Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/FssnxmWsoG9ql15ZwNGgk4nzZeE.roa
File: FssnxmWsoG9ql15ZwNGgk4nzZeE.roa (raw, json)
Hash identifier: RAyKk5OxdOmwYmemYVO5ZA7Mdjuvl2QyBJnE5a9CADk=
Subject key identifier: 16:CB:27:C6:65:AC:A0:6F:6A:97:5E:59:C0:D1:A0:93:89:F3:65:E1
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018CC5015282B251D53647B01A2D6E2CE92E
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/FssnxmWsoG9ql15ZwNGgk4nzZeE.roa
Signing time: Mon 01 Jan 2024 12:30:47 +0000
ROA not before: Mon 01 Jan 2024 12:30:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200195
IP address blocks: 45.150.66.0/24 maxlen: 32
2a0e:4005::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Apr 2024 14:55:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:52:82:b2:51:d5:36:47:b0:1a:2d:6e:2c:e9:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 12:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16cb27c665aca06f6a975e59c0d1a09389f365e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2d:56:38:93:73:42:a2:5b:90:33:18:f2:cb:
8a:d2:5f:2d:db:04:01:33:dc:98:72:73:2a:44:84:
ed:8a:1e:b0:56:08:28:2b:ff:fc:9b:0b:4d:ac:93:
11:d2:d3:f1:1c:1a:a7:7f:b8:2a:2d:11:8a:4f:de:
8b:c2:a1:61:f4:61:eb:a7:6a:c8:e8:42:0f:cb:50:
a5:bb:7d:75:05:c5:ed:a3:17:0a:43:d8:a8:4e:0a:
af:ac:a2:43:c7:4c:9c:13:69:87:c1:64:04:fd:c7:
ab:d3:4c:32:7f:ac:75:56:c1:21:bc:7a:a3:0d:68:
f7:fd:3d:29:90:f1:f9:fd:9f:07:68:f4:a8:e4:74:
84:f1:57:22:b6:de:72:56:44:e7:74:6c:8d:63:e5:
2b:97:fc:b3:9f:c5:08:1d:3d:78:44:2b:65:7c:4e:
ac:4d:dc:0f:7c:50:25:12:0f:8f:5b:fa:4f:ab:38:
d1:5c:6e:b3:bd:92:c3:e5:64:ff:e8:5f:27:d0:49:
65:f6:6b:fe:27:1f:11:36:fa:9b:7f:f0:f3:99:b8:
72:5b:34:0e:72:ec:d7:81:18:74:84:cb:98:af:b6:
59:ee:3c:62:cf:fd:03:4e:37:29:e6:0b:6a:f1:3a:
d4:48:19:72:84:28:da:94:d2:f3:00:15:48:87:ac:
a7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CB:27:C6:65:AC:A0:6F:6A:97:5E:59:C0:D1:A0:93:89:F3:65:E1
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/FssnxmWsoG9ql15ZwNGgk4nzZeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.66.0/24
IPv6:
2a0e:4005::/32
Signature Algorithm: sha256WithRSAEncryption
ac:05:75:3a:1f:a7:8e:1c:ce:52:89:85:03:18:84:fc:18:86:
82:d7:02:a6:68:b8:9c:44:f2:a1:93:b9:99:b9:1d:d0:66:7b:
87:11:81:37:16:04:1c:47:72:bf:ef:e3:25:ec:2d:12:52:6f:
d3:28:1f:c3:7b:b4:83:c0:9b:77:5d:96:07:9a:f3:85:1c:3d:
66:a2:9f:04:c1:70:d8:e3:54:71:8c:09:88:37:13:52:e8:fe:
78:36:4f:23:8b:70:38:41:54:4f:f7:9b:3d:ba:b2:f2:e6:23:
d1:9e:dd:a1:8a:95:e3:63:cb:b2:4f:26:08:52:67:81:80:97:
bc:d1:16:6f:4c:67:b6:0d:81:5c:a0:23:e5:a0:b9:13:12:e3:
47:51:c4:ba:fc:1d:e3:e4:4d:a6:19:55:a0:8c:b1:e9:c6:e4:
16:da:15:60:c0:27:52:44:4d:c5:14:26:9e:bc:02:8a:70:40:
bd:fc:fb:c9:27:28:ad:f1:54:60:dc:93:a3:cb:9f:da:dd:d0:
29:fd:98:4b:37:40:3d:1f:60:57:d6:7b:69:cc:ab:ca:cc:48:
72:3a:11:c3:12:b3:00:4f:e2:5d:52:ba:1d:63:14:0e:9a:e7:
68:fb:75:67:f5:b6:02:5c:de:27:82:07:19:eb:2f:e4:56:15:
07:39:da:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 16:26:24 2024 by rpki-client on console-ams.rpki-client.org