Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/54ff92-221e-4a16-8aef-194e0c651d73/1/uWfI0xRqY4tLmZdX3OWks40QbB4.roa
File: uWfI0xRqY4tLmZdX3OWks40QbB4.roa (raw, json)
Hash identifier: F/8xDEP8Se7BbzLZkLJSRXNnik9OkbEgyc3DaIcjVhY=
Subject key identifier: B9:67:C8:D3:14:6A:63:8B:4B:99:97:57:DC:E5:A4:B3:8D:10:6C:1E
Certificate issuer: /CN=99f0b2c8d7b3ca13c59c53372f25e202c85aadc5
Certificate serial: 0187325A588D8E7C901AB624533350CC998C
Authority key identifier: 99:F0:B2:C8:D7:B3:CA:13:C5:9C:53:37:2F:25:E2:02:C8:5A:AD:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfCyyNezyhPFnFM3LyXiAsharcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/54ff92-221e-4a16-8aef-194e0c651d73/1/uWfI0xRqY4tLmZdX3OWks40QbB4.roa
Signing time: Thu 30 Mar 2023 11:49:54 +0000
ROA not before: Thu 30 Mar 2023 11:49:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209325
IP address blocks: 45.66.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:5a:58:8d:8e:7c:90:1a:b6:24:53:33:50:cc:99:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f0b2c8d7b3ca13c59c53372f25e202c85aadc5
Validity
Not Before: Mar 30 11:49:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b967c8d3146a638b4b999757dce5a4b38d106c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:0d:2e:b6:f2:c3:80:67:dd:49:5b:8b:08:
bc:1b:33:21:58:db:8b:a6:e0:77:6c:34:53:94:57:
43:4b:82:e3:09:10:57:28:ab:59:92:11:03:2c:a6:
27:f8:2d:e7:5e:e6:57:46:65:0b:5a:4c:7c:26:61:
77:2a:6b:04:3a:29:ca:4e:da:71:1a:12:f0:59:dc:
71:43:38:5e:00:65:c7:42:ca:40:77:d2:ba:39:d6:
cf:1d:98:9b:6a:f1:90:66:c2:08:22:b1:3d:ee:f7:
1c:bb:a7:45:ca:36:ca:52:05:f9:51:62:06:8b:19:
1c:b4:6c:d5:13:b1:8d:22:05:30:7b:0d:6f:5b:47:
1b:a7:73:df:0d:92:0f:ce:70:06:92:01:48:27:3e:
c5:3d:20:3d:1b:b7:f6:4a:dc:7e:a5:32:f2:b0:de:
34:e0:cd:6e:e8:33:29:28:a3:55:fe:be:0a:85:79:
34:d9:ff:ac:d2:8e:ff:41:da:55:a2:86:3c:57:cd:
24:c3:90:cc:06:92:15:17:64:3b:c9:06:a9:f0:2d:
25:7d:4f:c1:a4:5c:72:b2:04:ba:4c:30:f0:88:76:
d6:35:d8:67:20:d3:cc:fb:1d:d8:11:d6:cb:52:16:
00:d8:55:1b:48:0c:ef:3b:96:5e:3d:91:b5:56:d1:
77:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:67:C8:D3:14:6A:63:8B:4B:99:97:57:DC:E5:A4:B3:8D:10:6C:1E
X509v3 Authority Key Identifier:
keyid:99:F0:B2:C8:D7:B3:CA:13:C5:9C:53:37:2F:25:E2:02:C8:5A:AD:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfCyyNezyhPFnFM3LyXiAsharcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/54ff92-221e-4a16-8aef-194e0c651d73/1/uWfI0xRqY4tLmZdX3OWks40QbB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/54ff92-221e-4a16-8aef-194e0c651d73/1/mfCyyNezyhPFnFM3LyXiAsharcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.192.0/22
Signature Algorithm: sha256WithRSAEncryption
76:a9:eb:e1:83:f4:e9:6a:9b:4b:7a:10:13:b9:40:71:f7:a5:
f5:c4:5a:1f:bd:4e:c9:fd:b5:ef:a4:7f:ea:13:f9:e4:9d:47:
ff:53:b2:6e:14:0d:98:12:ee:e9:cf:70:e6:58:af:1c:4e:4b:
dd:24:dd:18:a4:84:55:b1:5c:79:1a:13:c3:dd:1a:4c:d3:ca:
e3:3a:d3:6e:57:af:04:73:44:09:73:57:1d:09:9f:33:c7:3e:
19:81:12:db:9e:6b:6a:4f:f1:76:fc:43:76:9b:a3:0f:a5:47:
37:2d:50:ef:41:8c:27:2e:b1:34:a1:9f:9a:9a:1a:24:8b:d0:
9d:27:60:dc:eb:ef:7b:ae:5d:fe:9d:3d:35:b9:2c:31:ff:a9:
03:a9:b7:d4:8c:f6:ce:a5:aa:f2:0a:66:8d:5b:80:c5:49:15:
3a:15:7f:7c:5c:82:a0:86:aa:64:b0:8d:74:c9:79:e1:1b:65:
47:49:ab:6a:6a:4a:f5:6c:4b:2a:eb:d8:1d:e4:b4:6a:c4:28:
f3:fc:7d:5a:44:ea:3b:b9:a0:43:e6:a1:71:87:b9:e2:91:5d:
57:9a:02:56:3d:40:bd:f4:3a:21:41:0a:5d:3b:19:c5:83:84:
e2:a6:a1:07:96:c4:15:ec:89:b4:9e:ac:a4:16:8d:bd:3c:2e:
cf:80:14:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:51 2024 by rpki-client on console-ams.rpki-client.org