Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q0I4R3VfT6rykLTOXWU0rAZO7Yk.roa
File: q0I4R3VfT6rykLTOXWU0rAZO7Yk.roa (raw, json)
Hash identifier: 046y5SPZ9m+1hO2unANzhkSJw2FTovBog+ij+vQQ+6U=
Subject key identifier: AB:42:38:47:75:5F:4F:AA:F2:90:B4:CE:5D:65:34:AC:06:4E:ED:89
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B6B69E943E5DE4BD4EA28AE74881
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q0I4R3VfT6rykLTOXWU0rAZO7Yk.roa
Signing time: Mon 01 Jan 2024 12:30:07 +0000
ROA not before: Mon 01 Jan 2024 12:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211772
IP address blocks: 45.137.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b6:b6:9e:94:3e:5d:e4:bd:4e:a2:8a:e7:48:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab423847755f4faaf290b4ce5d6534ac064eed89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:da:84:03:47:01:a6:ec:3e:93:fc:cb:f1:da:
0c:0d:18:f6:6a:7f:e6:4f:1b:f0:93:ea:32:c9:3b:
8c:6c:18:7d:90:1e:0c:c3:70:9d:a3:7b:21:e0:90:
df:63:ad:31:38:36:77:59:59:cb:c4:21:8e:29:04:
4d:c6:d8:ed:8f:be:5d:67:9a:18:2a:9c:70:b5:df:
68:64:2a:e4:15:8e:22:39:58:15:d4:2f:ee:9c:da:
57:20:29:97:b6:e4:4f:9b:5d:75:59:79:4f:0e:da:
b8:5d:cc:eb:ca:4b:93:72:37:26:15:3f:95:e0:70:
63:34:ec:82:79:8b:83:0f:69:93:50:27:ad:97:5b:
0b:9d:7b:90:2b:c5:13:42:95:df:3d:41:e4:b6:c4:
79:ed:53:df:a8:24:02:d4:97:3d:7e:4f:32:52:6b:
37:d9:bd:b8:5c:8a:ae:62:10:e2:b8:72:4d:7e:e1:
b0:89:92:de:48:d1:05:c7:03:d3:99:41:86:52:68:
45:3f:c6:b9:f7:93:7f:58:46:cd:fd:ab:7b:f2:05:
25:50:7e:97:d6:0c:97:41:70:a2:48:d3:c0:63:e9:
65:1c:42:84:95:39:eb:dc:58:0c:2d:81:f4:80:50:
f0:02:0e:bb:45:68:5f:25:f1:7e:99:55:07:4d:22:
36:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:42:38:47:75:5F:4F:AA:F2:90:B4:CE:5D:65:34:AC:06:4E:ED:89
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q0I4R3VfT6rykLTOXWU0rAZO7Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/24
Signature Algorithm: sha256WithRSAEncryption
10:4c:d7:71:ba:b9:97:4d:1e:d3:5d:d6:40:59:91:e3:dc:54:
1b:14:aa:3f:ff:a7:bb:0f:0c:79:f5:bc:ec:4a:5d:a8:ba:3f:
c5:5c:66:da:c3:2f:ea:fa:90:4c:a8:63:ff:3a:c3:90:9d:a5:
f7:a6:21:bc:46:ef:02:2a:c7:c3:09:0e:6c:a3:89:0f:b1:d1:
ab:7f:98:1e:70:ff:2f:16:e4:6b:3a:f0:5c:1e:dd:4d:44:87:
d6:d8:6b:04:6b:6f:df:ae:96:83:82:03:46:c6:ba:0d:26:18:
f5:5d:1d:92:02:30:65:5c:36:e0:44:ea:4a:55:10:c8:e3:01:
82:3c:b4:71:80:c6:79:32:59:e6:d7:55:e4:12:a4:86:3e:fa:
71:62:2b:c6:e5:50:36:c5:5c:74:0d:51:27:5d:d4:b8:8c:e3:
f0:84:b3:42:e5:37:46:48:d4:46:72:fa:3e:78:a5:a5:f5:89:
b1:b7:64:5f:71:f0:42:71:1d:e3:83:67:c7:ef:5e:c7:95:8d:
62:72:0c:ab:8a:90:6f:21:b8:29:d9:d9:23:9b:cd:e4:6a:02:
ec:b8:e9:9e:96:1c:7f:ed:7c:ab:af:24:ba:2d:ee:ad:8f:32:
5a:d8:2d:2e:72:32:2e:74:86:8e:4d:d0:5f:be:f1:0c:44:a4:
b3:78:6e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org