Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/0E3Uoe_VgSEB5VqCbwJHoaPt2zE.roa
File: 0E3Uoe_VgSEB5VqCbwJHoaPt2zE.roa (raw, json)
Hash identifier: Y2A/wKBi3K9UzFsPSADXuh4oYU817hB/Xmkd0rYYtK0=
Subject key identifier: D0:4D:D4:A1:EF:D5:81:21:01:E5:5A:82:6F:02:47:A1:A3:ED:DB:31
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 018A840981675A9A711342C005DEE4A27719
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/0E3Uoe_VgSEB5VqCbwJHoaPt2zE.roa
Signing time: Mon 11 Sep 2023 11:38:50 +0000
ROA not before: Mon 11 Sep 2023 11:38:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20668
IP address blocks: 45.91.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 07:03:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:09:81:67:5a:9a:71:13:42:c0:05:de:e4:a2:77:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Sep 11 11:38:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d04dd4a1efd5812101e55a826f0247a1a3eddb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c6:46:09:92:61:e7:5c:ad:c9:6c:d9:52:ec:
04:e3:d2:c1:8b:5b:a8:21:fd:c9:f7:32:93:2b:db:
87:f5:7f:9b:28:e9:4f:2d:52:51:1b:c6:c1:05:d9:
a4:db:d7:85:68:d4:07:ad:35:1a:60:ca:af:8d:25:
5c:18:fc:d9:d2:03:ac:a0:8b:70:f4:88:1c:a6:b1:
be:52:86:c8:38:b5:cb:5b:99:82:fc:14:b4:b2:2f:
d2:1d:b8:f3:38:ed:8f:06:33:aa:f1:50:d5:26:b5:
b8:d7:72:8d:09:18:c9:b6:80:23:76:e5:29:e5:25:
63:c6:d8:3f:fd:6c:80:06:24:7d:99:80:2c:0c:5a:
1f:7b:b2:75:e7:7b:8e:68:26:5a:59:ca:75:7c:94:
6f:81:62:6e:5f:a0:e2:b4:45:a3:fe:de:47:45:fd:
66:5f:1f:38:14:c0:9b:5d:6b:c3:17:8d:65:b9:73:
6f:eb:eb:db:c0:88:64:c3:c3:db:f9:16:0e:c6:70:
02:25:81:66:d8:9b:13:2c:c3:d5:7d:d0:4d:48:79:
d8:33:20:f7:5d:7d:a8:e6:1c:12:06:64:f6:b4:2e:
4d:57:da:86:c2:b6:40:b0:09:c8:90:be:75:48:da:
88:1a:9d:c0:78:e1:9b:ad:91:fb:a8:af:9f:08:32:
66:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4D:D4:A1:EF:D5:81:21:01:E5:5A:82:6F:02:47:A1:A3:ED:DB:31
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/0E3Uoe_VgSEB5VqCbwJHoaPt2zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.4.0/24
Signature Algorithm: sha256WithRSAEncryption
56:d4:1c:b7:18:9e:b6:f9:26:d0:4b:22:cb:e3:a4:98:d4:3c:
66:54:ef:d5:13:29:37:b4:6d:f1:6e:1b:f7:12:11:04:5c:4b:
71:4b:e8:89:02:d3:a8:0f:24:d0:6b:ef:3d:29:8a:6b:71:26:
37:4c:b8:c0:47:b5:8b:a1:34:08:be:81:7f:d2:c6:50:67:66:
77:b0:e3:81:fc:d6:ec:89:9c:69:46:08:77:c9:67:66:8e:40:
e8:12:ff:72:06:61:63:ef:11:ca:3c:d5:ae:e1:35:f2:dc:60:
a6:7c:30:71:ee:58:5d:14:cd:18:4b:df:e9:60:68:2a:f6:79:
05:1c:2c:32:9f:9b:ac:e3:29:84:40:af:a5:56:f3:48:e4:86:
f9:bd:af:f0:d2:70:e9:19:50:3e:7c:fe:21:29:a2:ef:b9:24:
3f:d1:40:8d:26:30:90:ed:c5:3b:68:88:17:dd:5c:76:4c:24:
51:49:2a:e9:bc:d4:63:6f:f7:a2:75:8f:da:14:27:1e:ef:10:
47:c9:b9:d4:b7:94:2d:c4:ac:e0:83:e4:44:1f:6a:a9:f8:30:
1c:29:27:fb:8d:09:13:49:a2:0c:28:1d:d5:aa:3a:a2:4f:05:
8c:54:69:b6:4f:10:93:18:af:21:4f:27:43:3f:6c:8a:39:d4:
03:46:ef:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org