Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/0mDT8JCvIOHWpO8mVQBmbTpPfmY.roa
File: 0mDT8JCvIOHWpO8mVQBmbTpPfmY.roa (raw, json)
Hash identifier: zFTGthgqd930uy9P6e5HmRXQEibpGX5fglG0GrzgtTE=
Subject key identifier: D2:60:D3:F0:90:AF:20:E1:D6:A4:EF:26:55:00:66:6D:3A:4F:7E:66
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018976F3F526560A01F3FD5BB94FE60B03D4
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/0mDT8JCvIOHWpO8mVQBmbTpPfmY.roa
Signing time: Fri 21 Jul 2023 05:37:26 +0000
ROA not before: Fri 21 Jul 2023 05:37:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.94.0/24 maxlen: 24
80.246.232.0/24 maxlen: 24
80.246.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jul 2023 06:18:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:76:f3:f5:26:56:0a:01:f3:fd:5b:b9:4f:e6:0b:03:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Jul 21 05:37:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d260d3f090af20e1d6a4ef265500666d3a4f7e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1b:13:dd:97:31:89:9a:fc:2d:9b:4e:95:cf:
71:b5:14:ee:a3:68:d1:46:68:bd:0f:cf:d7:a1:02:
a3:58:80:de:58:e9:bb:73:52:ba:e7:55:bc:66:b2:
39:da:1c:da:f8:71:d4:4c:01:23:a9:ee:b6:03:4d:
5d:b2:fe:f8:d4:ea:f6:f3:c5:30:db:41:9c:b1:f9:
5b:de:ba:91:46:11:8d:b1:60:d1:36:77:97:74:65:
70:a0:e8:08:57:36:de:9b:89:da:37:b1:c2:67:ca:
95:c2:bd:e9:7a:9e:ca:be:88:3d:bb:71:9e:10:87:
53:61:13:70:b2:e2:2d:94:7c:46:06:c5:5b:a0:fa:
ed:15:cc:89:fd:aa:be:6a:32:86:1b:1a:3d:be:f7:
d4:83:48:cc:7e:f0:48:c2:86:a9:c9:60:70:5f:f0:
ce:bd:8d:76:d3:a4:17:42:09:17:95:c8:21:90:a2:
45:e5:0d:8e:94:81:4e:02:bc:4f:b0:98:42:b8:ab:
0d:54:9a:ba:49:34:55:c5:a7:05:f3:6b:07:44:6a:
49:b1:24:cc:0e:52:25:2f:d1:96:9d:f1:f3:8f:8a:
ef:c9:d7:97:2d:e2:d6:da:15:4f:9d:3f:8d:3a:36:
d4:6d:2c:85:b4:f8:54:fc:88:bc:91:92:a6:b1:3e:
36:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:60:D3:F0:90:AF:20:E1:D6:A4:EF:26:55:00:66:6D:3A:4F:7E:66
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/0mDT8JCvIOHWpO8mVQBmbTpPfmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/24
80.246.232.0/24
80.246.236.0/22
Signature Algorithm: sha256WithRSAEncryption
72:82:fd:a5:35:09:42:fc:2b:a9:ab:83:12:51:33:c6:01:6c:
c2:5b:b8:4c:15:a5:9f:38:05:57:87:55:f2:f6:9f:0e:43:63:
37:a0:18:fd:7b:17:e6:d5:66:94:5b:ea:a1:43:7d:55:00:1b:
a4:73:e9:59:8e:7c:4c:a7:89:e0:03:7b:1d:d3:7f:b7:80:95:
99:d5:7d:d8:b6:2b:66:6c:70:05:d5:0e:e0:fb:fc:4e:d0:0f:
16:18:3a:79:fb:e7:ef:f5:3e:10:08:e3:0a:8d:bb:2d:cd:66:
32:9a:b5:f4:52:7e:da:d5:56:73:21:ec:21:d5:7f:60:64:58:
fb:e0:b3:65:b4:d8:64:56:fd:cf:cb:34:54:6d:5f:ac:09:e3:
9d:7c:3e:48:dc:9d:e7:17:b7:64:66:90:c2:b0:0f:78:a2:9c:
95:e2:ce:63:3e:d7:ed:3e:a7:e2:56:d3:ac:ea:f4:ce:ea:d4:
a9:57:34:4f:57:fc:92:89:31:0e:7f:05:70:ac:1c:18:0d:19:
95:7d:a6:87:d7:32:55:b0:af:9f:a1:5e:40:b0:e4:d5:29:0f:
85:c7:8b:c3:e9:82:5b:3c:1a:40:22:87:b6:21:c0:e7:6b:34:
7c:9e:49:40:04:3f:e8:9b:21:dc:be:c6:64:fc:3e:17:49:bf:
3c:a0:68:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:31 2024 by rpki-client on console-ams.rpki-client.org