Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/o9LiLQ8zEC8SZklUk-nHfyB11lg.roa
File: o9LiLQ8zEC8SZklUk-nHfyB11lg.roa (raw, json)
Hash identifier: B1eK2sq7chxeKduIVX9+/tC+xVEiiO2eIjyRDUwvt+4=
Subject key identifier: A3:D2:E2:2D:0F:33:10:2F:12:66:49:54:93:E9:C7:7F:20:75:D6:58
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0188B1B0079C0DA7D8B51D0491523ABFBE9F
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/o9LiLQ8zEC8SZklUk-nHfyB11lg.roa
Signing time: Mon 12 Jun 2023 22:18:03 +0000
ROA not before: Mon 12 Jun 2023 22:18:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 08:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:b0:07:9c:0d:a7:d8:b5:1d:04:91:52:3a:bf:be:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Jun 12 22:18:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3d2e22d0f33102f1266495493e9c77f2075d658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b1:d9:95:98:6c:09:46:49:07:84:07:59:07:
2f:ef:90:31:55:79:13:b8:80:03:c3:6c:a5:7f:7a:
0e:a0:98:1b:d7:23:b6:00:47:b4:86:64:b7:02:95:
96:a2:79:40:a3:c0:f4:10:4b:9a:a4:0a:cb:5b:f8:
f8:13:c3:d6:84:6f:46:a2:05:53:f4:72:2d:bd:4d:
fd:29:64:ab:30:1c:f3:f5:3d:75:5f:67:f1:b8:b9:
cd:ac:3f:bc:4e:98:b4:72:c6:fa:3a:7a:08:54:68:
0e:28:1c:3d:46:b2:0f:08:a9:bf:b4:63:f4:9b:11:
1f:1a:39:ba:e5:ef:dc:61:67:dd:b1:10:7e:10:38:
7b:79:a8:20:81:34:35:e8:7e:e2:85:5b:96:90:ef:
f9:0a:28:97:fc:b6:57:13:f0:e0:58:38:61:fe:e4:
2a:6d:19:1c:fc:ed:64:4e:c9:ea:f4:21:a3:3c:60:
b9:42:ff:8b:fc:2f:55:8c:38:d8:d0:ee:8c:03:61:
ed:4b:f7:7d:c6:8b:74:00:ef:aa:e8:17:2a:6e:54:
9c:87:a5:92:57:ca:d1:95:dd:c6:9d:20:40:eb:ce:
81:ba:cd:43:66:d6:87:92:9a:cb:52:66:83:61:5a:
86:5c:1f:d4:06:f5:2f:ea:3b:fc:7c:23:8d:47:fc:
5c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D2:E2:2D:0F:33:10:2F:12:66:49:54:93:E9:C7:7F:20:75:D6:58
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/o9LiLQ8zEC8SZklUk-nHfyB11lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:7f:7c:47:ce:2b:d9:b6:71:75:1c:7a:d1:cc:af:da:5e:25:
e5:df:05:8c:6f:2c:09:e4:22:6a:ad:6e:9e:1c:4c:55:8a:de:
9a:2b:76:25:9d:0e:ae:72:35:12:d3:f0:29:43:62:95:cd:b2:
fb:5c:ee:40:ec:bf:56:47:5b:b6:07:83:11:c3:c6:b2:db:ae:
cd:c6:30:b9:87:3d:af:2a:1e:c5:b0:be:c4:c2:93:d7:66:56:
b6:0a:1a:6f:2e:ea:a0:c3:f0:83:cc:46:ff:07:c6:0e:b3:e9:
a8:3b:8d:e0:55:00:24:97:04:f4:1a:15:00:b4:c1:e9:17:36:
c3:b9:86:4f:11:75:62:c3:cf:39:c8:0c:d2:8b:7b:e0:b4:db:
e6:94:54:92:ca:91:d6:6a:0e:07:8f:78:90:19:40:98:cf:a0:
23:2e:94:c3:6b:7b:02:1a:51:f9:9c:f3:91:76:6d:b2:30:eb:
f3:42:48:cd:d1:50:2f:02:f1:ab:9b:f6:9f:17:30:4e:7a:02:
f4:58:00:d3:53:20:17:33:ac:cb:1e:93:e0:78:f0:b9:9d:d0:
c6:6d:3a:00:31:77:e5:f5:a7:27:1c:b3:9d:db:5a:0a:af:37:
84:22:0c:ce:b5:73:f1:8b:fe:56:01:24:18:7f:44:e9:9b:3e:
55:17:8b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:30 2024 by rpki-client on console-ams.rpki-client.org