Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UOhFrR5SYwzqVHV8sLGeQj-B-Vo.roa
File: UOhFrR5SYwzqVHV8sLGeQj-B-Vo.roa (raw, json)
Hash identifier: QEIP4HkN8pGHjO7kU2d+Q2EToa0K23IXRcKLUUOevuY=
Subject key identifier: 50:E8:45:AD:1E:52:63:0C:EA:54:75:7C:B0:B1:9E:42:3F:81:F9:5A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018723579AE762595997E67D8F27D379ECC8
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UOhFrR5SYwzqVHV8sLGeQj-B-Vo.roa
Signing time: Mon 27 Mar 2023 13:52:36 +0000
ROA not before: Mon 27 Mar 2023 13:52:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 45.88.14.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Mar 2023 07:46:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:57:9a:e7:62:59:59:97:e6:7d:8f:27:d3:79:ec:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 27 13:52:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50e845ad1e52630cea54757cb0b19e423f81f95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:9a:2f:b1:1f:2f:53:e9:49:26:1e:23:41:
78:34:5d:39:1b:1a:e8:ef:7b:cb:47:ec:e9:5e:c1:
4e:b3:4e:39:6c:85:f5:e7:6c:c0:ae:3f:71:b8:df:
72:24:0b:f5:57:3f:2b:af:45:a0:af:a0:11:d2:b8:
8e:6b:fd:9f:1e:7a:d2:1b:8d:dc:94:c4:b7:1e:e1:
b7:12:b7:38:19:a9:91:c0:46:d4:7b:b1:9e:ed:92:
b9:43:2a:ad:da:1c:00:6a:16:9c:28:75:76:93:fe:
c8:66:43:71:66:ec:b5:5e:7e:88:fa:e0:a1:36:86:
01:6f:4b:6f:9b:06:35:41:cb:53:81:2f:ae:68:8f:
af:96:1e:8e:b5:2e:df:9a:86:92:62:51:2e:2f:48:
4d:4d:0c:59:bc:b4:09:ba:e7:02:8d:f8:24:0c:6a:
69:d1:3a:80:56:7a:01:ce:4f:e3:14:25:25:60:1b:
4f:e6:01:d3:3d:ba:0d:b8:ca:1b:07:b0:d6:c5:9c:
24:da:63:4a:b2:6a:1b:47:f6:cb:1b:74:ed:d8:8e:
30:20:ee:ae:3b:3a:88:3c:ac:fd:b9:3b:c5:41:2e:
c9:c7:06:54:40:47:b6:b5:a9:7f:4d:e8:52:a7:27:
c0:2f:84:d8:82:fb:53:18:03:c2:d3:85:f7:6f:78:
18:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E8:45:AD:1E:52:63:0C:EA:54:75:7C:B0:B1:9E:42:3F:81:F9:5A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UOhFrR5SYwzqVHV8sLGeQj-B-Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
89.45.162.0/24
188.214.107.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:c9:07:df:45:39:03:5e:6a:62:41:d0:07:bd:0b:9f:b4:eb:
10:df:b0:24:33:f8:08:86:58:f6:76:c0:36:14:f2:a8:ea:d9:
55:a9:da:55:1b:a3:22:e4:2a:19:c9:0b:e9:d7:a4:ef:ab:f4:
64:0a:41:fd:21:3d:01:60:ab:d7:a2:9e:d2:32:80:2a:b2:ef:
63:4c:56:71:4f:2b:68:46:78:6d:23:46:0d:98:44:c0:06:67:
ba:c1:e6:4b:68:e2:4a:44:9a:7e:ef:37:53:d6:64:8a:98:bb:
13:42:82:de:d6:3b:16:c3:51:92:3a:28:0d:a5:a2:03:a8:d0:
60:2a:9f:e0:77:00:fc:99:79:cc:43:9f:f6:d6:41:03:1f:53:
4d:37:61:56:00:30:36:d3:b6:07:e0:4b:3a:f9:8e:20:25:e8:
36:ba:e6:42:0f:e3:eb:ff:de:1a:21:7a:a8:dc:c7:97:b8:58:
10:ba:83:5f:d1:da:d5:48:b8:b5:85:aa:cb:94:b7:0e:1b:6d:
ea:d2:eb:d7:23:b3:6b:6c:d0:2b:46:4a:a6:a7:d0:5f:4d:89:
60:e0:f5:dd:3e:9d:12:ff:01:e7:bf:1e:4f:4e:38:8d:7c:8e:
00:73:40:61:24:bf:40:c0:5c:d0:02:ab:0e:c2:3b:98:ba:8a:
4c:88:42:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org