Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/R9emrSY5ADWfa45RkN2EEppF9M4.roa
File: R9emrSY5ADWfa45RkN2EEppF9M4.roa (raw, json)
Hash identifier: mVbrW7SQYlPOBf8NXW8S9vD9yGD+iMNViSOto+Co+o0=
Subject key identifier: 47:D7:A6:AD:26:39:00:35:9F:6B:8E:51:90:DD:84:12:9A:45:F4:CE
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 01856FD50E6F7320FB8BCCC113AB8EAF7E9C
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/R9emrSY5ADWfa45RkN2EEppF9M4.roa
Signing time: Mon 02 Jan 2023 00:15:11 +0000
ROA not before: Mon 02 Jan 2023 00:15:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39421
IP address blocks: 45.157.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 20:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:0e:6f:73:20:fb:8b:cc:c1:13:ab:8e:af:7e:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 2 00:15:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47d7a6ad263900359f6b8e5190dd84129a45f4ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:57:ff:41:ab:bf:6c:2c:75:72:0d:ea:27:bb:
d3:57:36:3c:d7:2b:fd:cd:ca:ef:d0:9c:ea:9b:df:
4e:02:c5:a1:6e:b8:bd:2e:d4:e9:ef:41:77:5a:38:
5d:b9:44:25:f9:5c:12:d3:cb:63:1c:d4:53:d5:50:
aa:9b:ba:7b:13:b8:16:86:14:97:eb:ef:92:4e:10:
87:6f:d2:a7:50:cb:ea:fd:61:90:e5:e9:cc:2e:0a:
db:3b:16:02:bd:ea:e7:4f:e3:4a:a9:06:82:eb:f1:
b9:c9:bd:c6:b5:1d:ac:ad:5e:3e:fd:30:ac:36:f3:
54:ec:0e:79:a1:44:07:95:3d:ef:46:4a:88:65:91:
cd:c8:ba:4a:b3:b0:47:12:be:7c:d3:07:2d:93:c4:
3a:c4:eb:e2:98:29:8c:c7:a5:b2:11:1a:80:ea:56:
7b:67:d0:50:4c:f8:28:de:37:ab:76:3b:38:2b:dd:
02:17:92:4d:c7:d2:82:37:f7:8f:a6:5d:a4:5d:ee:
eb:94:a1:b4:a3:d6:fd:18:a1:fb:dd:c8:d2:42:f2:
54:6e:40:7e:fd:2e:c8:ae:ae:4b:41:ab:74:36:67:
d1:0a:55:53:5a:1c:e9:48:63:21:ca:2c:84:57:d8:
58:dc:44:65:60:6a:d9:38:d7:db:72:01:2d:57:8f:
13:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D7:A6:AD:26:39:00:35:9F:6B:8E:51:90:DD:84:12:9A:45:F4:CE
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/R9emrSY5ADWfa45RkN2EEppF9M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.11.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:a3:34:39:f0:68:6e:d4:86:ac:32:23:af:c4:57:a2:e6:57:
cf:b7:f3:15:f6:a2:ad:62:a7:62:27:59:d1:f9:c3:26:7e:9b:
99:4a:b8:08:49:06:74:11:8f:73:e2:fd:b7:7f:78:80:89:41:
17:d1:77:a6:e5:70:2c:cf:0a:ff:d8:5a:a1:8c:0a:3f:81:3e:
12:6a:b9:46:14:fe:04:e6:6c:71:61:4e:e9:81:58:c0:5c:2e:
41:2a:cd:7f:53:ed:05:f3:b3:3d:35:47:2b:8f:a6:91:72:d8:
eb:65:3a:47:82:8d:87:c4:9c:13:56:87:f8:a6:1b:2b:5a:21:
fb:cf:dc:a1:5e:f2:30:8d:e7:02:c3:f4:79:e0:27:2e:bc:b0:
d7:a5:07:06:cf:c7:c7:46:59:0e:fa:06:4f:85:44:a7:d3:bf:
68:e7:ca:3e:39:49:33:f5:79:06:d1:6d:ae:0f:7e:0c:92:28:
97:55:91:fa:a5:db:dd:4e:19:99:8a:f9:52:0e:e6:90:bf:c3:
b9:3b:f2:6c:3c:8e:18:45:87:a0:bb:9a:48:17:c5:28:1d:f0:
70:ae:c0:83:bc:9d:79:d6:be:cc:c5:54:52:a8:80:6e:7b:be:
44:50:09:55:b5:d0:9b:14:98:38:85:e0:cb:f6:69:a7:d4:ab:
13:ab:34:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:11 2024 by rpki-client on console-ams.rpki-client.org