Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/nndognJ2KBV4W1KiOBie8P-1TH8.roa
File: nndognJ2KBV4W1KiOBie8P-1TH8.roa (raw, json)
Hash identifier: owGBX1I47JQjrac1ncBUCAL6Va716NW2ysY/KwWGQFg=
Subject key identifier: 9E:77:68:82:72:76:28:15:78:5B:52:A2:38:18:9E:F0:FF:B5:4C:7F
Certificate issuer: /CN=58ee47d32a599341f5ff1a88bf142e1538da40ea
Certificate serial: 018570C2EAC7E35CE4C84942E6EE401CEA0A
Authority key identifier: 58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/nndognJ2KBV4W1KiOBie8P-1TH8.roa
Signing time: Mon 02 Jan 2023 04:35:00 +0000
ROA not before: Mon 02 Jan 2023 04:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 45.15.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:ea:c7:e3:5c:e4:c8:49:42:e6:ee:40:1c:ea:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ee47d32a599341f5ff1a88bf142e1538da40ea
Validity
Not Before: Jan 2 04:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e77688272762815785b52a238189ef0ffb54c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:11:4f:70:1a:b3:23:cc:f6:5e:43:34:87:d8:
f8:a8:a1:54:0d:ca:96:83:4b:c0:91:38:25:98:c0:
27:cc:22:da:64:9d:8f:66:f7:26:ee:eb:eb:70:55:
fd:2d:71:0b:85:d2:4c:d1:7a:b7:fc:46:bd:3d:8c:
ae:81:8d:80:45:59:8f:a4:d9:f4:55:2b:5f:50:71:
cf:48:b8:02:ed:ec:45:6c:47:d4:5d:fa:dc:55:e9:
2f:be:69:24:58:f3:30:12:30:95:6e:50:cb:e9:3d:
37:c7:82:8c:f7:35:74:65:a1:6e:d1:20:15:bb:42:
3d:ef:9a:de:ae:2f:97:4f:da:9d:48:7c:26:99:53:
63:35:73:79:c7:db:89:11:b4:b1:9e:2c:c4:32:11:
2b:78:a2:6e:86:a4:01:b1:a3:00:50:9d:32:8a:09:
9d:2e:d1:09:11:ea:46:8e:12:e5:35:16:aa:6c:0e:
e8:44:79:c2:29:10:9c:3b:b3:0f:7c:45:83:81:d9:
a2:d1:9d:fa:14:12:fb:67:fb:5f:01:dd:93:08:4d:
7d:02:c4:a0:c5:3d:46:05:09:28:39:45:d3:e8:f8:
c2:ed:71:b3:14:db:a5:b4:32:db:bd:5e:3e:0f:01:
44:20:ac:23:67:ba:49:b4:ea:19:85:aa:8d:66:33:
d4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:77:68:82:72:76:28:15:78:5B:52:A2:38:18:9E:F0:FF:B5:4C:7F
X509v3 Authority Key Identifier:
keyid:58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/nndognJ2KBV4W1KiOBie8P-1TH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/WO5H0ypZk0H1_xqIvxQuFTjaQOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.4.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:9f:88:24:7e:48:ec:bc:e8:6f:d0:10:cd:75:ea:7f:1c:5f:
ba:8c:75:65:24:cb:e0:e4:20:9d:cc:e1:a1:53:61:e1:1e:36:
a3:6b:ea:d1:05:71:e8:6c:2e:f1:37:de:0e:15:b6:b3:6f:b7:
07:21:67:2b:17:dc:5d:3b:10:09:83:8e:fd:a4:34:20:b5:a7:
7f:c9:6d:b3:3e:fd:5a:99:54:a3:b3:41:99:9b:9c:92:47:8f:
3c:4b:ab:ae:e3:57:df:b4:3e:c9:22:3b:92:55:19:be:6c:24:
e6:09:82:d3:27:4c:29:4b:3c:c2:0c:56:fc:ba:81:fb:e7:4d:
d6:24:df:f7:f0:eb:8a:b0:c0:04:cf:e2:35:9a:03:63:bb:39:
5f:c1:bd:a0:00:7b:c1:bf:1e:fa:0f:a8:cc:33:57:a6:cf:c6:
e8:da:49:88:3e:71:ee:b1:bf:3a:c2:e8:37:94:57:be:a3:d1:
11:1d:66:a5:b7:65:a2:67:f3:fb:2b:95:dd:b2:1a:81:d3:5a:
88:f2:3f:a2:9b:f7:dc:24:4c:cb:bb:c7:4e:b2:c3:11:02:34:
ef:e8:d7:fa:b0:0e:e5:c0:2c:b4:b7:c7:43:3b:06:97:f4:1b:
fc:3b:cf:b7:89:67:af:55:96:dc:45:2e:1c:78:71:f4:a3:8b:
ef:d1:2d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:47 2024 by rpki-client on console-ams.rpki-client.org