Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/nW2U78NQSDI0PUmpox7xSXKEJeE.roa
File: nW2U78NQSDI0PUmpox7xSXKEJeE.roa (raw, json)
Hash identifier: LVO8i6FG7xgz6Wa17MQhoEa9skPlyDLw+iVUBnQdq9E=
Subject key identifier: 9D:6D:94:EF:C3:50:48:32:34:3D:49:A9:A3:1E:F1:49:72:84:25:E1
Certificate issuer: /CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Certificate serial: 0185719E707CF11A995D728F7757F644236C
Authority key identifier: 33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/nW2U78NQSDI0PUmpox7xSXKEJeE.roa
Signing time: Mon 02 Jan 2023 08:34:46 +0000
ROA not before: Mon 02 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12884
IP address blocks: 45.95.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:70:7c:f1:1a:99:5d:72:8f:77:57:f6:44:23:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Validity
Not Before: Jan 2 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d6d94efc3504832343d49a9a31ef149728425e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:e8:ca:73:2f:0b:7e:55:84:0f:e6:95:34:
c7:04:0d:0f:a0:3f:40:1d:41:b4:f0:5a:ea:c5:8e:
43:ef:b0:2f:ee:6e:d5:34:92:ab:52:95:41:03:84:
d9:f5:0e:7e:a1:25:ee:4c:a8:a5:3a:fa:ff:e0:56:
0d:3b:86:ff:fd:6c:9a:aa:59:0e:7c:ad:cb:ca:70:
8c:b5:2f:75:2d:6b:e9:5c:fc:03:83:9c:2e:64:d5:
18:76:49:62:33:2d:36:97:32:9b:ee:a3:47:9e:e3:
e2:d2:01:db:b8:47:44:c1:fc:5a:8d:f5:76:4e:43:
12:9b:06:5b:f6:b9:a5:62:e3:ec:1e:37:09:d6:f8:
07:e3:51:43:54:62:85:20:3e:5a:aa:e7:40:9d:16:
5c:6d:04:1a:be:f7:32:8f:ba:3c:c5:b2:9e:ba:15:
fd:d1:c5:b8:43:7a:79:7d:d1:28:f1:12:3f:39:93:
44:35:d0:29:b2:c5:0d:da:1a:87:40:33:00:ba:60:
39:6f:10:8d:7c:95:19:5b:35:23:d1:8f:62:e9:e3:
b4:42:89:a3:69:66:03:f2:40:fe:d7:d8:0b:80:66:
b5:1f:52:61:d4:02:12:20:c2:f6:58:45:6c:34:e2:
1e:00:e2:f5:5c:7b:14:45:b0:14:07:d9:fb:22:98:
f9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6D:94:EF:C3:50:48:32:34:3D:49:A9:A3:1E:F1:49:72:84:25:E1
X509v3 Authority Key Identifier:
keyid:33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/nW2U78NQSDI0PUmpox7xSXKEJeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/M41C-7P0P1bduHguZUkKI9hbcuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:13:a2:72:c0:0d:13:c4:e8:25:9c:38:25:63:71:6d:33:ef:
81:e4:31:75:60:08:cb:3e:e7:e7:be:80:73:e5:82:83:d8:6b:
83:e3:d3:3f:7a:d4:20:55:c5:80:e1:a0:28:46:f4:55:15:8d:
d6:44:ce:a9:c9:69:bc:a1:3b:9e:c6:0e:dd:95:60:4f:b4:45:
60:16:aa:02:ee:51:c5:9c:c9:00:17:09:24:0b:0c:20:8c:8a:
69:e1:fb:2f:71:cb:b0:7b:06:c1:8a:6e:91:a2:b8:a2:f2:10:
19:6c:f3:b7:08:9e:0f:de:9f:5a:64:0f:52:f4:87:31:c9:da:
40:87:fc:6e:84:22:cd:63:fb:f6:f3:d7:48:7d:c1:5c:80:e6:
f8:3a:77:57:da:5c:fc:93:5f:67:df:c2:f5:fb:4b:61:b4:78:
f2:e4:3d:ec:63:2a:a3:6a:75:25:f4:59:c4:9d:46:f8:e3:d9:
2f:90:ff:64:16:6f:f6:85:56:e4:03:16:fb:4d:0f:0e:74:63:
9e:35:84:d9:29:c7:1f:04:24:2e:49:da:1d:c8:f6:53:81:8a:
e5:ba:17:d5:52:13:78:18:c6:72:73:ca:31:ae:bf:4b:e3:b7:
a1:5e:c6:3e:89:ba:9c:d1:c1:4e:d4:5c:e2:c2:37:a3:84:9b:
3b:d0:c6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:09 2024 by rpki-client on console-ams.rpki-client.org