Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1O-NyN_IWcQmKL1U50Hw2JOluSg.roa
File: 1O-NyN_IWcQmKL1U50Hw2JOluSg.roa (raw, json)
Hash identifier: 0HyRkwljec33OVusSfy1h1m+eowme2PlJHDprE22tFo=
Subject key identifier: D4:EF:8D:C8:DF:C8:59:C4:26:28:BD:54:E7:41:F0:D8:93:A5:B9:28
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0188009475676EA6FB101154C0FA600FE5E0
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1O-NyN_IWcQmKL1U50Hw2JOluSg.roa
Signing time: Tue 09 May 2023 12:55:09 +0000
ROA not before: Tue 09 May 2023 12:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205007
IP address blocks: 193.57.139.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:94:75:67:6e:a6:fb:10:11:54:c0:fa:60:0f:e5:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: May 9 12:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4ef8dc8dfc859c42628bd54e741f0d893a5b928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c8:b4:42:ed:8b:8b:55:3f:8f:39:5f:cb:33:
67:15:0c:f9:e7:7b:fb:1c:13:a5:59:31:f9:03:f0:
21:50:97:e0:a4:89:27:c0:8d:09:25:92:47:06:70:
c8:27:d9:57:d9:c0:fd:af:3e:37:f7:dc:04:aa:41:
cb:aa:23:14:7a:96:c9:1e:14:a3:03:ec:17:fb:3c:
82:8a:77:e6:e5:98:59:7a:20:82:08:58:17:58:1d:
5a:e5:89:16:52:7a:cf:63:99:b1:85:20:40:13:97:
e5:7a:99:8b:89:6f:7c:46:6b:a7:77:6c:76:83:b8:
32:54:a6:1e:ec:f8:35:6b:7e:56:b7:d3:ee:2a:ab:
36:c5:71:58:ef:15:c9:58:1d:a4:e1:6d:c6:32:49:
f9:ed:23:67:46:a5:74:8a:62:37:af:e5:b1:19:af:
38:e8:28:52:93:04:33:bf:35:fe:64:52:a5:0c:28:
71:ed:bf:d2:8a:04:1b:c5:cc:2c:3e:fb:a1:87:f9:
5e:79:89:0a:fc:3a:94:f6:fe:a0:22:ed:90:85:a8:
3d:e8:55:0e:06:e1:84:d8:6d:f4:26:10:00:26:ec:
25:7a:c1:d7:d2:78:15:97:70:b9:68:eb:36:a4:ec:
b7:56:0f:55:7e:ec:4c:b1:40:79:c5:30:46:21:e9:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EF:8D:C8:DF:C8:59:C4:26:28:BD:54:E7:41:F0:D8:93:A5:B9:28
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1O-NyN_IWcQmKL1U50Hw2JOluSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.55.0/24
193.57.139.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:6e:7e:94:a9:94:47:7f:cd:68:18:44:d3:14:89:37:97:74:
73:e7:b1:e9:9d:9d:e3:5c:b1:f6:03:3a:f1:3a:cf:8d:49:5b:
cd:60:f4:3e:b6:64:3e:d3:ad:94:b1:93:a0:b4:f6:8d:9c:72:
cb:a7:cd:a3:6f:78:d5:85:37:76:27:b0:c1:96:5a:3c:23:6b:
3b:1c:df:34:55:7b:57:a7:ce:25:f5:db:02:3f:93:e6:cb:f0:
3c:4a:05:24:e8:26:70:0e:e7:d0:34:22:40:db:31:fc:a0:b6:
6c:7c:a2:fc:01:21:27:f3:d7:13:24:c2:70:e8:c1:25:83:99:
a8:87:a6:5a:7d:88:e0:b8:c7:6c:dd:b4:2b:2f:0c:fb:b3:c1:
61:aa:52:ea:72:2f:36:84:c9:7e:19:8a:9a:17:8b:18:21:34:
07:ca:84:0b:4c:80:e2:0e:5c:08:42:3c:49:b6:7f:23:1c:d0:
87:46:39:22:20:3f:e1:94:d9:01:1c:27:0f:a0:c2:d3:8c:9f:
bb:fe:d0:ae:97:41:49:49:cd:f3:fc:47:29:c8:2c:40:69:f7:
e7:73:f0:af:a1:fa:44:3d:9e:17:c4:8a:a8:b5:c5:1c:f9:50:
e7:e3:7b:b6:a9:46:d9:97:f6:a5:75:3b:b0:41:8e:a9:e7:28:
1d:92:77:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org