Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/ufNinm3kDlIWFIhPhOudPold6IE.roa
File: ufNinm3kDlIWFIhPhOudPold6IE.roa (raw, json)
Hash identifier: fPC5qc7wk8d5P9qCZrB4Aqt5ysRbRc11dZqTHz6ofZU=
Subject key identifier: B9:F3:62:9E:6D:E4:0E:52:16:14:88:4F:84:EB:9D:3E:89:5D:E8:81
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 018DFEB0FD2B6A91866D09389A9DD90A499E
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/ufNinm3kDlIWFIhPhOudPold6IE.roa
Signing time: Sat 02 Mar 2024 10:23:48 +0000
ROA not before: Sat 02 Mar 2024 10:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.149.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 19:18:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fe:b0:fd:2b:6a:91:86:6d:09:38:9a:9d:d9:0a:49:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Mar 2 10:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9f3629e6de40e521614884f84eb9d3e895de881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:84:92:7f:cc:72:c4:f3:80:86:ca:0d:f1:
93:83:79:76:a8:d2:c1:db:2c:70:6d:9e:b6:7b:71:
98:92:45:4c:2e:34:cb:2f:fb:76:78:e3:c0:a8:ed:
f0:16:c9:65:17:da:58:83:01:ac:ca:a4:05:cc:83:
22:92:b1:75:f3:52:24:f3:dd:e2:10:2d:d3:83:8d:
df:e0:99:6a:1e:21:80:cc:85:c5:bc:6c:4e:e3:a7:
22:c2:e0:c7:7e:f5:47:99:67:5f:a2:ed:b8:55:de:
69:45:26:55:9d:0d:0e:7f:80:48:f0:9f:6b:f2:ca:
73:c5:6a:a7:c5:1b:a2:35:3e:17:45:ec:43:fd:81:
4e:ef:95:f9:d1:ce:dd:e8:fd:54:38:9d:15:6e:b0:
bc:be:d5:0f:93:45:bd:c7:4c:8f:1a:c9:70:56:20:
0a:87:10:45:75:41:48:32:17:78:e3:2e:fe:61:77:
de:32:7f:9f:0e:16:f6:d7:19:88:80:7b:87:a4:76:
c7:df:0d:08:5b:5d:4d:6a:00:48:73:5b:cc:ba:91:
a3:a3:ce:16:a7:e4:bc:fe:f4:c5:c5:3f:f2:e9:bc:
cf:c7:6f:99:61:50:1d:87:c4:91:fc:7d:98:16:f2:
64:ca:e0:cd:bb:ef:3a:d6:f1:61:57:ff:b1:e2:ac:
51:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F3:62:9E:6D:E4:0E:52:16:14:88:4F:84:EB:9D:3E:89:5D:E8:81
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/ufNinm3kDlIWFIhPhOudPold6IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:fd:b3:37:cd:fd:cb:1b:ed:93:91:85:aa:ea:35:09:43:af:
b6:d8:47:8b:a4:4a:97:35:44:a2:e4:7c:dd:f3:4b:fe:5a:8f:
65:a9:d8:02:f6:72:61:47:fd:c3:d5:f0:45:93:4f:a3:78:5a:
a6:ae:a6:aa:7f:1e:78:50:1b:a2:83:5e:9f:88:fa:af:1b:70:
47:7b:90:f4:c7:70:b7:1b:88:d3:33:9f:ae:5b:6f:df:bf:d0:
b8:aa:8c:ac:5a:a0:90:c6:25:eb:b3:5f:e9:be:18:c3:1d:fc:
6d:ae:80:da:cd:22:d6:5e:00:e0:3c:e6:10:f8:c7:9d:65:a7:
09:bb:49:35:da:06:29:e4:d5:87:2f:45:36:c2:98:f6:ff:cf:
f1:40:51:19:99:b9:07:ee:e5:35:22:ac:3d:00:b3:b9:a3:e7:
41:0f:d2:51:99:da:45:88:09:d5:bf:0c:46:03:f8:4f:a6:a3:
7c:03:03:38:71:ae:87:c3:aa:92:32:4e:b0:45:7f:3a:9e:80:
66:7a:7e:67:5d:33:7f:44:9f:de:04:93:4f:53:be:f6:86:16:
35:c8:34:52:97:c0:20:2a:c8:da:33:06:74:e5:34:3a:42:49:
4c:eb:e9:e6:07:d7:37:68:02:fd:8b:93:94:2e:37:ee:e2:49:
11:b7:27:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 00:24:01 2024 by rpki-client on console-ams.rpki-client.org