Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/O9p5HeOAEF85qssxMHaAfU6IRLk.roa
File: O9p5HeOAEF85qssxMHaAfU6IRLk.roa (raw, json)
Hash identifier: /WPyhhiUsB4M4A5PbUQfJssbLNYG2utBHMO2Un+jJDw=
Subject key identifier: 3B:DA:79:1D:E3:80:10:5F:39:AA:CB:31:30:76:80:7D:4E:88:44:B9
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018C645A91DC81EA62573E5192AF576565B5
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/O9p5HeOAEF85qssxMHaAfU6IRLk.roa
Signing time: Wed 13 Dec 2023 18:05:06 +0000
ROA not before: Wed 13 Dec 2023 18:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216308
IP address blocks: 45.15.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:5a:91:dc:81:ea:62:57:3e:51:92:af:57:65:65:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 13 18:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bda791de380105f39aacb313076807d4e8844b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:9a:5f:71:7e:68:0c:d5:dc:91:f9:99:a6:
4e:a9:4c:53:2a:1e:6d:7e:c7:67:be:7c:ba:a9:9a:
01:93:10:91:85:cd:a2:22:69:f7:fc:29:45:6d:25:
e2:a3:bb:a3:da:9f:b4:26:2b:cd:de:06:48:87:8c:
5b:b6:52:94:6b:65:75:03:6c:3a:86:b6:c1:e3:f4:
a8:be:5e:5b:70:3e:e4:b1:02:27:bb:0d:2c:c8:58:
33:dc:2c:d3:8c:4b:95:e9:0a:13:fb:15:0f:c3:72:
99:a8:a9:ef:b0:2b:cb:4f:19:97:ff:05:9d:ab:13:
dc:79:23:b8:b1:52:4e:57:e0:4d:ab:52:af:88:3a:
c2:45:84:a4:a7:65:e1:40:a2:2e:1b:bb:27:ba:8e:
ab:a6:fb:44:69:63:42:30:a4:28:99:68:80:2f:d3:
57:29:29:b6:86:bf:e4:b1:1c:af:f7:10:0c:6b:dd:
97:38:43:eb:f2:d9:6e:be:37:e3:c9:9e:17:0f:b5:
0d:80:46:c4:7e:e9:06:e8:d8:79:f6:58:1b:1f:c2:
b7:fe:ab:69:e1:64:63:28:78:63:15:a3:c0:f6:e0:
c3:03:2e:af:75:d0:d8:5b:b5:00:db:e3:13:f4:6e:
f4:6f:00:9e:03:67:4f:07:ec:fd:18:85:3a:8d:77:
76:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DA:79:1D:E3:80:10:5F:39:AA:CB:31:30:76:80:7D:4E:88:44:B9
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/O9p5HeOAEF85qssxMHaAfU6IRLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.177.0/24
Signature Algorithm: sha256WithRSAEncryption
14:d4:2b:4c:34:d8:81:aa:5d:b5:76:16:a1:12:5c:f5:c6:8d:
60:8b:6e:e2:5e:b0:fc:7e:99:ce:3a:25:d9:5e:d5:b7:fb:88:
3d:1f:38:94:a8:bd:e4:75:18:0d:ba:8b:5c:39:f7:ba:75:d6:
bf:ee:3e:8b:dc:80:9c:5a:d9:c1:b1:36:f5:3a:d9:7e:82:ce:
b5:5c:67:8a:2c:07:f4:e6:fc:3c:3f:d2:2d:4e:c9:24:fb:57:
af:d8:de:b4:86:26:a1:df:86:ce:42:e3:bd:38:20:bb:82:4d:
cb:da:68:4c:24:94:67:81:58:5a:8e:21:2f:fd:82:10:10:5b:
4e:63:36:f5:df:3f:d7:94:31:ca:3f:81:a1:96:ec:5b:b4:09:
9d:29:7b:d3:ef:ca:e7:2e:2f:c8:5d:e9:fa:c0:d4:63:93:bc:
b9:04:c0:83:d3:6a:78:ff:77:21:d1:43:4a:72:e7:9f:a4:a2:
61:35:2b:8c:96:f6:2e:71:bd:8e:e3:c6:08:21:fc:d9:d2:ba:
c9:4d:17:38:ae:5d:34:fa:32:66:5e:85:6d:5c:d5:40:e8:3d:
de:32:c6:23:a6:c2:3c:6f:bf:83:88:4d:66:69:e8:98:89:6c:
11:b1:6e:8d:2d:19:82:9d:1e:86:9c:b8:70:18:57:68:e0:b9:
2e:f5:a8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:20 2024 by rpki-client on console-ams.rpki-client.org