Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/AXECFH37ZJjoZHRwf7tG25G5b0o.roa
File: AXECFH37ZJjoZHRwf7tG25G5b0o.roa (raw, json)
Hash identifier: KQONLpFjTwIMMU1VUmfbzqE2p1pUqlkSGMPMoTybhuc=
Subject key identifier: 01:71:02:14:7D:FB:64:98:E8:64:74:70:7F:BB:46:DB:91:B9:6F:4A
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018A7705EFCBAAFB065070A87199475F7379
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/AXECFH37ZJjoZHRwf7tG25G5b0o.roa
Signing time: Fri 08 Sep 2023 22:59:52 +0000
ROA not before: Fri 08 Sep 2023 22:59:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.177.24.0/22 maxlen: 24
45.150.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 19:27:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:77:05:ef:cb:aa:fb:06:50:70:a8:71:99:47:5f:73:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 8 22:59:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=017102147dfb6498e86474707fbb46db91b96f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:56:f8:b2:e4:d5:c3:e4:00:fd:7b:87:57:b4:
72:cd:b2:7a:19:40:54:73:ab:82:6f:62:bd:cd:68:
97:df:e1:f4:74:a3:61:83:06:07:70:85:68:b8:dd:
f2:d1:f4:9c:b4:b2:2e:f7:0a:70:93:c1:59:b4:96:
86:bc:1f:37:48:de:f0:7e:67:c0:62:24:38:21:f9:
a9:c2:bc:58:4f:f7:87:6b:93:bc:98:e3:aa:73:22:
c2:57:b7:41:8f:e2:88:71:19:af:48:cf:86:9e:fa:
bd:6b:d5:40:77:0f:88:fe:81:68:47:47:28:7d:48:
1c:1a:5f:97:77:e3:c5:bc:ee:d6:bc:41:b2:ac:18:
1d:b4:5e:80:ed:c9:66:6c:4e:df:eb:5a:2e:b1:b2:
6c:2f:1d:1b:c8:47:a1:2b:4f:bb:ac:55:46:2f:26:
db:cf:80:92:b2:d5:5d:8e:d2:58:9b:35:af:a9:83:
c6:3f:bd:f1:d2:4a:3b:8b:f4:95:7e:55:5c:25:15:
1e:b4:8e:74:e1:67:2e:ac:05:3b:a8:67:92:55:bd:
6b:25:42:8b:6a:b0:e9:50:c0:aa:6e:ee:ed:6c:b2:
dd:ca:b2:77:fb:8c:04:5f:ba:12:bf:4d:02:39:49:
13:42:0f:e3:ec:a5:11:ca:d6:41:d5:15:63:b5:c2:
0f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:71:02:14:7D:FB:64:98:E8:64:74:70:7F:BB:46:DB:91:B9:6F:4A
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/AXECFH37ZJjoZHRwf7tG25G5b0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
185.177.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:a2:ff:b1:fa:4b:c6:39:56:27:a6:45:69:e7:56:4c:af:72:
eb:6b:9e:73:9f:06:bb:c9:57:23:c8:ec:47:70:e4:13:84:3a:
ef:b4:e5:43:ef:6f:77:63:6a:91:8c:9c:7e:42:17:85:28:06:
91:c9:4d:a0:3e:b9:39:91:da:12:f2:76:99:44:82:c9:79:77:
27:f7:ad:66:50:81:7f:ef:de:6d:bc:f4:8a:6e:96:11:e8:1e:
96:e8:02:eb:37:74:7a:e2:e4:db:ef:42:b0:a8:74:c9:79:21:
80:84:75:ab:5a:d5:26:06:d2:8b:21:a5:20:6c:8a:66:8f:86:
33:d8:df:6d:e6:67:d8:72:7b:2d:02:eb:95:57:1d:db:84:53:
fd:c4:aa:97:d8:34:ab:6a:71:79:16:f1:3c:3d:e6:d1:ff:7b:
5a:d6:6d:aa:1a:4b:6a:4e:e4:73:2b:dc:c3:43:9b:2e:cc:5f:
0f:3e:80:99:a6:ec:d8:49:b9:a1:a9:e9:d1:f0:60:40:14:c9:
b7:e2:6c:6b:e7:4b:aa:ec:90:6f:05:c3:6c:2d:f4:a9:4d:40:
ee:a7:d2:b1:42:3d:a6:3c:3c:69:af:06:b9:79:68:91:2a:8d:
9e:74:d6:fe:5a:55:e8:40:b6:f7:f5:47:a8:f5:32:5c:dc:38:
30:73:33:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org