0:2f:01:f4:38:d8:b0:e1:
09:41:76:a2:f6:e6:7e:97:15:9d:60:65:32:8e:5b:
7d:6b:62:3f:e5:b6:c4:48:46:fa:a4:3d:34:82:4a:
6a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:99:63:48:14:03:76:5A:1F:05:E9:1C:71:40:FF:CB:0A:A8:1F:48
X509v3 Authority Key Identifier:
keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/CZljSBQDdlofBekccUD_ywqoH0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.172.0/23
84.252.102.0/23
Signature Algorithm: sha256WithRSAEncryption
eb:17:b9:eb:11:ab:4f:4b:16:bc:97:9e:e8:7a:6d:85:65:7a:
82:4f:5a:d9:06:45:5e:fe:2c:32:ac:d2:48:9c:72:4c:38:ed:
a3:71:43:f7:b8:4f:17:1a:df:1f:c3:0b:d3:43:20:41:d1:bb:
b7:5f:63:9a:d5:72:8c:59:85:59:df:a1:e3:8f:db:20:50:3e:
b1:e5:14:79:82:5d:4a:63:ef:4a:68:90:b8:38:ba:4b:41:5c:
ad:6d:39:69:28:bb:1f:05:0a:51:cc:64:d2:5a:8d:c2:0c:79:
1f:39:a6:a0:18:9f:4e:43:67:10:65:39:d1:49:a8:66:a9:63:
67:6d:b8:9b:7d:cc:f1:cd:bd:89:7b:71:fb:a2:23:8e:15:22:
1e:6e:ed:a8:e6:25:32:0c:07:02:96:ef:49:9f:af:64:1e:c0:
df:d5:82:75:82:a9:7c:b5:f8:22:7b:55:56:f1:de:7a:8c:07:
b9:b8:6f:d3:86:15:1d:e8:c1:df:c4:24:5e:f9:e7:09:23:a8:
79:9e:69:56:81:bc:c2:ed:7c:20:72:68:a0:bc:e0:22:f3:60:
78:c5:d6:48:28:57:c2:3c:28:3d:66:40:fb:f6:50:44:7c:7c:
d5:01:dc:fd:f6:86:eb:6f:b8:0e:a7:73:e3:0b:cb:e6:b2:12:
a3:7c:04:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org