Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/nY-sfvzeO75JoJ3eev9eq2EH-_c.roa
File: nY-sfvzeO75JoJ3eev9eq2EH-_c.roa (raw, json)
Hash identifier: jsd3kUGuLs7Qu5+Yzy4cqX7cU29sXGKtucfEV9sOHJo=
Subject key identifier: 9D:8F:AC:7E:FC:DE:3B:BE:49:A0:9D:DE:7A:FF:5E:AB:61:07:FB:F7
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0187E51873B5A6EB5621A44A92E814935AF0
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/nY-sfvzeO75JoJ3eev9eq2EH-_c.roa
Signing time: Thu 04 May 2023 04:49:57 +0000
ROA not before: Thu 04 May 2023 04:49:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59651
IP address blocks: 45.155.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 04:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e5:18:73:b5:a6:eb:56:21:a4:4a:92:e8:14:93:5a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: May 4 04:49:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d8fac7efcde3bbe49a09dde7aff5eab6107fbf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:44:74:a1:d1:7a:d0:21:f8:14:e2:3a:02:76:
f4:cc:6b:07:60:eb:89:db:d3:2c:60:2f:79:cc:16:
40:6e:30:42:7b:4b:aa:ab:fc:10:05:f4:dc:06:5d:
07:be:27:fb:bc:32:99:8c:e2:95:48:6c:9d:bb:5c:
70:aa:84:31:0a:39:8a:b7:21:24:f4:cf:23:e1:67:
db:75:05:dc:ea:76:a0:1a:5c:4f:a9:82:c0:a6:e0:
fc:d9:ae:73:a3:a1:83:f8:e6:2f:20:64:fb:54:e4:
ff:58:68:7b:f8:36:af:8d:93:de:80:11:b9:0f:5e:
2f:1e:1f:6a:9c:95:1a:cd:6b:3d:0a:e5:de:e8:1a:
14:9d:4f:6a:07:35:95:a6:4b:e6:12:e9:e2:fa:45:
08:63:bf:45:36:b4:50:48:b7:0b:02:e2:71:0c:e8:
08:a0:af:a8:a8:02:a1:96:f6:4e:8a:c8:19:75:df:
a5:df:21:c7:2d:ca:74:2b:a1:06:3e:83:a5:c6:a2:
30:95:5e:11:db:8f:cd:31:29:94:38:90:0a:25:fb:
6c:af:40:15:1b:9d:b1:a1:32:fe:90:37:fb:56:6e:
95:36:52:56:44:e2:d9:04:6b:73:7a:9d:ba:2b:4a:
ed:e0:6c:c6:fc:a8:60:83:03:04:ca:d9:a2:03:25:
7d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8F:AC:7E:FC:DE:3B:BE:49:A0:9D:DE:7A:FF:5E:AB:61:07:FB:F7
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/nY-sfvzeO75JoJ3eev9eq2EH-_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.165.0/24
Signature Algorithm: sha256WithRSAEncryption
78:d9:6a:6f:fd:79:0c:7f:9c:88:16:cb:2a:81:de:9d:f9:2b:
00:d7:d6:85:d3:27:12:6e:1d:6b:4d:89:ac:67:94:f9:a1:d7:
26:1d:7d:eb:0c:c6:3b:88:07:70:08:e4:8e:65:be:c3:63:4c:
07:69:b5:aa:d8:f8:0a:07:6d:c4:c6:32:7e:e4:1b:bc:33:0a:
f3:56:f6:92:2e:e2:4b:56:9e:fb:c6:2f:c6:14:9d:0c:9f:d8:
2d:e4:d0:59:31:cc:df:b9:93:58:0e:bf:81:46:98:d7:82:ab:
9e:e5:25:b8:49:29:57:4a:85:d3:72:ef:d6:b1:4c:ee:0b:62:
e3:cd:d4:f2:c3:d1:a1:c2:1e:20:a1:13:f7:3b:b3:a3:49:60:
49:ab:d9:3f:f1:a4:8a:e9:3e:1f:cc:6a:a5:2d:2e:a0:29:02:
af:e5:c0:0e:3a:0b:7a:3b:de:9d:27:61:d0:ed:f6:e8:d8:58:
c5:ca:5e:9d:70:99:f2:b1:4b:d3:c1:22:5f:4c:44:9e:43:69:
ca:36:28:de:f8:19:d5:e9:97:d8:54:92:7d:db:59:fa:69:ab:
93:0f:61:c4:3b:09:6c:dc:4a:d2:06:24:d6:f1:54:7a:73:38:
f4:a6:e1:d4:ef:4d:7d:3b:99:bf:da:5e:15:c1:88:e4:f6:b0:
e2:46:90:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org