Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/9UaMOnpQR1wOxPXlxLZncGxttQU.roa
File: 9UaMOnpQR1wOxPXlxLZncGxttQU.roa (raw, json)
Hash identifier: t0l/v9/vK4PNvBoQaduiuKvtvXx43WYyq7HZgsC/2SI=
Subject key identifier: F5:46:8C:3A:7A:50:47:5C:0E:C4:F5:E5:C4:B6:67:70:6C:6D:B5:05
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018C389F5507F6A3C2DFF211D2F77C99D715
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/9UaMOnpQR1wOxPXlxLZncGxttQU.roa
Signing time: Tue 05 Dec 2023 06:16:55 +0000
ROA not before: Tue 05 Dec 2023 06:16:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.146.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Dec 2023 08:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:38:9f:55:07:f6:a3:c2:df:f2:11:d2:f7:7c:99:d7:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Dec 5 06:16:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5468c3a7a50475c0ec4f5e5c4b667706c6db505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7e:54:9d:0a:75:90:f8:15:8c:b8:7d:65:21:
ed:5a:39:87:62:54:2b:6f:d3:56:a4:42:b0:d0:0d:
85:fe:fb:35:26:35:9c:73:80:de:e9:67:3f:13:32:
14:ca:bf:ba:20:70:4c:22:63:18:6c:53:14:d7:0f:
fd:7c:de:69:50:53:3d:78:e3:ee:01:06:ad:17:a0:
f5:7a:a7:4a:f0:e1:7b:73:b6:b4:70:06:97:e8:cc:
f8:8f:e1:02:68:cd:e3:e0:41:66:02:00:0e:61:08:
5c:c5:60:99:e8:a9:cb:dd:39:21:4c:f8:62:77:94:
e6:5a:e7:7e:6d:43:26:ea:20:1a:0a:c1:e6:a3:e7:
2e:0a:35:67:b6:99:7a:20:0f:27:7e:27:d2:ee:6b:
b4:68:09:f9:56:9f:d4:34:53:35:7b:25:83:92:c3:
59:a0:32:4e:66:d3:8d:27:87:26:b9:1e:1e:cc:d5:
63:1e:61:c1:6f:11:68:28:2f:5a:1a:7a:6f:1a:1f:
dd:33:fa:45:d2:71:c4:fc:ef:bd:94:1d:f9:92:13:
17:a0:6e:af:1b:fb:5d:91:ae:0b:3f:f5:13:5b:ca:
27:c7:5e:31:11:65:ec:fe:c5:c0:bc:8b:c1:74:76:
05:1a:62:f8:bb:f5:19:c5:b0:8e:a7:52:23:84:32:
18:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:46:8C:3A:7A:50:47:5C:0E:C4:F5:E5:C4:B6:67:70:6C:6D:B5:05
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/9UaMOnpQR1wOxPXlxLZncGxttQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
32:70:3c:10:da:f6:92:ea:dc:00:b7:d2:66:b9:81:d3:76:ba:
ff:77:a4:39:5c:65:16:32:72:3b:d4:0d:9e:54:d3:f7:38:77:
72:f2:55:02:3e:c8:7f:2b:d7:4e:07:fe:a4:73:8e:74:b1:7c:
42:b2:92:08:35:aa:fb:77:fc:0e:8c:4f:8b:2e:90:0e:02:bf:
d1:fe:87:85:8f:53:e6:d1:fa:12:e3:e3:14:ae:0a:5c:06:69:
44:4d:5f:ea:0a:08:f2:08:e4:16:0b:e6:99:53:f9:4b:04:89:
8b:e0:2e:97:cf:78:bc:79:72:02:f7:55:e3:93:5e:b0:03:28:
b1:04:a2:ff:ef:33:c3:4f:f4:04:39:24:de:bb:2b:92:bf:fa:
ea:e3:7c:17:fb:e1:51:b3:a9:d4:43:35:82:bb:7b:0e:d3:99:
89:15:a8:5d:80:fa:bd:5b:82:08:2f:e0:36:71:3f:37:78:73:
9a:ae:e4:66:de:db:27:eb:7a:ea:59:59:67:1c:ac:42:5c:38:
5b:a7:fe:71:06:94:6d:89:f2:e4:6e:9f:72:9a:6a:f8:33:cb:
d0:da:ca:52:c9:3a:d1:c2:57:3c:83:76:75:2e:41:14:38:36:
cf:b7:ac:4f:30:4c:79:7a:c6:2c:ba:c0:0e:90:a5:d6:f0:97:
40:96:ea:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org