Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/Q5Iy1oOeoT2dmfIyQcPsjzmpOpo.roa
File: Q5Iy1oOeoT2dmfIyQcPsjzmpOpo.roa (raw, json)
Hash identifier: 7d0OXRJUlmE4zNlikC3c9V3gvfRIQhuUdnU/8/WgyRE=
Subject key identifier: 43:92:32:D6:83:9E:A1:3D:9D:99:F2:32:41:C3:EC:8F:39:A9:3A:9A
Certificate issuer: /CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Certificate serial: 01856FA7068E702D90B7C7D83958862E26FD
Authority key identifier: 3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/Q5Iy1oOeoT2dmfIyQcPsjzmpOpo.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 94.142.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:06:8e:70:2d:90:b7:c7:d8:39:58:86:2e:26:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=439232d6839ea13d9d99f23241c3ec8f39a93a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:a1:c8:45:a0:3a:a2:2e:41:8a:e3:bb:75:
1a:9a:5d:16:e3:8d:88:6d:a2:66:59:2f:72:57:87:
12:aa:d0:1d:67:c5:e7:28:78:cd:c4:19:29:be:38:
1d:8a:72:d5:3a:f2:1c:3e:f8:a5:68:b1:90:73:9e:
ea:ff:0c:8c:80:e5:08:78:cb:a0:c2:f1:74:24:89:
36:40:48:c9:7a:1f:1e:14:e5:2a:69:41:b9:dd:2e:
15:b3:91:00:4f:d6:60:d3:89:ea:0c:f7:87:79:e9:
e3:97:74:d0:5c:ea:ff:b1:a0:db:7a:73:68:14:f1:
81:10:b5:3d:46:c8:c7:97:c1:d4:94:bc:e6:dd:05:
17:b3:3f:bb:29:49:1e:c1:dd:cc:f1:8f:d1:9d:2f:
db:a3:38:88:69:d8:2e:c7:7a:fd:34:bf:f9:4b:bc:
62:64:76:00:ff:e7:71:3b:e7:9a:38:3e:7d:67:c7:
4e:7d:b5:22:32:b9:b5:6f:94:89:20:76:c3:ed:e4:
e8:66:b7:13:4d:9f:bd:32:9f:ab:8a:af:72:0a:69:
79:9c:07:d6:20:77:73:16:c9:26:c3:e7:bc:a4:e5:
af:bd:6c:28:51:22:60:74:b0:0a:12:05:ab:d7:a8:
88:64:45:2a:43:a4:5c:c1:bd:0b:7d:1c:52:0c:77:
c8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:92:32:D6:83:9E:A1:3D:9D:99:F2:32:41:C3:EC:8F:39:A9:3A:9A
X509v3 Authority Key Identifier:
keyid:3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/Q5Iy1oOeoT2dmfIyQcPsjzmpOpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/O5olHl0dO6vkxXnJHrPgrDf3vyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:9f:9a:dc:83:ca:6d:9b:8a:00:18:40:e7:8c:89:b6:ea:10:
b8:d7:85:97:7a:0b:96:6b:e6:40:7b:ab:be:56:c8:1d:2e:31:
b5:b6:22:f1:da:40:98:72:c6:a8:1b:da:eb:ca:04:19:dc:c4:
77:2c:70:e1:23:0f:6e:f4:88:a7:4e:89:2a:0f:42:51:5c:18:
c7:61:34:11:b6:1b:98:4e:88:ff:7d:0c:93:b7:5f:d7:92:ca:
38:30:6b:da:e0:b6:24:06:27:bb:64:91:2b:2c:d8:6d:d0:49:
b2:4f:a0:14:09:79:46:bc:43:e7:a9:53:25:c3:c4:7f:7d:7e:
7f:ba:3f:f9:08:9e:a0:8f:3a:27:96:d5:9b:98:96:dc:ba:70:
53:91:1d:3a:c3:ad:77:05:de:74:f4:cc:c8:2d:b0:b9:26:05:
d0:66:73:be:c9:e0:16:d9:ee:50:f4:f6:3a:08:64:81:65:84:
95:84:1d:cf:fc:65:b8:0e:4d:9f:d2:15:e2:38:eb:9d:5c:96:
47:8f:53:4e:86:c9:a8:d4:07:de:29:a1:15:12:02:e6:40:a7:
51:ed:d3:55:10:3c:95:b0:cf:e2:d8:d2:86:f1:82:84:5c:01:
6c:30:bf:2a:a3:fd:c9:25:29:23:85:32:d2:52:eb:67:68:fc:
43:7e:b6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org