Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nHEwWiuZHSnqzrIvW9Pwdbsu3R0.roa
File: nHEwWiuZHSnqzrIvW9Pwdbsu3R0.roa (raw, json)
Hash identifier: o9ubpgqVWL3xaXKbbim50j8tVcQ0H7CpWjN6RJzPXAQ=
Subject key identifier: 9C:71:30:5A:2B:99:1D:29:EA:CE:B2:2F:5B:D3:F0:75:BB:2E:DD:1D
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B7E7D3E344A1F820FD0380B3D04F
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nHEwWiuZHSnqzrIvW9Pwdbsu3R0.roa
Signing time: Mon 01 Jan 2024 12:30:07 +0000
ROA not before: Mon 01 Jan 2024 12:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397630
IP address blocks: 45.137.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 19:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b7:e7:d3:e3:44:a1:f8:20:fd:03:80:b3:d0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c71305a2b991d29eaceb22f5bd3f075bb2edd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:63:e5:85:66:16:de:a3:d4:e7:1f:e2:19:57:
e5:3f:84:44:7f:a3:ee:48:fa:9d:82:11:94:db:0a:
63:9f:94:6f:10:e9:70:25:59:87:42:f8:da:ef:48:
51:d5:08:fc:bd:98:d5:62:70:e8:67:ad:08:6b:7b:
20:3b:c8:32:6c:ac:d3:35:49:33:30:c0:15:96:e6:
04:95:bd:0c:1b:ba:ce:92:af:3c:a0:a0:b5:21:04:
14:b1:1e:60:83:d6:bf:48:39:86:b0:01:3f:ae:fd:
17:60:89:e1:c8:9b:c0:d0:37:3a:fd:1e:75:6c:31:
0b:e9:21:b8:3b:5c:72:30:04:0d:30:0a:7f:d0:4a:
2a:6b:60:7d:70:32:d6:b2:a5:a4:76:82:e5:ce:45:
fc:4d:c5:83:00:6a:fc:3e:df:f1:82:65:27:7c:10:
6a:89:29:8c:18:71:f4:7a:4a:72:a4:27:36:44:c3:
f3:05:ad:af:bd:e4:52:2e:6e:4e:c1:a1:bd:72:fd:
43:b3:f6:e5:af:c7:bd:60:65:fa:e5:9a:7a:58:c3:
b6:47:af:a0:10:b7:e4:50:f5:f7:3a:04:db:5e:da:
cd:53:bd:fd:60:62:0c:80:b7:71:df:08:fe:bd:e3:
d7:f7:77:7f:95:2c:c0:98:fc:91:6a:7e:0d:fb:0b:
5c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:71:30:5A:2B:99:1D:29:EA:CE:B2:2F:5B:D3:F0:75:BB:2E:DD:1D
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nHEwWiuZHSnqzrIvW9Pwdbsu3R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.19.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:87:da:93:f0:40:7b:da:b3:00:5e:18:9a:fd:41:af:9f:d9:
50:06:c9:cf:4f:a2:73:2e:7f:e3:0d:29:90:b5:3f:01:22:8c:
0f:b3:e4:06:01:de:2a:f2:23:9e:15:12:ab:cb:f9:37:04:78:
e4:26:49:d9:f1:9f:0e:7b:83:51:19:2c:b0:bc:01:12:e1:8b:
0c:72:fb:88:fa:03:71:99:83:da:39:4f:39:62:be:5a:15:ad:
3c:76:76:b0:96:99:c1:cb:2e:d9:7e:4b:e0:14:90:98:52:7b:
7e:fc:49:ac:95:87:ae:da:bc:37:1a:2c:0f:88:0f:a9:00:1a:
cd:84:30:80:07:e2:02:6e:b5:14:99:51:70:f5:7e:48:90:bf:
40:10:08:ca:5e:3a:b1:1f:27:4c:4d:6b:c0:30:8b:ea:a3:13:
bb:78:bf:26:fa:90:4a:3d:61:4f:df:e1:ae:f2:f8:a9:04:03:
dc:bc:77:68:48:36:65:b7:35:f2:57:58:c3:86:35:39:ff:e0:
6b:56:43:1a:c5:4f:a5:fd:e7:e1:e7:11:21:8b:9b:1e:3b:cd:
7e:cf:09:cc:bd:83:d2:18:46:48:d0:ba:2d:51:96:0e:cd:a8:
c6:9b:59:8e:a7:74:73:d6:81:b0:2c:70:d0:e6:be:7e:4d:87:
b2:26:92:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org