Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/kIOqbRZuMFcZitCXo8lk7vPxOcU.roa
File: kIOqbRZuMFcZitCXo8lk7vPxOcU.roa (raw, json)
Hash identifier: +OiDjIseHdrd8fHFkQwDT4TQjFwiBCioxkQeDzQLFPw=
Subject key identifier: 90:83:AA:6D:16:6E:30:57:19:8A:D0:97:A3:C9:64:EE:F3:F1:39:C5
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 018F996465FF06FE2865113224198984AF9E
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/kIOqbRZuMFcZitCXo8lk7vPxOcU.roa
Signing time: Tue 21 May 2024 04:24:04 +0000
ROA not before: Tue 21 May 2024 04:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 45.86.188.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:64:65:ff:06:fe:28:65:11:32:24:19:89:84:af:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: May 21 04:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9083aa6d166e3057198ad097a3c964eef3f139c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:93:e6:49:8d:6a:e4:5f:f9:15:1a:dd:21:a1:
13:a9:8b:9e:f8:28:56:86:eb:47:a3:f9:ee:e1:47:
85:53:ca:4b:12:15:04:01:eb:6d:0d:a1:76:b2:a1:
ff:32:53:1c:1c:c3:13:ba:a6:4f:11:d4:d0:c5:44:
d1:5b:bd:11:7e:5e:dd:e6:e7:d4:ff:b8:34:10:32:
a1:68:36:65:43:35:0d:d5:da:93:b2:19:02:1c:2a:
e8:fc:64:ed:a8:4f:57:f8:32:a9:5e:2d:31:83:d3:
59:3b:7c:5c:61:ba:50:34:ea:82:98:09:08:df:fe:
d5:cf:f9:d3:6e:ac:c8:96:b4:e1:00:05:a5:70:5f:
14:12:45:cf:09:71:b5:93:6e:1e:a8:9e:e7:a2:b5:
f7:7d:80:fb:55:48:6f:b2:d3:da:24:ce:f5:e5:f7:
0f:4d:09:e9:48:6c:4f:10:42:b4:4e:28:c3:ca:da:
fb:85:cd:29:09:ec:d5:2a:72:ee:ef:f1:82:11:62:
0d:f9:c5:db:ed:1d:25:86:7a:d6:9d:08:61:70:a7:
b7:66:e6:62:6c:c9:7d:e3:8c:f2:8c:d0:cc:51:4a:
08:0c:75:35:f5:22:11:5e:86:2d:22:7c:5f:1f:f9:
04:66:23:00:89:8f:58:10:6a:b1:1f:66:0f:e6:c7:
d3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:83:AA:6D:16:6E:30:57:19:8A:D0:97:A3:C9:64:EE:F3:F1:39:C5
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/kIOqbRZuMFcZitCXo8lk7vPxOcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.188.0/23
Signature Algorithm: sha256WithRSAEncryption
54:0d:04:9a:b6:39:b7:72:08:68:ca:2d:1e:8b:eb:87:58:59:
fa:50:fe:14:61:30:6a:30:a5:4e:23:f7:99:d2:77:71:04:fc:
ad:b1:58:23:d1:3b:26:df:0c:0c:b4:09:15:f3:84:0d:a9:f8:
a3:bd:f4:d1:37:c9:79:6d:f2:bc:b0:69:82:9c:65:83:14:d0:
28:f9:66:fe:b3:3b:77:fb:a3:aa:72:91:24:04:e6:9c:d5:17:
c2:b4:74:12:cb:1d:82:2b:98:b9:b1:d2:99:51:fc:e1:b7:a9:
0e:e6:4c:c5:fe:2b:b0:f6:38:db:57:69:fe:46:01:63:78:7f:
9d:66:4c:b8:ef:72:3d:8b:85:20:77:eb:de:e7:1c:48:0c:c6:
29:8e:0b:7c:aa:da:a2:ac:24:64:9e:19:e0:11:2f:37:18:01:
05:fc:bf:e2:39:eb:4b:16:b0:8d:52:84:2c:23:ed:90:97:e9:
92:a4:25:be:62:c0:f5:d3:57:64:3b:a1:e1:f9:1c:bb:95:a7:
a9:6d:54:70:b1:34:8d:c5:c1:1a:07:88:ea:a5:6e:54:a5:f3:
71:34:bb:75:35:e6:e9:0d:69:77:62:8a:10:c0:60:74:18:c0:
e6:19:16:23:54:5f:83:a2:5f:5b:33:b9:a8:d5:0d:98:fe:ba:
ad:94:84:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:55 2025 by rpki-client