Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OUNcChxY81ETkp0TBB900M3fP4Y.roa
File: OUNcChxY81ETkp0TBB900M3fP4Y.roa (raw, json)
Hash identifier: f9Zo6N38MoMEq/GNiRD6MRTnW1goc93kDqbgY9wY/Sg=
Subject key identifier: 39:43:5C:0A:1C:58:F3:51:13:92:9D:13:04:1F:74:D0:CD:DF:3F:86
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0188B86FA5F0250320BACAE182F26D2F6896
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OUNcChxY81ETkp0TBB900M3fP4Y.roa
Signing time: Wed 14 Jun 2023 05:45:04 +0000
ROA not before: Wed 14 Jun 2023 05:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 45.65.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 08:20:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:6f:a5:f0:25:03:20:ba:ca:e1:82:f2:6d:2f:68:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 14 05:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39435c0a1c58f35113929d13041f74d0cddf3f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e2:86:05:4a:81:93:a4:fc:2c:1c:20:03:85:
39:79:da:f6:8e:87:e3:d1:bb:bc:eb:74:a1:2c:cc:
4e:c0:8e:73:cf:d1:51:ff:bc:87:84:26:2e:b5:18:
92:74:d3:55:bb:13:5c:d4:29:98:a9:f9:f1:17:72:
f6:37:e1:e4:16:1b:34:d5:c3:f9:44:51:0d:96:48:
d7:22:51:6c:e2:b5:ed:a0:aa:6f:f3:f5:ea:f8:f9:
b1:cb:d8:bb:4f:19:30:d3:9c:31:03:bb:f3:c2:e9:
c2:2a:7a:a3:65:fa:94:39:61:61:c3:ad:3c:4c:48:
d7:22:e5:67:14:ba:54:68:df:92:20:71:9c:64:9f:
55:8a:80:ef:7a:ce:1c:56:54:73:42:69:d2:5d:56:
6b:dd:fb:93:d7:61:e0:4d:b9:3f:ea:e2:0e:8e:b9:
c5:db:40:7c:34:d6:06:9d:09:fe:f2:a4:93:45:ec:
5a:b4:92:00:2b:09:e0:1b:a7:3c:30:8a:03:08:be:
7b:b1:6a:28:e1:45:84:49:4d:9d:4f:17:a1:55:f6:
d8:2f:19:e4:47:b5:f7:66:47:44:59:d3:31:5c:0c:
ae:4a:5f:b4:9f:bf:d1:d3:19:42:ab:cb:3f:10:c5:
4c:4b:7d:6d:bc:d4:74:ba:ba:98:eb:64:b9:05:59:
c2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:43:5C:0A:1C:58:F3:51:13:92:9D:13:04:1F:74:D0:CD:DF:3F:86
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OUNcChxY81ETkp0TBB900M3fP4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.112.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:b6:d9:1a:00:53:e3:e4:93:5e:e2:73:aa:8d:6e:78:d3:d6:
d5:08:d9:89:0b:fe:74:59:88:d4:67:f4:0d:52:84:0c:1e:8b:
2d:14:93:26:39:36:a7:09:51:4f:84:ef:31:3c:a4:c7:1d:97:
53:3e:c4:25:54:f6:24:2c:c0:45:57:16:d0:a6:47:d9:c1:52:
ff:75:fb:18:d2:a4:40:15:f2:6f:63:f8:67:e1:64:8d:f6:2f:
09:4e:a7:e4:28:3a:cf:e3:86:1d:82:4f:5f:dc:26:ac:3b:18:
d0:3c:8a:6d:5a:b7:e4:6e:69:fe:35:7a:94:e6:9d:28:b0:8f:
ae:3f:e9:fb:48:35:37:52:9b:50:1c:eb:ef:20:44:f4:df:40:
39:bc:ec:96:d8:b4:e2:42:bd:dc:57:6b:31:0e:63:a1:c2:c6:
62:cf:a0:4c:67:5e:39:c0:51:b1:5c:84:86:26:f0:15:34:7c:
82:73:81:12:a1:0c:19:99:dc:7b:e4:d7:37:bc:22:55:be:1f:
f4:f3:9a:bf:1e:82:5d:da:83:e6:32:a6:2a:a8:29:19:f5:19:
ea:0d:19:5a:e9:7a:34:04:b5:a3:cc:8f:fa:17:15:e1:22:08:
22:d6:94:ee:93:0e:1f:a8:4d:86:00:ab:d4:8d:05:4e:fc:f5:
6d:67:2e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org