Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/I9PDM3SqWIDckh3PrOw6SzHdpVY.roa
File: I9PDM3SqWIDckh3PrOw6SzHdpVY.roa (raw, json)
Hash identifier: Dv2fQ+oP8S57nNt6XDnfrkAV/o96NEKae+qyib/EXpA=
Subject key identifier: 23:D3:C3:33:74:AA:58:80:DC:92:1D:CF:AC:EC:3A:4B:31:DD:A5:56
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 01879ED218BF9B3A4923ADED0040526238B2
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/I9PDM3SqWIDckh3PrOw6SzHdpVY.roa
Signing time: Thu 20 Apr 2023 13:19:41 +0000
ROA not before: Thu 20 Apr 2023 13:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30848
IP address blocks: 45.131.76.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 12:21:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:d2:18:bf:9b:3a:49:23:ad:ed:00:40:52:62:38:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Apr 20 13:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23d3c33374aa5880dc921dcfacec3a4b31dda556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8f:a2:4a:05:ee:49:ef:c7:80:bc:33:52:e0:
66:5d:b8:8c:11:39:fc:73:9a:b4:f5:29:0c:ef:90:
8c:88:22:12:31:92:80:46:a0:5e:46:03:43:58:ae:
d3:8e:68:76:aa:17:01:cd:22:8d:ba:9c:2f:fd:2c:
d5:4f:3b:6d:71:c1:3d:64:19:a5:79:bc:2a:71:3d:
ae:b0:47:49:0d:8f:cc:67:4b:a5:55:16:fd:a8:23:
2c:90:f0:6c:40:08:0d:3c:7d:0e:38:93:e2:e4:c9:
eb:cb:7f:a1:38:d6:85:1d:c4:61:74:00:6f:ae:b8:
58:cd:9d:5b:1f:89:b4:50:ed:81:35:9e:b5:82:7b:
69:31:48:b1:f2:91:fd:61:d1:5a:bf:0b:81:f9:3a:
50:7e:6c:74:81:30:cc:e6:ae:4d:c7:9e:6e:5a:62:
be:34:cd:0a:3d:f3:eb:89:5a:93:8c:09:91:eb:6d:
3c:a1:28:d6:87:37:5f:fe:23:d6:80:a0:5e:97:9c:
bf:be:9e:60:13:3e:ea:84:22:ed:c3:0b:af:aa:b4:
c0:c7:69:da:1e:d1:6d:40:9d:de:2b:c4:97:e1:56:
f8:8e:c3:2c:66:79:c2:86:94:da:7a:11:30:f0:af:
45:37:3c:36:7e:26:22:dc:6b:60:78:2e:0f:03:7d:
de:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D3:C3:33:74:AA:58:80:DC:92:1D:CF:AC:EC:3A:4B:31:DD:A5:56
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/I9PDM3SqWIDckh3PrOw6SzHdpVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.76.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:a7:b7:65:f9:be:48:68:26:86:13:70:38:2d:e8:84:22:3d:
1f:8c:c5:98:f1:75:d4:80:fb:6f:be:3a:8d:1d:d7:27:45:e7:
15:36:54:d7:cb:5d:ac:4b:b1:4d:85:95:79:53:e3:0d:c3:90:
8b:0b:00:b9:2a:61:7f:04:6f:09:cf:e2:3d:27:6d:23:ff:6d:
24:71:a5:20:c3:d5:f9:ef:07:ca:ca:0f:fa:34:2f:f3:cd:4e:
31:44:04:a1:d0:a3:66:6a:df:1a:48:fb:4a:37:60:d6:54:d2:
a8:e5:6b:79:75:d3:72:1f:92:1b:f7:67:8b:37:ab:44:98:fe:
96:7c:c6:df:8d:c9:91:85:9a:f0:ce:46:86:fe:08:23:f3:d3:
b6:b9:bd:b9:3a:1f:98:60:0d:14:3f:e3:d4:ef:ed:b6:9c:89:
e6:37:f8:9a:80:40:f8:3f:15:d1:41:c1:4b:c7:ac:6c:38:2c:
ed:99:80:f3:04:46:21:19:a5:0a:1f:b2:4b:de:a9:6b:41:78:
b4:05:55:5f:69:26:87:03:cb:ff:71:96:d2:0e:61:9f:4b:17:
8d:cd:15:50:f6:a4:27:66:15:a0:70:f3:06:0a:80:d4:16:d6:
1a:1f:d3:ce:da:85:df:04:b1:1f:5f:d5:65:5c:4f:f5:50:9d:
a2:5f:98:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:29 2024 by rpki-client on console-fra.rpki-client.org