Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-Wo5HordlXzTeYC9gaCERfyPMw4.roa
File: 1-Wo5HordlXzTeYC9gaCERfyPMw4.roa (raw, json)
Hash identifier: 5eYw1EoTlX1O79m058wyxK2qM0MhHd0pLLU2uEtXKOk=
Subject key identifier: F9:6A:39:1E:8A:DD:95:7C:D3:79:80:BD:81:A0:84:45:FC:8F:33:0E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BB956FB581AE70AC15714036CA2D6D627
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-Wo5HordlXzTeYC9gaCERfyPMw4.roa
Signing time: Fri 10 Nov 2023 13:06:07 +0000
ROA not before: Fri 10 Nov 2023 13:06:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
194.50.111.0/24 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Nov 2023 07:45:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:56:fb:58:1a:e7:0a:c1:57:14:03:6c:a2:d6:d6:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 10 13:06:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f96a391e8add957cd37980bd81a08445fc8f330e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:5c:64:d3:cd:db:60:32:99:1b:d8:33:c7:
7f:28:c0:a5:fa:8e:6c:16:2c:68:e6:5a:83:27:e3:
d9:8d:ef:9b:79:08:ea:f1:15:7c:57:de:01:25:32:
1b:bd:49:9a:24:ca:c4:25:7a:32:9a:26:07:fc:aa:
5e:5d:d0:fd:0f:af:33:18:f8:b8:24:fa:37:59:59:
f6:bb:6c:12:86:1c:70:74:c1:b5:eb:b6:07:7a:1c:
e6:c6:46:70:32:6f:65:93:4f:22:86:6f:13:36:3f:
b4:f4:75:01:27:0f:cd:d8:17:ba:a0:ec:fb:77:dd:
02:9a:87:26:69:1e:8a:8a:4a:ab:fd:fb:5b:68:aa:
d7:ed:4e:3e:09:20:7e:bb:35:42:a4:18:51:26:5a:
73:0b:dc:2b:31:4c:c1:83:d1:e2:a6:3e:13:59:82:
24:d0:e8:bf:b6:15:83:92:cc:01:d2:9f:31:a4:f2:
42:3c:3f:b9:72:9c:98:65:1a:cd:cd:29:be:cd:04:
fa:19:fb:41:55:fe:54:df:05:6d:9a:cc:6b:7a:8c:
9e:81:36:d3:72:92:af:9c:43:f7:47:b7:9f:1e:4e:
f1:5d:8e:6d:ce:f3:08:7a:4e:67:e2:cb:85:c7:df:
03:db:d2:a9:9f:81:ad:aa:4e:ed:59:81:32:70:76:
ae:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6A:39:1E:8A:DD:95:7C:D3:79:80:BD:81:A0:84:45:FC:8F:33:0E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-Wo5HordlXzTeYC9gaCERfyPMw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
194.50.111.0/24
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
15:04:f0:4f:69:72:e3:cd:6e:d0:4a:f3:03:c1:f9:90:fd:12:
07:7f:a1:18:8b:3d:77:cd:a5:c9:4a:e1:7b:13:61:1c:60:f8:
7e:f1:16:de:f9:7c:49:f5:f4:d7:f1:4a:f7:35:70:6c:4c:27:
94:c3:f6:7a:ca:55:15:27:0e:b2:d8:d8:1c:86:48:33:75:13:
fb:fa:2e:69:4d:90:8e:c5:1a:09:59:63:6b:67:5e:14:76:c4:
4a:98:fe:af:3b:48:a8:dc:c8:08:d9:1a:f1:e1:c7:59:c3:79:
da:73:46:d8:66:f8:1d:02:83:71:0a:53:d5:08:fe:51:90:4e:
26:62:35:d8:79:d9:0b:83:bd:77:ab:f0:5d:47:09:e9:1b:6e:
b5:39:d0:04:c8:2b:46:25:2a:49:1e:4c:6f:b6:50:5b:d4:f7:
a5:7c:de:84:29:11:6f:4d:f7:29:00:0f:45:c9:1e:09:c8:bf:
eb:24:04:8c:70:b7:17:46:ab:58:0a:ac:34:cd:18:f5:30:42:
95:75:9c:80:68:ee:8c:28:5f:55:cd:c1:f5:46:9f:43:70:4f:
bf:1f:7b:a1:27:a4:7d:da:14:9d:bd:37:68:6c:c9:47:b4:74:
a0:5a:b6:f6:ac:88:37:99:4c:6c:0e:ea:68:bc:f6:c2:1b:f8:
ea:23:3d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:51 2024 by rpki-client on console-ams.rpki-client.org