Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tZ9pONFRFNLtBgKN8hasChegV0A.roa
File: tZ9pONFRFNLtBgKN8hasChegV0A.roa (raw, json)
Hash identifier: mD7+3MpNJxnkR8u6e8GNj0sAmfjPkx5o3u4Pd8y8EHo=
Subject key identifier: B5:9F:69:38:D1:51:14:D2:ED:06:02:8D:F2:16:AC:0A:17:A0:57:40
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C96B7D20CCB799BAFE27D64B7D36875DF
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tZ9pONFRFNLtBgKN8hasChegV0A.roa
Signing time: Sat 23 Dec 2023 12:47:58 +0000
ROA not before: Sat 23 Dec 2023 12:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142019
IP address blocks: 45.93.17.0/24 maxlen: 24
45.155.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:96:b7:d2:0c:cb:79:9b:af:e2:7d:64:b7:d3:68:75:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 23 12:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b59f6938d15114d2ed06028df216ac0a17a05740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6f:0a:e2:a2:53:0f:ad:51:2b:91:45:bf:73:
f0:3e:c0:6d:1f:05:4a:6a:58:4b:92:af:1f:19:1e:
08:96:36:eb:48:67:a0:db:29:c3:b6:02:33:26:55:
c2:2e:94:48:ef:4f:3b:46:2d:ec:c3:70:cc:ae:dc:
e1:22:24:27:6a:22:27:10:06:0a:e3:d0:91:ad:94:
22:13:e8:af:96:d5:d1:a6:30:93:f4:18:19:e3:01:
63:2d:ed:b7:23:cb:99:40:a2:41:e4:ac:f1:e9:4b:
94:c6:cd:fa:fe:11:96:4f:93:e3:50:95:2d:0b:8e:
d8:6b:17:18:53:72:74:67:2f:66:4f:6e:27:bd:ed:
5f:30:c2:82:cb:fb:ba:25:04:30:c7:8e:51:4d:e3:
62:5c:50:51:fe:26:68:ff:44:38:e5:82:0a:f3:9a:
e1:84:7a:a7:15:7b:b8:21:3f:79:62:ac:f7:7e:f6:
e9:20:04:12:84:cc:76:14:28:d4:d2:7a:b0:42:53:
cd:98:22:15:f1:0e:70:c4:b8:96:f3:b0:3c:db:43:
9e:6d:88:d0:42:08:55:ba:98:cd:81:12:dc:6e:e9:
1f:23:0b:a4:7b:0e:ed:d0:db:9c:e2:fa:00:fb:94:
a7:b3:14:67:e0:4c:96:5c:85:45:00:96:7d:76:37:
ce:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9F:69:38:D1:51:14:D2:ED:06:02:8D:F2:16:AC:0A:17:A0:57:40
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tZ9pONFRFNLtBgKN8hasChegV0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.17.0/24
45.155.225.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:34:5c:47:3b:3c:cb:cf:d6:c8:47:af:88:c4:27:ed:8a:76:
e8:8d:c7:59:d3:40:aa:e8:a3:90:99:15:06:bc:67:ec:fb:e5:
d1:de:ab:c5:00:69:87:84:ab:ea:60:72:b9:95:8f:91:05:50:
b2:c0:33:5b:12:74:7c:38:a2:0a:be:71:29:67:5d:df:e4:d9:
f2:e7:01:48:ac:11:3d:65:54:ba:f8:ac:f0:51:52:d8:a2:08:
8d:10:fd:37:75:b4:98:6a:d9:f8:ff:f7:1a:1c:1e:85:03:d8:
12:05:69:72:79:91:a5:dc:a7:c2:8e:eb:93:79:62:17:95:bd:
fb:83:b3:41:d6:36:8f:91:f7:e5:9a:54:e2:d4:99:06:91:05:
4e:8b:a4:6b:9d:ef:c3:3f:55:65:a3:7d:42:cb:7e:6f:d1:5e:
25:69:ff:07:b4:35:96:c5:a3:a2:77:59:d2:0e:25:6a:7b:be:
67:a3:9e:b4:7d:7c:fa:38:c0:48:38:05:1b:b8:93:1b:0c:86:
14:f4:be:2d:c3:c4:85:4b:60:7e:12:94:63:b0:ac:a6:b1:b8:
49:51:8e:e4:19:85:4b:c4:82:ce:10:3e:c5:37:e3:2b:fe:41:
36:3f:aa:0d:ca:d4:a5:fe:14:28:b3:bf:41:eb:e2:5f:1e:59:
ae:c2:19:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org