Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oxniIypQK0kNiVsBqqz59supYe4.roa
File: oxniIypQK0kNiVsBqqz59supYe4.roa (raw, json)
Hash identifier: Ql7UMRpYOxXhBiTr96E5WN8QhX9HCx2cYZqRDEIs1ro=
Subject key identifier: A3:19:E2:23:2A:50:2B:49:0D:89:5B:01:AA:AC:F9:F6:CB:A9:61:EE
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018C49C6E475B6D1AF46D535A9921FA3920E
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oxniIypQK0kNiVsBqqz59supYe4.roa
Signing time: Fri 08 Dec 2023 14:13:40 +0000
ROA not before: Fri 08 Dec 2023 14:13:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 45.143.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:49:c6:e4:75:b6:d1:af:46:d5:35:a9:92:1f:a3:92:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Dec 8 14:13:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a319e2232a502b490d895b01aaacf9f6cba961ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a0:4e:21:68:10:b2:7a:50:5c:9e:08:77:1b:
72:c2:83:3d:e6:40:04:11:b9:eb:90:e3:33:e4:61:
1c:62:1e:99:d9:b8:0c:fc:fd:2b:30:8c:ad:e0:b9:
1a:88:a4:b3:47:8d:1c:3c:26:ab:96:c8:97:9f:d1:
20:2f:81:5c:1c:c7:11:2a:a1:fc:86:e6:30:82:6f:
f3:8c:c8:0d:aa:46:8a:e3:3c:cd:a4:77:76:bb:2f:
5b:ca:a8:e5:ea:e1:aa:ef:7d:e7:37:29:4a:9a:67:
a1:07:7e:3e:b6:65:5a:43:1e:9c:65:22:d4:bd:b5:
87:2a:bd:7b:11:fd:36:d1:70:02:7a:a6:44:fa:ca:
8b:61:1a:31:26:d0:49:40:70:63:c4:4a:4a:01:d2:
7a:91:e6:af:73:bf:e9:69:d0:26:f3:1b:e6:11:21:
91:a3:fa:d5:ba:7f:dc:ac:be:82:bc:c1:af:7c:3e:
ca:6f:8f:9b:52:f7:7b:63:24:b2:16:ee:0e:ec:73:
37:1c:a3:a6:44:b9:8b:af:fa:6d:7b:d8:63:41:56:
d0:b1:9b:99:84:2a:00:a5:b7:ae:78:14:33:92:69:
f6:c4:59:84:de:6b:f4:62:6f:94:f5:5d:b9:09:e3:
4a:fc:f2:f3:a3:3a:09:c7:eb:09:ca:b5:80:4a:dd:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:19:E2:23:2A:50:2B:49:0D:89:5B:01:AA:AC:F9:F6:CB:A9:61:EE
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oxniIypQK0kNiVsBqqz59supYe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.162.0/24
Signature Algorithm: sha256WithRSAEncryption
93:84:b8:13:46:f8:3a:96:b6:3f:a1:5c:e9:65:7d:72:ca:45:
c4:27:28:55:ef:a9:fd:c0:2c:e8:73:0a:1e:ec:8f:e3:d1:8f:
ca:f5:12:4a:37:92:51:98:94:ea:16:e8:d7:be:46:95:5e:0a:
73:23:7e:3f:be:23:fe:89:d1:c8:c4:1a:41:76:a2:12:bc:3f:
28:d4:43:84:40:3a:25:a0:5c:89:d1:f0:59:b4:7a:22:e3:bf:
1c:4c:d4:dc:a7:84:a7:93:3f:e6:97:c3:60:94:47:42:cc:6f:
2e:4a:2c:e4:28:4e:e1:49:6c:03:dd:d6:c8:98:ad:cf:eb:90:
cc:fb:2c:5f:ec:77:c6:95:aa:99:a8:2c:6e:82:32:c1:14:ab:
10:5d:ad:dd:c5:ae:b0:52:fd:38:1a:03:d1:70:4f:48:81:95:
c2:3d:67:d2:71:8d:c4:b4:2b:89:3f:46:c4:d3:e9:bc:13:9a:
fe:61:42:ca:e9:ea:5b:2e:8b:97:af:b4:26:0b:c3:c3:a8:34:
56:3a:19:27:79:89:30:56:ba:4e:f3:44:5f:71:10:9e:17:12:
21:49:15:e7:2f:47:86:62:bf:bd:02:f9:c0:16:5d:ec:af:3d:
9d:06:1e:3b:94:23:f9:57:d0:12:bc:21:a2:64:5a:cf:af:12:
a6:4f:d9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:08 2024 by rpki-client on console-ams.rpki-client.org