Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Uq-z2talRkMxnJMfKqs4gY2mR24.roa
File: Uq-z2talRkMxnJMfKqs4gY2mR24.roa (raw, json)
Hash identifier: AIZthNODqgm85+GtvaouPOzP3atJqbm2mJ56JO+to0E=
Subject key identifier: 52:AF:B3:DA:D6:A5:46:43:31:9C:93:1F:2A:AB:38:81:8D:A6:47:6E
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE2832C1AB7B82CDD15CAFE446DA7
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Uq-z2talRkMxnJMfKqs4gY2mR24.roa
Signing time: Sun 01 Jan 2023 21:14:47 +0000
ROA not before: Sun 01 Jan 2023 21:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138997
IP address blocks: 45.9.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e2:83:2c:1a:b7:b8:2c:dd:15:ca:fe:44:6d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52afb3dad6a54643319c931f2aab38818da6476e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:79:3f:df:00:e9:69:aa:61:2d:de:65:67:ed:
df:96:99:7c:f2:3c:53:d0:0b:12:c0:05:ac:8e:a4:
42:ca:b4:4f:27:6d:a6:ed:2f:c0:c7:89:6f:27:fc:
3a:5c:b0:8d:36:e5:f5:20:1d:8c:9c:41:35:26:4d:
98:0f:d9:5a:24:8b:a7:98:12:14:f5:cb:48:49:fe:
55:4a:a4:0e:7c:29:a2:27:e6:2c:5e:14:95:a5:c9:
02:1f:0a:dd:00:5a:d9:4b:d5:59:48:c7:d1:01:1d:
94:2d:ef:1d:31:f9:17:29:5e:9f:54:8c:b9:a8:f7:
49:cd:6e:76:73:96:44:a0:10:ff:6e:8e:56:7b:cb:
98:94:b4:cb:d3:ad:4a:62:4d:8f:f2:1c:a9:f7:14:
74:88:f3:52:b4:f4:cb:2c:c6:56:cf:de:06:47:a1:
2e:7c:c5:68:1b:01:e8:18:a0:38:74:f1:b2:25:e1:
a7:5a:0f:b3:4e:f8:e5:a8:59:f7:44:88:5b:c3:65:
92:2c:d8:bb:c1:45:c0:bf:08:df:75:2c:1f:60:59:
af:98:a9:61:35:b6:9f:04:f1:2d:04:48:3f:aa:4b:
3d:47:4b:f5:52:b4:e3:e8:ed:42:af:90:b8:70:e9:
ed:18:35:56:7c:ab:e2:0a:a3:63:1a:6a:d8:4e:62:
70:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AF:B3:DA:D6:A5:46:43:31:9C:93:1F:2A:AB:38:81:8D:A6:47:6E
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Uq-z2talRkMxnJMfKqs4gY2mR24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:9f:e1:8b:1c:e0:83:74:9b:b4:f6:19:6d:f3:10:a5:ec:62:
1d:7e:bc:ee:a7:7e:0e:02:8b:9a:12:b6:61:62:cd:f3:74:ea:
98:9a:58:e7:16:0d:86:57:54:17:87:c5:43:63:4c:70:19:2b:
3f:f0:ac:f8:fc:88:3d:ac:24:e3:82:7a:2a:ad:f5:62:90:63:
69:50:9c:3f:4f:17:f2:35:7e:6c:73:ee:8b:dd:72:f5:ee:fd:
d6:34:42:79:db:7f:5b:b6:74:7c:ae:8f:68:9e:88:b0:fd:45:
4b:13:65:e5:26:a0:d0:43:ac:9b:35:78:64:b4:1b:49:b5:fb:
f5:9e:76:28:3f:6c:ea:86:66:db:d1:41:3a:bb:d4:5e:01:ce:
bf:af:60:4a:82:cd:fe:e0:0a:ec:88:e7:1b:de:fa:53:b3:01:
31:74:26:16:78:7a:46:26:48:d1:3d:03:e2:fb:75:7a:35:c0:
85:25:f5:36:f8:9a:76:f5:01:6a:48:23:07:ee:1f:6b:9a:ab:
92:05:b3:1b:85:35:33:1f:98:e2:02:27:d7:1c:1a:10:8e:cb:
21:9b:9a:3b:5d:dd:9e:c0:d7:52:16:22:ad:f8:72:40:8d:30:
87:d1:79:f7:1e:d0:c1:82:94:1d:ec:56:bb:60:c9:87:1b:1b:
aa:5e:eb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org