Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nk49VN3o_49QlMB5KvZ-ABMWuU8.roa
File: nk49VN3o_49QlMB5KvZ-ABMWuU8.roa (raw, json)
Hash identifier: 0MN5hoRa/L1F9a1p3AuOK8fPs7n54DeX/5532O0yqOs=
Subject key identifier: 9E:4E:3D:54:DD:E8:FF:8F:50:94:C0:79:2A:F6:7E:00:13:16:B9:4F
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018A904F9899FA81629AF3B1AE8338041092
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nk49VN3o_49QlMB5KvZ-ABMWuU8.roa
Signing time: Wed 13 Sep 2023 20:50:50 +0000
ROA not before: Wed 13 Sep 2023 20:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.150.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Sep 2023 07:03:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:90:4f:98:99:fa:81:62:9a:f3:b1:ae:83:38:04:10:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 13 20:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e4e3d54dde8ff8f5094c0792af67e001316b94f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:46:11:23:97:2e:ef:91:c4:cf:85:69:a8:9c:
cb:73:95:f6:ed:6d:c1:8a:59:d5:29:6f:d2:a6:55:
e4:4c:b0:63:c4:56:4f:88:87:4f:04:0f:37:df:4f:
96:d4:0a:01:d1:ef:4a:ed:47:86:25:30:9b:c6:e6:
cf:0a:3c:50:71:2f:ad:9c:3e:18:10:da:a2:90:98:
28:df:97:e6:5f:51:d6:a0:67:8e:e9:79:ac:bd:a0:
eb:b4:cd:79:ca:29:77:bd:d8:7c:fe:84:d9:bc:4f:
a2:e3:30:30:07:e8:ad:a2:a0:fc:fa:57:a0:98:ff:
01:ee:f8:87:82:c1:5f:53:19:57:2e:c5:d1:ab:c2:
b5:db:97:85:61:56:4e:0f:bb:c4:ba:80:ba:bd:4e:
7b:5c:d4:26:ae:2c:0e:2a:d3:39:03:bc:ff:ec:3a:
73:5e:50:4c:d6:30:5e:c2:94:bd:fb:bb:cb:0f:ba:
02:e8:fe:92:0d:61:8e:ca:21:3e:cd:cf:56:23:6a:
55:47:87:fc:bc:db:c2:c3:7d:17:1e:e7:fa:13:fe:
8b:a9:3a:fd:10:02:09:02:e8:07:a5:81:1d:b4:f8:
17:fd:b9:92:c1:43:10:c0:bf:b8:33:96:e0:17:95:
0b:ac:03:94:c9:a6:92:2a:55:a7:6e:1d:c0:5d:ab:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4E:3D:54:DD:E8:FF:8F:50:94:C0:79:2A:F6:7E:00:13:16:B9:4F
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nk49VN3o_49QlMB5KvZ-ABMWuU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
Signature Algorithm: sha256WithRSAEncryption
80:df:f9:12:d3:bd:9b:52:86:32:90:ec:c8:6f:14:21:3a:67:
44:8c:37:eb:38:59:a9:21:dc:a5:54:94:a1:a0:59:1a:bb:7d:
59:6f:a1:d4:29:dc:cf:5c:55:45:67:ef:91:68:e2:1c:b8:61:
6f:c8:d5:34:c0:ed:24:9a:df:45:70:24:41:22:5c:c6:44:9f:
e8:ec:45:ca:a9:85:ba:85:74:5e:7a:66:16:df:33:f6:02:e9:
63:c6:9b:4b:54:f4:13:2f:4e:a1:a5:6d:f3:2a:80:e4:7c:ef:
63:b5:d0:48:4a:06:f8:1d:72:f6:03:a4:42:cb:36:93:05:67:
4e:2e:ed:96:99:fc:88:f3:7b:45:4e:84:21:f9:f7:d3:1b:a1:
88:de:68:47:2d:72:96:b5:5a:01:b0:16:b7:d0:a9:92:3f:26:
03:3a:de:0d:73:31:26:da:84:d3:62:84:65:70:11:0f:04:a4:
dc:ec:27:d2:77:cc:7e:81:3d:35:6a:2b:b9:f2:9c:39:2f:6f:
b8:5a:03:1f:0d:89:65:ff:84:e6:5e:44:70:95:ac:13:99:20:
0d:4c:b8:a3:60:72:03:a1:7d:4b:84:1e:c0:48:22:fb:68:1f:
31:03:6e:c7:47:5d:2a:04:d7:d7:82:53:52:f1:e8:38:f8:63:
e4:ce:c2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org