Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/UritdThQMGm235eu5Rzq4M_F0Z0.roa
File: UritdThQMGm235eu5Rzq4M_F0Z0.roa (raw, json)
Hash identifier: RJw/dQg2UBYniwiaFWYrBPDNVk6YTBfImEjkG3+eKok=
Subject key identifier: 52:B8:AD:75:38:50:30:69:B6:DF:97:AE:E5:1C:EA:E0:CF:C5:D1:9D
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 01906E8AF75DCB601B2792DE51530F10D24B
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/UritdThQMGm235eu5Rzq4M_F0Z0.roa
Signing time: Mon 01 Jul 2024 13:45:19 +0000
ROA not before: Mon 01 Jul 2024 13:45:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196695
IP address blocks: 45.147.3.0/24 maxlen: 24
91.200.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 17:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:8a:f7:5d:cb:60:1b:27:92:de:51:53:0f:10:d2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Jul 1 13:45:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52b8ad7538503069b6df97aee51ceae0cfc5d19d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:da:0f:28:2c:ab:46:8d:a2:67:f2:80:f8:4d:
db:b4:8c:e3:c8:4f:c8:e0:9a:97:1c:19:47:e3:5d:
62:16:d9:b9:10:8f:61:2c:d2:91:e3:80:16:fe:ed:
40:30:1c:fe:13:f8:47:bb:b0:4f:74:92:be:da:24:
a6:d2:50:45:58:82:c3:12:dd:14:9a:f9:f2:a5:d7:
48:0b:10:ce:37:79:ed:71:15:e9:9e:ce:ff:8f:e5:
21:e5:f8:06:9e:00:d4:97:05:fb:6d:f2:30:61:56:
0c:9e:ab:c6:08:fa:b8:fd:a8:e2:31:97:99:74:b4:
b7:be:7b:ea:d1:4e:ae:17:d8:52:1d:10:d1:7a:09:
8b:ac:cd:b7:93:45:0e:cd:f7:8c:45:72:60:02:39:
87:53:79:a1:09:17:5e:06:64:e2:5f:ec:6b:36:b9:
c3:6e:3e:6e:5b:59:3b:2d:07:26:d5:b2:2a:a2:ae:
e9:20:d4:cb:e3:85:32:a5:ea:e1:d1:4b:cf:80:19:
ea:39:28:0e:66:0c:13:0b:f0:1b:30:17:d8:37:3f:
95:3c:22:4c:ca:58:6b:4f:5f:32:a6:cd:aa:63:e2:
1b:3e:65:b4:b7:a0:4d:3b:a5:32:a7:98:58:26:d0:
72:cc:6e:f5:3b:87:c7:c3:f8:2c:16:35:14:25:d1:
1b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B8:AD:75:38:50:30:69:B6:DF:97:AE:E5:1C:EA:E0:CF:C5:D1:9D
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/UritdThQMGm235eu5Rzq4M_F0Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.3.0/24
91.200.146.0/24
Signature Algorithm: sha256WithRSAEncryption
48:36:83:40:40:5b:4f:22:e3:f7:50:9a:16:5c:e2:02:70:30:
76:52:b1:fb:3f:7c:53:25:9e:a0:e0:b9:4e:b2:20:e6:30:ce:
1a:5a:ef:ca:cc:35:d1:fa:03:d5:b3:8c:71:64:e8:1f:9f:7f:
0e:f7:ea:43:6d:7a:e1:64:0a:8b:e2:a2:36:da:54:ef:7f:9e:
d7:c9:74:36:be:a3:93:b0:9b:96:d0:5d:a5:e7:46:c8:81:c3:
43:76:93:5b:ca:e3:53:91:eb:d4:70:0c:0a:57:75:1e:25:5d:
d3:e6:b3:94:4b:e6:74:09:2c:b5:51:9d:8e:ff:75:f9:eb:c3:
f7:df:63:bd:4c:7f:79:e3:ff:0a:42:ab:f2:1e:ae:99:c8:e0:
52:c0:ea:fd:f7:ea:75:66:b3:48:a8:5c:53:51:cf:c0:7e:13:
7d:5b:d7:f8:67:66:04:b3:78:2e:ee:be:0f:92:34:a4:9d:95:
4d:dd:1f:b7:e1:35:3b:c2:d1:42:5a:ef:1a:19:73:c8:49:6a:
9c:bf:27:81:eb:00:97:8a:53:fa:72:ad:5d:21:e0:ae:8e:b5:
00:69:8b:c3:93:c0:f4:c9:4d:52:00:af:f9:57:e9:02:6f:b6:
2e:c5:ca:51:54:ae:72:53:15:38:08:2a:cb:f5:84:4e:20:3f:
e8:a6:b3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 19:38:44 2024 by rpki-client on console-fra.rpki-client.org