Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/nq0I7vkMlLOO3Nkv8rhEF6r5o9g.roa
File: nq0I7vkMlLOO3Nkv8rhEF6r5o9g.roa (raw, json)
Hash identifier: NVnJdZ4y58EXQrTgTWArUBDA3k708P9KgMBQXxftG9I=
Subject key identifier: 9E:AD:08:EE:F9:0C:94:B3:8E:DC:D9:2F:F2:B8:44:17:AA:F9:A3:D8
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01867ACB6C9F5E7B4F508124AFCE6C2B949D
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/nq0I7vkMlLOO3Nkv8rhEF6r5o9g.roa
Signing time: Wed 22 Feb 2023 20:23:17 +0000
ROA not before: Wed 22 Feb 2023 20:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 45.149.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Mar 2023 15:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:cb:6c:9f:5e:7b:4f:50:81:24:af:ce:6c:2b:94:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Feb 22 20:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ead08eef90c94b38edcd92ff2b84417aaf9a3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ec:32:5f:29:0d:60:78:02:18:6f:2e:d5:dc:
a8:b6:2c:74:a1:2d:48:9c:75:51:dc:57:b6:a2:b3:
bf:05:04:47:35:c2:ba:2a:e3:5c:d6:e1:48:f9:8f:
a7:98:25:ba:13:14:9d:00:26:97:7e:ee:6f:a1:2d:
62:4c:4c:1f:e7:50:a2:3c:45:e0:85:a9:02:20:e6:
6a:94:37:2d:fe:86:63:18:ed:03:2b:d9:1b:43:c8:
d7:5e:3c:45:b2:70:8f:d1:03:da:dd:8d:15:22:ba:
7c:c5:cd:b1:43:cb:f4:e7:c9:cf:6f:79:5e:aa:25:
6e:55:70:ad:36:d6:e1:7a:8c:c3:58:70:32:9a:d2:
04:1a:5c:05:db:3b:98:1a:5b:e1:29:de:c9:aa:b3:
ac:99:2b:42:d0:5c:bc:a7:4e:37:4d:b1:90:4e:76:
66:8d:12:0a:91:83:68:c6:31:41:71:6a:00:44:59:
de:b5:f0:12:05:79:7c:6d:23:fe:d6:8e:0b:cc:c2:
dd:fb:21:6f:b8:be:1d:86:43:bf:f9:05:c0:77:05:
3d:55:7b:8b:bf:1d:1f:70:e2:a3:09:39:4f:0c:08:
7c:5b:76:f9:e8:92:db:de:be:5e:21:e8:1c:b8:fb:
18:8a:bc:d3:58:c9:cf:a5:6d:f8:ae:5d:b0:b7:1a:
53:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AD:08:EE:F9:0C:94:B3:8E:DC:D9:2F:F2:B8:44:17:AA:F9:A3:D8
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/nq0I7vkMlLOO3Nkv8rhEF6r5o9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/24
Signature Algorithm: sha256WithRSAEncryption
55:90:2f:40:90:65:62:eb:4a:5a:fd:d1:d1:7b:19:b9:92:56:
e5:2a:47:f7:dd:95:a1:98:ef:ec:68:0c:38:11:9a:61:d2:b9:
f2:c6:a1:b7:f9:1c:e4:d6:25:ee:92:ab:cf:b4:e4:e6:f2:8f:
f6:3c:b5:a7:28:49:3e:92:dc:12:eb:eb:27:4c:53:f2:cd:b2:
36:c1:91:05:17:23:f9:ae:e4:56:d0:3d:13:c8:2f:2c:32:22:
bf:52:cb:df:04:86:00:f7:42:b3:21:ca:21:6a:9c:9f:38:48:
94:e7:1e:97:ee:aa:a5:d8:0e:b2:b8:9a:a4:4b:1f:e9:e6:4f:
89:3f:0e:cf:f1:47:52:9b:89:f2:c0:1e:f1:18:82:f0:cd:9e:
2e:e1:f9:9b:7c:1f:1b:9d:c0:b2:e9:ee:94:d7:84:e1:72:f1:
5c:e7:28:1e:02:6c:65:4d:2d:1f:6c:a7:af:aa:51:02:16:ec:
16:0a:2d:77:19:a9:e3:d1:15:59:29:63:23:2b:54:61:b9:73:
d8:77:1e:6b:36:5c:7d:6c:4b:1b:5a:67:e3:a2:06:74:df:4e:
b2:25:ce:72:57:09:f2:66:b0:d8:69:b1:f4:82:68:be:3d:c2:
fc:82:07:7b:bf:73:f2:75:e4:aa:b2:d3:ea:44:7d:57:55:d3:
1b:70:47:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org