Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/13C3mqx3OHv7QqeEvXVFmleE6FQ.roa
File: 13C3mqx3OHv7QqeEvXVFmleE6FQ.roa (raw, json)
Hash identifier: Ud9s9LNVTvqP5tnP4yaMZmXAi+qHU1fTqX3RAIdfVwg=
Subject key identifier: D7:70:B7:9A:AC:77:38:7B:FB:42:A7:84:BD:75:45:9A:57:84:E8:54
Certificate issuer: /CN=b00d3d34f61e484688bfff9cc703755823775998
Certificate serial: 018CCA2A8103640395149671D6193D6714CC
Authority key identifier: B0:0D:3D:34:F6:1E:48:46:88:BF:FF:9C:C7:03:75:58:23:77:59:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sA09NPYeSEaIv_-cxwN1WCN3WZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/13C3mqx3OHv7QqeEvXVFmleE6FQ.roa
Signing time: Tue 02 Jan 2024 12:33:52 +0000
ROA not before: Tue 02 Jan 2024 12:33:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208799
IP address blocks: 45.84.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:81:03:64:03:95:14:96:71:d6:19:3d:67:14:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b00d3d34f61e484688bfff9cc703755823775998
Validity
Not Before: Jan 2 12:33:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d770b79aac77387bfb42a784bd75459a5784e854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ba:d9:06:da:65:4b:c3:b6:57:e8:e6:87:92:
88:41:02:d7:af:5d:9f:38:b6:06:72:c7:e8:e2:f1:
b8:3f:f3:ca:77:5e:30:7d:20:63:99:19:3a:74:ee:
f8:f1:28:98:14:46:da:0d:e2:d5:94:7c:1d:56:8b:
0c:1a:6c:46:82:02:12:e7:46:fa:e8:b8:01:af:3c:
8e:1b:1f:97:40:41:41:12:af:d3:b0:2c:1c:d1:0c:
a3:a8:ec:91:55:04:65:92:6d:13:19:2b:29:9b:cd:
c5:eb:25:48:00:ff:ed:ab:63:5e:0e:b2:f0:06:58:
df:14:1c:68:cd:99:64:64:46:3e:74:4d:4e:9b:d2:
49:94:38:cf:60:9d:cb:07:46:ba:e2:c1:eb:9e:fb:
aa:8b:89:f5:67:f1:e0:51:34:c9:fe:4d:ef:4b:60:
ba:2c:82:51:29:df:0d:d6:21:c3:cf:b2:3a:7b:4a:
c5:5d:22:07:66:d1:72:a4:2a:09:fa:1b:29:92:19:
93:01:fb:0b:82:24:17:22:cb:eb:2b:e6:b3:ae:3a:
e0:14:f4:0c:24:13:5d:15:0c:eb:0c:96:83:15:67:
27:a6:e7:c4:aa:69:59:30:30:70:3a:21:a0:9a:f6:
78:7e:9b:82:a8:bf:0e:bc:4f:54:36:87:a2:0e:1f:
d0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:70:B7:9A:AC:77:38:7B:FB:42:A7:84:BD:75:45:9A:57:84:E8:54
X509v3 Authority Key Identifier:
keyid:B0:0D:3D:34:F6:1E:48:46:88:BF:FF:9C:C7:03:75:58:23:77:59:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sA09NPYeSEaIv_-cxwN1WCN3WZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/13C3mqx3OHv7QqeEvXVFmleE6FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/sA09NPYeSEaIv_-cxwN1WCN3WZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.16.0/22
Signature Algorithm: sha256WithRSAEncryption
e2:4d:45:c2:18:e7:3d:b3:8b:5f:9d:ab:76:53:d6:d2:b3:2a:
c6:e8:0f:e3:c9:28:de:66:2e:7b:52:c2:95:3b:47:5e:ee:7e:
27:e0:f9:48:f4:1f:43:49:31:eb:3c:7f:39:a6:ee:41:d9:a9:
39:36:16:2a:25:6f:72:95:25:ac:23:1c:35:30:9d:43:be:38:
aa:bc:29:0c:cd:b4:95:40:5b:12:99:22:6d:37:c6:7b:f8:be:
c0:50:a9:50:50:0d:40:45:94:f4:0e:98:fe:0c:69:e7:f8:eb:
1e:b9:07:7a:ec:2a:b1:64:01:32:36:f1:bd:e5:e2:f9:cc:17:
00:b0:8d:b8:c8:5b:38:00:30:7c:2d:e6:7a:18:b0:65:27:b1:
d2:64:20:6e:1a:42:14:27:e0:a0:0d:b1:92:dc:57:9b:8a:d5:
41:c8:bf:7c:2e:ab:2d:15:4f:1e:86:c2:c5:d9:f5:2e:5a:28:
78:aa:ec:83:23:12:75:69:15:ee:62:49:f1:b9:d8:c2:a2:72:
58:ba:7a:8b:07:a6:b7:dd:c9:09:ff:9d:96:c1:bb:29:08:ef:
75:49:8a:76:4b:9d:6e:54:72:d8:7f:b2:2f:6b:61:bd:de:05:
3c:ca:85:e7:01:75:6a:71:0c:9b:f8:8b:98:64:da:5b:5d:59:
a4:4d:2c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:16 2025 by rpki-client