Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SPTX7df2s7njTW2eSKZFzDQNmEE.roa
File: SPTX7df2s7njTW2eSKZFzDQNmEE.roa (raw, json)
Hash identifier: saV7sQMEgCMBvwAHyAFgUCBBtTVuxQIdmpbTeZ+S54A=
Subject key identifier: 48:F4:D7:ED:D7:F6:B3:B9:E3:4D:6D:9E:48:A6:45:CC:34:0D:98:41
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01878F5A703BE52794F2A68B1AE8EB3241DE
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SPTX7df2s7njTW2eSKZFzDQNmEE.roa
Signing time: Mon 17 Apr 2023 13:14:41 +0000
ROA not before: Mon 17 Apr 2023 13:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 45.150.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 May 2023 16:41:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:5a:70:3b:e5:27:94:f2:a6:8b:1a:e8:eb:32:41:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Apr 17 13:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48f4d7edd7f6b3b9e34d6d9e48a645cc340d9841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4c:14:ee:c6:72:5e:e3:0c:1f:78:e6:a2:4a:
87:fe:ae:06:cb:eb:80:29:32:dd:8b:08:58:fe:5a:
ce:77:8b:27:51:27:24:2a:a9:08:1e:9c:98:6c:c5:
e3:2e:da:53:ab:5b:b4:16:3f:b9:7d:af:71:8a:f5:
29:ac:07:e6:15:fe:39:11:f9:6e:d7:40:68:16:8a:
34:07:71:49:6c:18:a6:67:ad:69:3d:30:a0:c3:4a:
7b:fb:af:a5:7a:2b:a4:82:70:72:5d:1d:ce:bc:46:
e7:32:ce:30:9b:87:0f:fb:c5:c0:41:40:c5:01:06:
26:76:7f:ec:83:3f:98:87:0b:06:ea:4f:e3:3a:6a:
4c:f4:17:f8:fa:d7:81:42:4f:31:51:dd:38:14:8a:
e8:b1:fa:9e:3d:30:fa:31:e1:ac:93:c1:af:cb:fd:
ee:ab:5d:11:6d:b5:16:ac:02:e4:47:e2:92:4e:23:
91:c1:39:26:cc:58:62:59:2d:64:44:cd:2b:40:4e:
3a:6d:39:a1:5e:6d:2d:af:e5:6e:53:19:c5:d3:c6:
21:22:8b:89:06:59:14:ca:10:20:8e:b3:37:4a:91:
97:8e:e2:da:b2:6e:13:76:e6:52:b4:74:f7:9b:2e:
17:c3:4e:bf:d7:f5:92:91:d4:b9:22:b1:c2:df:15:
7e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F4:D7:ED:D7:F6:B3:B9:E3:4D:6D:9E:48:A6:45:CC:34:0D:98:41
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SPTX7df2s7njTW2eSKZFzDQNmEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bf:a8:fc:19:d0:3b:4f:34:fc:d6:38:5c:23:80:51:23:47:
ed:e8:1d:56:09:b6:b1:95:8b:ef:80:63:4c:72:d5:af:5a:10:
43:bd:24:dd:3b:7b:ec:3f:f8:c7:35:93:84:f9:9d:08:7d:93:
55:0c:0e:8f:5c:5a:30:51:e0:5e:f2:12:e1:a0:d4:cf:cf:a9:
66:e0:d6:51:e9:76:ea:db:71:ff:9f:1c:ac:59:76:4f:98:c0:
60:a2:3f:29:43:25:8f:8e:33:08:84:9d:f7:68:ba:08:c1:4c:
bd:3e:89:e9:2a:71:d0:82:f0:26:03:c5:e5:36:40:1f:98:54:
cb:8a:d0:e5:0b:8a:bc:8f:6b:8d:60:bf:76:17:78:15:c0:f5:
a8:29:73:9b:60:db:56:02:ef:9e:e8:ae:b7:31:3b:0a:f3:2d:
80:4b:c2:d6:b6:bc:ef:e4:85:48:c4:36:75:5a:d1:59:b1:e6:
a8:7a:77:87:27:a6:8d:a3:98:6f:30:c4:d4:51:d2:ae:e1:ff:
62:64:37:0a:6b:fc:ce:b5:d2:51:44:65:7a:44:2e:8a:ec:20:
8d:ef:57:cf:75:d5:fc:50:5a:26:22:15:ae:e6:4e:da:4d:33:
9f:2b:37:d1:c7:4a:55:5b:10:f7:70:50:fc:4c:56:33:27:7d:
85:a4:09:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org