Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7q_X1lpCAyFHARCBk2YHeqBoWYg.roa
File: 7q_X1lpCAyFHARCBk2YHeqBoWYg.roa (raw, json)
Hash identifier: 21JO+cLvRw2VdQK+Qi/YY1O4aRHvEGev9Q8vaiZS4FA=
Subject key identifier: EE:AF:D7:D6:5A:42:03:21:47:01:10:81:93:66:07:7A:A0:68:59:88
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018815E44B7DFAEFC26021055906C5193601
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7q_X1lpCAyFHARCBk2YHeqBoWYg.roa
Signing time: Sat 13 May 2023 16:14:23 +0000
ROA not before: Sat 13 May 2023 16:14:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209408
IP address blocks: 45.66.224.0/22 maxlen: 22
2a09:6c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 19 May 2023 05:43:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:15:e4:4b:7d:fa:ef:c2:60:21:05:59:06:c5:19:36:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 13 16:14:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeafd7d65a420321470110819366077aa0685988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:56:4b:45:c4:6c:6c:4e:72:46:2a:1f:c8:f6:
e5:12:15:db:fe:71:1c:ad:05:2e:eb:f7:aa:84:49:
f3:13:09:68:7b:6d:6b:b0:20:8d:0e:f6:ab:0d:40:
b6:8a:99:34:76:fa:66:cf:4d:96:27:a3:37:72:ff:
8e:bc:17:56:ef:66:5f:68:6c:31:54:92:94:50:d2:
2f:ea:84:bc:e4:8c:81:0e:a7:40:04:5d:1a:7e:bc:
7b:f2:eb:e5:f8:9f:f1:e1:48:af:52:2c:6c:22:2c:
9f:e6:1c:4b:36:d6:a4:60:ea:15:5f:1b:f8:4e:18:
66:8f:6f:92:78:6a:53:d7:98:14:39:06:02:d7:88:
82:15:0c:16:a7:44:0d:a6:17:2b:44:7c:58:f3:c8:
0f:3f:fb:87:63:f1:71:6d:85:ac:17:b5:4b:5c:1e:
c0:eb:9f:e9:4a:15:d8:a6:98:66:c8:33:a3:ac:36:
d9:43:f2:88:2e:28:e3:6d:79:46:8c:04:bd:89:c4:
e0:e1:e7:7f:4c:84:06:9f:e6:a6:d9:79:d8:26:7f:
5f:87:26:e9:37:25:bc:6a:83:98:b7:2d:42:05:0b:
54:eb:47:b3:3f:f6:56:c3:e1:49:03:b8:19:3e:41:
6c:a9:b3:6d:bd:80:7d:b6:b9:1f:35:cc:47:a8:c4:
eb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:AF:D7:D6:5A:42:03:21:47:01:10:81:93:66:07:7A:A0:68:59:88
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7q_X1lpCAyFHARCBk2YHeqBoWYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.224.0/22
IPv6:
2a09:6c40::/29
Signature Algorithm: sha256WithRSAEncryption
9b:fd:71:10:33:b9:c9:54:25:22:de:e1:03:fd:bd:7e:db:dd:
e8:4e:ec:31:58:2f:8a:b6:95:0d:32:a5:31:fe:4a:31:76:07:
de:08:1e:78:ac:7e:e6:7d:c2:f3:6c:af:58:4b:01:95:da:06:
d2:89:ca:b8:8f:12:91:f2:2c:75:8e:b1:81:9c:98:e0:f2:94:
4c:95:33:92:96:21:95:2d:c9:8b:33:27:97:76:b9:95:99:30:
69:b1:bc:dc:11:a7:1f:a0:f9:8b:8c:1a:54:fc:47:37:68:f1:
df:bf:68:79:c9:34:c9:b2:e2:f2:02:f6:0d:51:7c:8e:5c:10:
3a:17:62:66:5c:f8:d7:19:65:0a:a0:79:6d:fe:60:7f:db:32:
da:ba:21:3d:c1:f0:da:87:c9:19:71:4e:4e:88:59:d8:ef:a0:
76:65:12:10:2b:31:9b:50:e9:5a:12:be:50:bd:26:78:ea:be:
87:8d:fb:71:3f:36:17:7e:c5:00:9d:41:a5:31:ca:b5:c6:af:
67:0d:8e:b5:e2:46:29:ef:04:91:61:b8:00:a0:4d:0f:2d:84:
be:72:b5:c3:ca:9e:37:23:f8:03:a9:e6:cc:4c:11:9d:b0:7b:
30:a3:71:08:29:a3:15:bf:3a:5d:a7:72:e6:03:a4:fd:48:cb:
36:27:b7:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org