Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ogJ2WXzFoQ6hqG-11K-HFfU0Nz0.roa
File: ogJ2WXzFoQ6hqG-11K-HFfU0Nz0.roa (raw, json)
Hash identifier: YG86RVRx8lqP/oRRvC2d9XD+X7xNNI+cLyVq3KU9wxw=
Subject key identifier: A2:02:76:59:7C:C5:A1:0E:A1:A8:6F:B5:D4:AF:87:15:F5:34:37:3D
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0189B00E2EA82806CBA786A59C80E7FD8219
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ogJ2WXzFoQ6hqG-11K-HFfU0Nz0.roa
Signing time: Tue 01 Aug 2023 07:44:26 +0000
ROA not before: Tue 01 Aug 2023 07:44:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202673
IP address blocks: 45.137.17.0/24 maxlen: 24
176.105.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b0:0e:2e:a8:28:06:cb:a7:86:a5:9c:80:e7:fd:82:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Aug 1 07:44:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a20276597cc5a10ea1a86fb5d4af8715f534373d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:31:f9:c6:b8:8a:ad:17:25:13:f9:cd:cf:
52:a4:fe:ce:2d:4f:c2:36:fd:06:6d:cf:35:93:7a:
8b:67:a1:62:8f:1a:a7:3d:5f:bc:ac:85:5a:f6:92:
87:9a:7b:be:89:0c:7a:a1:b8:b4:c3:3e:85:09:ce:
cf:89:4a:16:7e:86:0f:38:a2:67:a9:9f:65:e4:19:
9a:d9:39:dd:a2:47:58:e7:66:32:45:13:cd:a6:eb:
eb:97:e3:8b:1f:fd:62:70:88:c9:e9:4e:18:9b:f7:
21:e7:c3:d8:4b:00:22:57:64:1c:2d:4f:80:b6:5a:
94:38:5c:33:75:0a:4e:67:83:6a:01:a4:bb:c5:6e:
5d:11:e2:8e:94:04:bf:57:44:7a:04:d7:97:5a:3d:
e1:b7:5a:67:84:7e:6c:22:ce:fd:6c:97:f2:d6:34:
12:f7:84:00:20:7b:b3:7d:f6:05:3a:0c:2e:83:45:
16:80:eb:14:f4:dc:9b:7a:bb:59:4f:45:bf:2c:28:
fe:d9:42:ca:7e:d7:58:e4:68:cc:6a:2b:0d:11:bd:
f8:0e:b8:76:9f:d3:13:db:48:c6:f9:9c:13:68:a0:
a9:9c:e2:97:8b:42:a3:65:f3:17:0f:83:a8:4c:e3:
c0:52:76:d3:bb:14:31:5e:cb:b8:2a:7b:27:c7:1c:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:02:76:59:7C:C5:A1:0E:A1:A8:6F:B5:D4:AF:87:15:F5:34:37:3D
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ogJ2WXzFoQ6hqG-11K-HFfU0Nz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.17.0/24
176.105.230.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:1e:a1:4e:6e:48:af:ce:c6:fe:38:8c:18:7e:e4:03:6d:d2:
c8:2e:67:4e:16:18:36:78:fe:16:00:ef:14:2d:31:f6:8c:4b:
e9:a2:ad:b3:72:cb:93:09:5b:c4:5f:1f:ec:18:7e:c6:1b:cd:
07:57:90:b9:9f:6c:5f:1d:5a:11:9d:95:c0:86:1a:c5:c2:f3:
f0:11:90:09:6f:7b:1b:5e:2a:01:0a:71:bf:b1:a6:b1:9a:bd:
cb:e6:08:56:ba:cd:e3:9c:3d:11:01:fc:74:52:c6:d0:a9:14:
2e:05:94:74:01:03:6f:3d:44:9c:cc:9d:ac:50:68:b7:e6:35:
3d:dc:42:49:f9:ed:25:45:c2:55:99:b9:5d:e7:7a:d6:1c:04:
ba:37:a1:f8:db:40:26:4e:85:82:be:f5:7d:31:a5:a4:90:be:
92:2f:ad:4b:5b:96:b9:a2:bd:17:c4:f8:e6:e4:cc:ac:e8:61:
52:34:94:e1:83:a5:05:d6:9d:54:ab:d6:71:d3:25:5b:10:18:
72:9f:fc:04:a6:1f:02:a4:e5:0c:aa:35:bd:38:9d:e1:10:54:
ea:1f:6c:6b:70:75:1e:81:21:a6:ca:e9:ed:77:20:9a:1f:ca:
a8:77:b6:df:22:9a:cc:9b:9c:fb:f3:f9:bb:78:01:fe:46:b1:
81:bf:c7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org