Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4FMgGqZH90VWlS5RfFgp_w0U2xo.roa
File: 4FMgGqZH90VWlS5RfFgp_w0U2xo.roa (raw, json)
Hash identifier: j/MOUsHe4MuLu2bN2mSNHY3yPx5mcuU2ov6L/+sj+5g=
Subject key identifier: E0:53:20:1A:A6:47:F7:45:56:95:2E:51:7C:58:29:FF:0D:14:DB:1A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79948DFE39D9152EC637AB65FA3C38
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4FMgGqZH90VWlS5RfFgp_w0U2xo.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209014
IP address blocks: 45.149.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:94:8d:fe:39:d9:15:2e:c6:37:ab:65:fa:3c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e053201aa647f74556952e517c5829ff0d14db1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:4a:bb:26:cc:f7:bf:b6:79:66:22:7c:ce:1a:
e6:56:6a:bd:b0:af:b4:52:5e:12:da:09:69:28:3e:
f1:e7:be:46:2f:2d:48:30:b2:21:1a:fc:6f:f9:52:
46:38:90:13:89:dc:8c:89:a9:cc:ae:08:b5:16:13:
dc:27:34:5c:0a:b2:4e:1a:c9:eb:6b:6b:81:c5:34:
b7:bc:bd:94:ec:36:d5:e3:cf:79:a8:3f:bc:6b:c3:
b1:ca:81:c1:ba:92:64:7c:30:50:12:d1:52:4d:70:
a1:eb:39:21:ce:6f:9b:ac:90:d6:bf:9d:b7:6d:37:
c0:b3:85:78:b3:9d:28:28:64:ff:97:b1:1d:71:1c:
da:c5:0e:2d:fc:eb:dd:cd:15:bb:a3:6f:73:ef:e9:
4a:1a:e7:0d:1a:17:79:40:2c:09:3a:05:95:56:22:
76:3c:fe:9f:12:11:15:e6:36:ad:f5:f2:89:17:50:
27:ac:6b:6d:a8:f3:9e:7c:73:7b:57:4c:2c:96:b2:
ce:08:19:a8:7e:7e:22:7b:c9:53:a1:41:83:59:61:
94:38:6c:a7:4e:9d:b9:3e:8f:7a:9c:33:30:e0:66:
71:9b:7f:52:5a:4c:32:47:bf:8b:6e:3b:3c:f5:c2:
24:35:14:eb:a8:3e:7f:45:3a:b2:87:df:42:26:df:
da:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:53:20:1A:A6:47:F7:45:56:95:2E:51:7C:58:29:FF:0D:14:DB:1A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4FMgGqZH90VWlS5RfFgp_w0U2xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d2:cf:e9:17:9e:b3:eb:a6:04:4f:5b:7f:d7:f0:1e:df:14:
ce:1f:58:cf:c3:4f:95:95:ba:74:23:43:f3:ed:98:60:2a:2b:
f8:20:90:67:b8:4b:16:f3:4e:2d:dc:3c:09:8f:7a:94:ad:de:
59:3e:15:75:56:1d:4b:ee:1c:ea:db:58:50:42:ba:53:35:33:
77:1e:50:6c:4b:01:4a:09:71:d0:54:7a:e4:e8:b3:c1:90:64:
d7:62:4a:0f:fb:bd:4b:73:64:35:de:ac:d7:09:54:76:44:11:
53:87:f8:d4:7f:78:62:e1:3a:91:67:c7:92:9d:2a:ac:01:63:
98:2e:87:d2:16:00:a6:46:cd:16:15:bb:39:d6:83:5a:7d:8b:
7f:7c:02:94:58:d1:4d:b2:81:a9:a4:31:9d:98:0d:b6:8a:92:
fa:2f:14:4d:34:80:1b:d6:9a:08:dd:ee:c8:4c:fd:48:cc:c9:
b7:71:8d:5b:94:fa:c4:43:d2:e8:e6:cc:9d:a9:ce:00:8e:2e:
4d:27:d6:62:5c:de:fd:18:9f:32:af:0a:68:35:b2:86:2e:41:
23:4c:2e:f0:6f:29:7c:1d:63:7a:71:47:a6:69:bb:55:ea:40:
5f:76:5c:45:4a:a9:97:de:8c:d1:52:d3:f4:17:c1:44:b7:47:
5f:78:8a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org