Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/_T5hUyypiQv-gl4RLwGegQwX-lo.roa
File: _T5hUyypiQv-gl4RLwGegQwX-lo.roa (raw, json)
Hash identifier: YQ3AIa1oz53duMPGUxGtvAnRQOfabhesGLXcCNoAkqQ=
Subject key identifier: FD:3E:61:53:2C:A9:89:0B:FE:82:5E:11:2F:01:9E:81:0C:17:FA:5A
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CE770F2EAFA64299F7C98CABD9A98A4B0
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/_T5hUyypiQv-gl4RLwGegQwX-lo.roa
Signing time: Mon 08 Jan 2024 04:59:48 +0000
ROA not before: Mon 08 Jan 2024 04:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.137.17.0/24 maxlen: 24
176.105.231.0/24 maxlen: 24
45.150.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 19:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e7:70:f2:ea:fa:64:29:9f:7c:98:ca:bd:9a:98:a4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 8 04:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd3e61532ca9890bfe825e112f019e810c17fa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:de:3d:bc:38:62:32:c1:fa:15:ec:21:9e:95:
ee:34:05:e9:2f:8b:b0:69:86:83:de:22:ef:5a:98:
a9:88:27:af:9b:dd:14:48:2b:b9:f2:60:ed:c1:dc:
6f:f8:67:d4:ed:6e:bf:37:72:e9:bd:ff:74:a3:1b:
6b:9a:79:e1:2c:95:28:6c:44:ba:b5:9b:f2:dc:40:
ff:f1:3a:b5:de:b7:11:9b:b5:92:1f:dc:41:5e:50:
e3:b7:cb:89:b3:fb:bc:ba:5e:27:e6:04:e4:e7:08:
0e:0c:95:19:6b:0f:4f:c8:7a:99:4e:90:a4:9b:25:
ca:2d:a8:a1:d7:2a:19:70:c0:48:e7:c4:f9:e6:92:
a6:0b:b5:f7:a1:60:e9:6c:0a:3f:a6:ef:a7:a3:de:
57:15:04:7b:2f:12:b1:6b:b1:26:1b:bb:14:0c:e8:
29:7e:fb:d7:e7:b6:8c:53:45:12:75:88:51:60:76:
ba:d2:68:cd:55:66:71:e9:76:04:55:00:d0:4d:f3:
db:40:ab:a9:c9:6a:e0:4c:4e:71:4b:9a:21:44:ac:
b4:72:58:77:ad:a0:40:52:77:e5:c6:75:b7:75:f7:
30:7f:b2:59:f2:4a:32:9b:04:d8:b8:c1:04:f1:01:
10:36:59:48:ef:83:1b:ef:6e:9f:a1:83:71:3d:63:
82:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3E:61:53:2C:A9:89:0B:FE:82:5E:11:2F:01:9E:81:0C:17:FA:5A
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/_T5hUyypiQv-gl4RLwGegQwX-lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.17.0/24
45.150.55.0/24
176.105.231.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:60:98:4c:3c:66:2e:d5:f4:c5:5f:48:6c:c3:36:7f:94:db:
a8:33:aa:f6:b8:74:8c:62:61:72:a8:d8:59:6d:4a:2b:21:e2:
37:10:6a:75:f6:f1:db:d1:dd:6b:16:c3:18:bd:47:94:63:ba:
fe:34:0a:fb:4b:43:2f:b4:f6:23:2a:6d:bf:12:cd:a7:c5:11:
44:c7:b1:d4:70:fb:ff:f3:39:6a:31:c4:ca:2d:70:0b:83:03:
91:87:b1:db:ca:35:32:a2:8a:e1:77:d0:9b:82:e6:2a:47:13:
3d:c9:35:1f:e1:68:e9:dd:da:12:a8:7a:cb:f2:47:b5:c7:66:
c3:89:4e:49:51:36:36:0c:28:7c:d5:72:46:b4:7e:23:56:e3:
f9:cd:59:0d:26:71:60:f3:73:f6:fd:a6:ab:ea:3a:13:22:b9:
f5:62:de:e4:d9:34:08:58:23:2b:9c:eb:e6:00:96:d7:df:46:
95:9d:1d:bc:98:25:0a:2e:e7:e4:53:34:8e:42:0b:84:2e:22:
bb:ea:f6:a3:3b:b2:90:66:4c:26:77:1b:ad:97:ca:d1:40:96:
40:6e:a0:93:f3:cc:57:6c:1b:4f:a9:d3:14:08:73:99:f6:29:
6f:fa:9e:d7:ca:e3:50:9c:f8:26:2c:0b:4d:a4:df:80:d6:11:
de:f8:0e:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org