Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/4ImJY9fL4jQNSLPioVv83D_zTj0.roa
File: 4ImJY9fL4jQNSLPioVv83D_zTj0.roa (raw, json)
Hash identifier: Dx25KfgTke+6c8MrNkG53Sf1EExTN2GLS+8lST3ULoQ=
Subject key identifier: E0:89:89:63:D7:CB:E2:34:0D:48:B3:E2:A1:5B:FC:DC:3F:F3:4E:3D
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 018CC7948FA1F2D6002F5593B35369C2B5FB
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/4ImJY9fL4jQNSLPioVv83D_zTj0.roa
Signing time: Tue 02 Jan 2024 00:30:51 +0000
ROA not before: Tue 02 Jan 2024 00:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211827
IP address blocks: 45.93.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:8f:a1:f2:d6:00:2f:55:93:b3:53:69:c2:b5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 2 00:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0898963d7cbe2340d48b3e2a15bfcdc3ff34e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5c:73:55:0d:28:57:a4:94:bd:3b:9c:b4:21:
a3:a4:c2:69:22:2d:27:b5:38:78:b7:d3:29:73:f9:
b3:ff:01:82:99:69:d7:fa:70:58:2c:69:d2:ba:27:
c5:e9:09:f1:9e:1f:87:49:3e:5a:8a:a1:e0:62:c5:
f8:91:39:9b:30:73:20:de:a6:44:69:c4:7c:f1:e0:
11:cb:6f:d0:52:04:b3:4a:05:7a:b9:ea:a5:a9:33:
a2:61:96:28:7c:60:b1:b2:4f:27:12:04:f5:54:b2:
8c:7e:ca:a7:5a:01:93:e2:b4:4a:eb:50:a2:8a:76:
aa:6e:78:c2:71:f5:39:2a:c1:40:3a:5b:8d:fb:df:
f5:9b:6d:ff:d3:b5:35:81:58:9f:da:09:20:bf:77:
9e:f4:69:1a:2b:5a:97:39:fb:5d:c0:74:c0:62:a6:
1c:a1:95:5d:63:a7:f7:d5:57:47:86:75:74:3e:47:
ea:d0:d3:c4:c1:3f:5e:08:02:6e:4a:55:e5:e7:98:
09:b1:59:ae:1c:9e:e9:98:9a:6f:07:2b:13:ee:b4:
51:43:d5:5e:19:69:01:98:84:fd:c9:5a:82:30:a0:
bf:6f:b8:8d:b9:ef:f6:55:22:00:b6:63:8d:87:5e:
fa:94:62:7d:a2:ce:a7:20:78:eb:7a:03:19:9a:fc:
f9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:89:89:63:D7:CB:E2:34:0D:48:B3:E2:A1:5B:FC:DC:3F:F3:4E:3D
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/4ImJY9fL4jQNSLPioVv83D_zTj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.149.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:29:3c:98:36:86:c9:a8:da:cd:1b:d4:f4:1a:77:b2:07:d9:
42:8d:2c:41:cf:7f:3a:77:7e:8e:73:af:fa:cc:35:7b:83:3b:
be:3e:5f:21:a2:22:71:2f:7e:20:f5:15:22:e8:39:ba:39:e7:
f0:4d:24:21:42:57:bf:e1:47:95:79:de:44:4d:01:8f:91:43:
a0:b1:49:9d:6f:67:df:a9:47:e2:c5:69:7c:44:e3:f5:7c:39:
be:da:0d:7b:40:7a:fb:1f:65:85:61:d8:0f:bb:07:f7:c0:30:
04:33:d7:66:dc:9b:e5:f3:ab:64:5e:cd:63:7e:f3:80:cd:18:
27:6a:3a:78:22:59:a6:30:67:00:0a:ff:4f:9f:94:cf:97:7a:
aa:4b:88:a0:15:99:34:9d:73:92:96:da:fc:43:c5:ae:13:7a:
cf:bf:f8:d1:03:81:63:ae:31:f6:18:c4:46:62:01:8d:f1:b8:
6a:d2:18:b4:10:3f:ae:21:9f:c7:27:ef:4b:58:7b:94:86:f5:
d5:94:42:ee:13:8b:0b:21:86:89:c6:21:3c:47:23:9f:13:f8:
c9:5a:34:d4:a2:15:f9:dd:3d:c1:d8:79:87:f3:9d:13:5d:23:
82:dd:88:4a:c9:02:02:76:e4:55:1e:29:03:14:3b:5f:12:b5:
78:ca:05:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:41 2024 by rpki-client on console-ams.rpki-client.org