Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/100QpVtMiO6Z5KsCvgZ9CDz8TIo.roa
File: 100QpVtMiO6Z5KsCvgZ9CDz8TIo.roa (raw, json)
Hash identifier: paWilDlxMPTcGVFeQuYAfJ51v6RNlLCYfm68/FwvzrY=
Subject key identifier: D7:4D:10:A5:5B:4C:88:EE:99:E4:AB:02:BE:06:7D:08:3C:FC:4C:8A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FDB0986E3A7C4ED70A6BD96A23751
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/100QpVtMiO6Z5KsCvgZ9CDz8TIo.roa
Signing time: Sun 01 Jan 2023 21:14:44 +0000
ROA not before: Sun 01 Jan 2023 21:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.9.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:db:09:86:e3:a7:c4:ed:70:a6:bd:96:a2:37:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d74d10a55b4c88ee99e4ab02be067d083cfc4c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a3:0b:f2:63:11:a7:61:1d:6f:da:36:56:5d:
04:52:6d:73:4e:cf:ef:9d:e9:34:56:6f:63:aa:0d:
32:eb:7f:9a:56:82:fe:f1:57:e8:ce:ed:9c:78:dc:
e8:a3:4b:67:c0:06:9c:d0:22:fa:0f:70:bd:9d:04:
14:b6:c9:5d:63:f9:26:1c:d3:64:1b:e5:3b:4c:9f:
cb:56:28:3f:b7:aa:1c:82:a6:72:15:9c:a2:90:f8:
0a:51:51:91:bb:cc:33:55:7f:0a:50:37:da:de:b2:
63:f6:41:17:76:fc:93:ea:a7:85:f1:aa:d0:8e:f9:
79:49:a5:da:ae:a2:03:a4:58:8f:64:97:76:11:fb:
bf:68:fd:f3:24:3e:f0:18:ff:29:a9:5e:a9:e9:78:
fe:2d:49:fa:32:03:38:5f:3d:81:da:63:52:9f:c9:
76:2b:ff:36:88:68:77:d2:e3:cc:f7:36:36:7a:f7:
22:9e:fd:85:5e:7e:c7:6e:dc:fb:54:b5:81:9e:7c:
6c:8b:2c:71:77:01:6c:30:ca:cb:71:f8:f8:43:66:
48:90:78:0c:3d:24:02:84:48:dc:89:a1:47:b4:d5:
39:dd:75:1f:97:1d:f9:36:1e:a2:cb:62:15:04:0d:
74:e2:3c:00:08:41:9f:3c:c0:e7:61:c5:cf:f5:30:
50:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4D:10:A5:5B:4C:88:EE:99:E4:AB:02:BE:06:7D:08:3C:FC:4C:8A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/100QpVtMiO6Z5KsCvgZ9CDz8TIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:3f:e2:5a:7a:b7:bb:09:89:cb:b2:db:a9:3c:5e:9b:29:9b:
b4:1b:73:0c:3f:ed:c2:c1:96:77:e3:8d:ad:92:96:f1:32:5e:
ea:8c:8c:32:e8:16:f7:c7:26:34:5c:9b:a9:fc:12:a1:e7:01:
17:3a:16:e4:93:aa:a7:b6:69:67:50:0f:97:60:f1:d6:47:8a:
48:1f:e7:ed:f8:14:23:a6:06:93:29:eb:56:b2:08:4f:1c:05:
42:bf:d3:7d:cb:f3:aa:aa:32:cc:ea:18:2d:9b:cb:15:43:37:
31:45:37:e0:5a:be:87:51:fb:ce:30:65:d8:18:8c:63:74:9c:
c2:c8:5e:0e:11:ee:d6:86:ed:57:78:14:c4:09:d4:e7:32:55:
d7:7a:d2:3a:c2:ab:cc:61:79:4d:2b:33:db:a2:4a:06:fc:ec:
72:8b:5b:e4:21:55:41:20:8b:84:72:7d:91:03:c3:b5:76:e1:
27:58:8c:eb:fa:17:8c:07:84:a3:ac:f7:a1:3c:af:ea:a5:15:
36:a5:23:9f:1d:7a:85:c0:a4:12:09:0a:39:ea:cf:31:06:2a:
5f:20:c1:18:99:44:81:bf:9b:97:a4:5e:db:60:f3:ff:28:ad:
0d:4e:a0:4a:b9:22:41:df:f1:b6:ca:45:97:26:9b:d6:54:68:
e3:3c:c5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:27 2024 by rpki-client on console-fra.rpki-client.org