Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/5b3ffe-9f9d-4189-a8ca-084aaba0f588/1/cqNQZdIRrqvEZfKVib5vDQ34q5I.roa
File: cqNQZdIRrqvEZfKVib5vDQ34q5I.roa (raw, json)
Hash identifier: xE4sosizF/dl3V/maA29ovqOaYznV6qSZWoAnYXoW5U=
Subject key identifier: 72:A3:50:65:D2:11:AE:AB:C4:65:F2:95:89:BE:6F:0D:0D:F8:AB:92
Certificate issuer: /CN=2b69c92bc09bf6b8da6533dd7a7b0b1a57e65ea4
Certificate serial: 018571A796EBF5EAE2221C6420590F26AEDE
Authority key identifier: 2B:69:C9:2B:C0:9B:F6:B8:DA:65:33:DD:7A:7B:0B:1A:57:E6:5E:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2nJK8Cb9rjaZTPdensLGlfmXqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/5b3ffe-9f9d-4189-a8ca-084aaba0f588/1/cqNQZdIRrqvEZfKVib5vDQ34q5I.roa
Signing time: Mon 02 Jan 2023 08:44:46 +0000
ROA not before: Mon 02 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.93.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:96:eb:f5:ea:e2:22:1c:64:20:59:0f:26:ae:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b69c92bc09bf6b8da6533dd7a7b0b1a57e65ea4
Validity
Not Before: Jan 2 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72a35065d211aeabc465f29589be6f0d0df8ab92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6c:34:74:9f:c2:32:c2:33:e2:44:75:02:ef:
a8:5d:4f:1f:e8:5d:e6:c8:e1:09:3d:3e:b7:7b:e1:
cb:d6:76:b4:22:ea:3a:c8:fd:53:1c:7f:e9:dc:af:
c5:6f:77:ed:ed:4d:53:cd:1d:52:29:98:22:39:65:
97:05:95:8a:c2:14:a9:6a:3d:b7:c9:31:d4:c7:e7:
8b:e2:f0:7b:f3:d3:bf:d7:28:d9:43:4f:73:93:44:
75:54:53:79:ba:bd:20:c2:93:c0:09:39:ab:50:34:
c2:86:93:fe:45:f1:b6:a3:c6:14:f1:26:b3:8e:3d:
2a:f4:d5:50:42:80:6f:c0:ad:fe:fc:4f:8c:e2:b6:
1d:af:aa:c1:89:ff:73:1c:7b:e7:1c:de:d6:09:a8:
ca:5c:93:d9:1d:1b:85:6f:a4:2c:45:10:68:5c:b7:
55:ed:48:d1:98:01:fa:73:6c:65:3d:32:2c:f9:93:
4f:1b:b0:41:a5:f6:c5:7e:09:90:71:b2:6a:30:ba:
bf:3b:3b:88:93:e9:06:33:99:b0:d8:19:0a:89:56:
47:44:46:76:2a:b0:1e:bc:90:c1:23:9c:25:6b:d0:
c6:47:10:8a:62:81:fe:e6:a5:3d:30:20:f4:59:90:
bb:61:e8:8b:93:95:f7:1b:19:0f:e5:2f:e0:b5:eb:
1b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A3:50:65:D2:11:AE:AB:C4:65:F2:95:89:BE:6F:0D:0D:F8:AB:92
X509v3 Authority Key Identifier:
keyid:2B:69:C9:2B:C0:9B:F6:B8:DA:65:33:DD:7A:7B:0B:1A:57:E6:5E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2nJK8Cb9rjaZTPdensLGlfmXqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5b3ffe-9f9d-4189-a8ca-084aaba0f588/1/cqNQZdIRrqvEZfKVib5vDQ34q5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5b3ffe-9f9d-4189-a8ca-084aaba0f588/1/K2nJK8Cb9rjaZTPdensLGlfmXqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.188.0/24
Signature Algorithm: sha256WithRSAEncryption
88:d0:95:d5:54:96:12:6f:8d:03:e9:26:7c:64:ed:a4:97:56:
4a:55:c1:7f:91:f3:7b:90:7d:31:c7:ab:c8:a6:5c:76:9b:f8:
b1:7f:2a:95:39:36:3f:a2:17:60:b3:e7:9f:54:3c:e0:37:42:
ac:2c:7b:48:36:68:b7:e6:ec:73:1e:43:b6:70:de:4c:e1:a9:
52:f9:33:ec:23:b4:d9:bd:49:e1:4a:b9:7d:ef:1c:98:e9:6e:
70:f8:8b:91:d6:dd:ca:d8:91:66:c3:59:ea:17:7d:df:03:18:
6d:c9:81:7b:cb:16:3c:4c:b5:59:4c:01:d9:ed:ff:f0:65:c9:
dc:13:cf:15:39:73:76:b6:54:e3:74:95:ac:2b:1c:b2:18:2e:
fb:c7:21:24:36:0d:32:0d:4b:3f:ef:95:15:64:15:56:10:b0:
e0:00:75:15:41:02:85:3c:c1:c2:ba:ea:d1:16:2e:36:ac:f3:
c3:6b:34:61:27:00:51:3e:7c:0f:4b:4c:9f:1c:70:7d:a5:e1:
83:00:d8:f3:5d:a3:18:27:de:36:b4:da:55:80:80:c7:30:8d:
af:87:b0:b0:93:71:89:bf:88:51:dd:df:91:3b:c2:5f:4c:b3:
7a:4c:15:90:61:36:cf:6e:34:40:3a:5c:8e:32:6a:86:e3:31:
ea:d8:4f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:13 2024 by rpki-client on console-ams.rpki-client.org