Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/G9UNt31fRtnVTB-H1Y4zcCHIecg.roa
File: G9UNt31fRtnVTB-H1Y4zcCHIecg.roa (raw, json)
Hash identifier: FuNRXPL3peWMGDFeMl2UvaWXoLDXXCY9FMcmPef+mqY=
Subject key identifier: 1B:D5:0D:B7:7D:5F:46:D9:D5:4C:1F:87:D5:8E:33:70:21:C8:79:C8
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0188292B764038747C0D9363DCFA1314CEB2
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/G9UNt31fRtnVTB-H1Y4zcCHIecg.roa
Signing time: Wed 17 May 2023 10:04:54 +0000
ROA not before: Wed 17 May 2023 10:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12695
IP address blocks: 185.113.138.0/23 maxlen: 23
45.151.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 09:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:2b:76:40:38:74:7c:0d:93:63:dc:fa:13:14:ce:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: May 17 10:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bd50db77d5f46d9d54c1f87d58e337021c879c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fe:f9:ff:80:6d:ce:cc:15:45:6b:3a:23:64:
d2:0b:31:6f:35:4e:ff:86:dd:2f:f8:03:c3:bd:86:
66:b6:ab:83:f5:33:e3:27:6e:75:92:a4:b2:f3:4a:
77:39:dc:7f:49:5f:97:28:03:2e:a4:25:f1:2e:85:
da:11:f4:f1:51:55:41:00:ef:e2:bb:07:5e:45:ad:
d3:07:0e:1d:ee:57:97:68:85:1e:54:0c:13:76:3c:
7a:c3:f3:9c:06:e6:16:bc:db:cb:28:c9:87:58:f1:
e6:ea:f7:e0:cc:bd:44:f5:dc:04:47:2e:25:54:ff:
97:76:05:ae:d1:28:75:57:47:b3:ec:78:84:65:bf:
dc:ac:4d:50:eb:5d:bf:5a:32:7a:f1:70:b3:a2:fe:
bc:8c:78:5b:93:1f:06:68:7c:bc:eb:de:9b:0a:3c:
6e:0f:7f:62:16:93:22:e8:4c:51:7a:97:e9:0c:f7:
88:51:08:ed:ae:33:79:14:bc:74:8c:61:35:7b:9f:
47:1b:b2:15:cd:91:ea:46:e6:62:b2:e5:46:4f:6c:
28:97:01:a1:77:6f:52:03:2a:3b:f5:1d:15:a9:30:
86:6b:7d:4b:6b:e4:47:b7:d9:a1:4b:1e:7c:83:f3:
04:12:ac:bb:bb:af:1d:78:83:73:37:e8:7c:bb:9b:
79:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D5:0D:B7:7D:5F:46:D9:D5:4C:1F:87:D5:8E:33:70:21:C8:79:C8
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/G9UNt31fRtnVTB-H1Y4zcCHIecg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.234.0/23
185.113.138.0/23
Signature Algorithm: sha256WithRSAEncryption
93:2e:d2:61:96:9d:be:b4:7f:74:51:20:17:16:58:e4:65:2d:
88:71:cf:3a:2b:a2:ec:31:69:83:a3:fc:88:90:78:cb:4f:f3:
38:ed:9d:2c:64:61:3b:c4:e9:9d:12:4c:cf:bc:ad:43:97:b1:
2a:ba:7c:ee:67:04:e1:5d:a5:25:ad:63:5e:a4:7b:45:fb:56:
09:bb:4c:10:72:7b:4d:a2:86:03:8d:a3:bb:30:7c:71:52:5d:
f6:41:5f:6c:ef:79:4c:9d:3d:c0:3e:63:6c:7e:5a:69:74:5a:
49:bc:e3:8a:c3:48:0f:ec:2e:36:bf:9a:e1:cc:9e:29:70:b5:
98:6e:5b:20:cf:fb:c4:db:d4:52:0b:6b:d6:2b:83:e2:43:cb:
30:2d:08:c0:cb:10:91:9c:4b:17:3d:78:96:c2:fc:9a:e4:ce:
d0:75:d1:42:8d:26:83:8a:9b:64:f3:ee:9b:38:af:ab:2f:f1:
b4:09:8d:2a:a4:d4:23:71:93:3f:03:84:12:a9:3e:57:81:53:
0f:10:ed:32:4f:da:0a:02:cb:7b:7c:0f:b7:e5:1c:bf:31:20:
76:48:a0:87:79:06:fe:36:59:14:f1:e4:0d:09:31:88:e5:cd:
49:3c:9d:f9:04:81:85:d7:df:2e:3f:ad:d0:11:37:c9:1a:f8:
f6:10:b1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org