Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4usCKMwwvm6jXzSNZ0g_R0vMUNg.roa
File: 4usCKMwwvm6jXzSNZ0g_R0vMUNg.roa (raw, json)
Hash identifier: TpzFSi5sJduUOU4jrnVIw7+JP/tUQjx+HulSB2iYivQ=
Subject key identifier: E2:EB:02:28:CC:30:BE:6E:A3:5F:34:8D:67:48:3F:47:4B:CC:50:D8
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0189D092A5C50166262C5CA113E89A19B1E7
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4usCKMwwvm6jXzSNZ0g_R0vMUNg.roa
Signing time: Mon 07 Aug 2023 15:16:58 +0000
ROA not before: Mon 07 Aug 2023 15:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.150.55.0/24 maxlen: 24
91.238.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 04:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:92:a5:c5:01:66:26:2c:5c:a1:13:e8:9a:19:b1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Aug 7 15:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2eb0228cc30be6ea35f348d67483f474bcc50d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a2:ef:b9:36:ff:37:a5:7a:45:b1:5f:08:23:
99:b9:5d:34:3e:de:19:6b:47:59:2e:c4:36:f2:78:
5d:4f:89:7e:04:32:6a:b6:d7:ef:45:ee:72:77:14:
ed:b3:77:fc:e2:db:09:f0:1f:6a:04:36:d9:61:da:
c2:63:9f:23:bf:47:94:98:28:dd:58:60:83:c4:a5:
09:92:e0:24:5e:7f:67:47:c8:99:e2:35:4d:68:95:
0b:6e:e3:50:10:2c:a2:08:1d:9f:14:1f:04:03:05:
dd:0f:6a:0d:43:ea:ef:1d:d1:16:c8:6c:c9:5f:33:
f0:2e:4a:f2:f8:75:25:59:4f:5e:73:c3:5e:0a:c2:
61:0d:4b:3d:bf:81:ea:7a:25:33:cb:83:83:2a:47:
94:55:be:ea:9f:20:1c:71:20:09:92:14:ea:1d:eb:
19:b6:fc:7e:24:da:6a:a5:80:34:19:23:dc:f6:0a:
e5:24:4d:83:a8:58:be:91:7c:9e:f3:c2:9f:18:8c:
2d:bb:5e:d0:9e:2b:ff:cd:93:77:c8:0f:5b:97:c0:
12:bf:bc:ad:7f:f1:57:e5:2b:c2:02:12:01:45:26:
39:2a:01:14:18:63:55:1c:66:fc:1d:1a:b6:a2:60:
c4:ab:e4:27:58:d9:57:1e:df:e7:46:a7:e4:25:e2:
b3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EB:02:28:CC:30:BE:6E:A3:5F:34:8D:67:48:3F:47:4B:CC:50:D8
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4usCKMwwvm6jXzSNZ0g_R0vMUNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
91.238.92.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:d6:91:ec:9f:b9:4d:f5:4e:21:b7:8a:cf:73:94:36:e6:a2:
d8:a0:46:d0:94:e6:cf:bc:04:fc:1d:54:92:96:4f:d0:97:45:
cd:56:5a:34:c7:d0:4c:d4:ee:74:dc:0a:43:b6:93:54:f8:0f:
ca:bf:a3:5e:66:44:b8:92:05:1f:11:d1:29:39:7c:3a:2c:9d:
03:5b:69:32:38:6a:1f:91:f6:f4:36:cc:3f:e2:da:4f:af:3a:
18:20:1f:14:10:62:29:e1:bb:6d:fa:83:84:69:20:f2:a7:df:
43:4f:82:a5:18:17:6d:f6:e3:c9:82:a1:4a:ac:f6:3e:6d:6e:
44:92:f8:15:46:d4:6c:68:b1:ff:0b:a1:cb:e1:d9:07:f0:45:
df:48:88:06:ba:e1:44:90:f8:9d:c9:45:45:2f:1d:11:80:f9:
1d:8d:75:b2:1d:53:64:88:8d:23:95:7a:5a:8a:6f:45:e0:39:
59:04:e7:c0:7b:23:49:14:d4:6c:75:87:d7:c3:1a:23:86:ae:
be:1c:7a:a6:ef:63:92:fb:15:d2:55:48:cb:4b:6b:54:e3:f1:
3f:b9:84:d6:56:78:38:4d:aa:c3:55:43:97:94:43:05:d7:97:
4a:5d:42:32:83:f1:f4:6f:a9:31:e0:68:0f:db:25:17:cd:42:
07:74:0f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org