Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/oyGDMzlVwwyBficmAD24dSVsTMg.roa
File: oyGDMzlVwwyBficmAD24dSVsTMg.roa (raw, json)
Hash identifier: O1Xaqf5jkOm2Cl93hQeolk/1ZZb1IASu3ZZqlOjwudo=
Subject key identifier: A3:21:83:33:39:55:C3:0C:81:7E:27:26:00:3D:B8:75:25:6C:4C:C8
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 018A97F992AC5E6494A40CED50B2B0347CC0
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/oyGDMzlVwwyBficmAD24dSVsTMg.roa
Signing time: Fri 15 Sep 2023 08:33:50 +0000
ROA not before: Fri 15 Sep 2023 08:33:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.66.93.0/24 maxlen: 24
45.66.94.0/23 maxlen: 23
37.44.228.0/22 maxlen: 24
192.145.52.0/22 maxlen: 24
192.145.53.0/24 maxlen: 24
192.145.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 09:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:97:f9:92:ac:5e:64:94:a4:0c:ed:50:b2:b0:34:7c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Sep 15 08:33:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a32183333955c30c817e2726003db875256c4cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:ec:c1:94:2f:bb:d6:da:38:87:e6:8f:db:
c0:d8:dd:d8:35:e0:47:ab:84:6a:82:b9:28:64:38:
a7:44:35:ae:9a:0c:9e:86:8a:3d:da:78:7f:7a:bf:
0d:20:1e:75:ef:3e:12:7f:33:99:04:c7:41:16:55:
98:5d:b8:35:52:df:a2:01:df:28:1c:54:5d:44:35:
d2:03:b8:e0:a5:3d:0b:03:62:b1:64:ac:7b:41:3c:
6e:b1:d3:bf:28:c7:94:09:d7:2c:d8:e6:3f:fc:d5:
93:26:4c:48:39:f0:9e:61:2e:4c:b7:87:43:f5:e3:
35:9f:01:c4:1c:b0:6b:64:e8:71:0c:7c:78:9b:6c:
58:21:44:b7:34:d3:5d:4f:3a:8a:37:c1:a3:cc:6a:
c6:6a:87:57:c0:9c:1c:dc:44:d2:45:f2:14:a0:88:
2b:d1:01:a0:f4:18:5e:79:c3:3e:23:42:77:e7:51:
35:e6:cd:b5:9b:40:f8:cc:fb:dc:db:4e:08:da:a4:
64:46:c1:e3:81:b5:50:1e:b5:e1:7f:15:f4:0a:aa:
3d:07:aa:d4:d6:8c:d3:48:fc:19:e8:62:e9:4d:bb:
19:ee:ee:4b:3e:bf:a6:54:44:70:f9:67:c2:01:22:
f2:d7:3f:56:3d:0c:d7:0a:23:6f:73:e8:3c:72:8a:
0d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:21:83:33:39:55:C3:0C:81:7E:27:26:00:3D:B8:75:25:6C:4C:C8
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/oyGDMzlVwwyBficmAD24dSVsTMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.228.0/22
45.66.93.0-45.66.95.255
192.145.52.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:91:da:f9:5d:6c:d1:b6:fc:c0:fd:4c:f3:2c:02:a0:ef:a5:
53:34:3a:fe:90:21:81:3e:27:10:e3:c5:d5:17:5a:d4:44:d8:
16:bc:c2:f9:d7:6b:a0:90:d0:1c:75:dc:53:ed:2d:b0:e9:42:
c4:cb:02:fd:ee:3f:6c:d3:6f:d2:ae:59:97:b4:15:05:43:93:
48:1d:2c:87:9f:63:e0:ae:0e:e3:7a:8d:a6:53:99:79:2b:56:
15:b8:61:8d:13:9b:9c:cc:3e:7b:bc:8a:61:af:09:cc:4a:57:
5b:33:d0:87:a7:36:bf:79:11:c1:b9:ca:f8:46:f8:d2:d0:31:
58:97:97:05:82:3c:b0:53:f8:f3:84:01:fb:5b:ca:96:cc:62:
9c:74:94:58:48:43:e8:d8:9a:aa:1d:84:59:ff:cf:34:b8:78:
3d:4a:b5:3c:e2:ba:2a:dc:58:0e:f7:67:cf:c7:f5:5f:8a:d9:
d1:ea:10:45:f6:d6:26:91:c2:fe:b8:f6:93:e7:f3:a4:96:14:
c6:09:f8:37:ab:a3:2f:c1:c8:3d:26:57:70:9e:3f:68:3b:b7:
77:42:e3:a8:6e:1a:f6:c9:01:a8:88:91:5a:19:ea:86:74:d6:
6d:08:f4:87:63:6b:27:f2:57:1e:d6:41:dd:be:64:5a:24:d3:
bd:d3:93:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org