Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kisJjXXkPe8s67WIamHU9WoW87s.roa
File: kisJjXXkPe8s67WIamHU9WoW87s.roa (raw, json)
Hash identifier: U2MvjhWTMPo1pMSqZCS+nyl40VgLaHtS+OF66zxP7cw=
Subject key identifier: 92:2B:09:8D:75:E4:3D:EF:2C:EB:B5:88:6A:61:D4:F5:6A:16:F3:BB
Certificate issuer: /CN=787650d0951529b1a817232c12c42e49b889e1b8
Certificate serial: 018F9F6EB86FA9539D5ED74350FB5BC06449
Authority key identifier: 78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kisJjXXkPe8s67WIamHU9WoW87s.roa
Signing time: Wed 22 May 2024 08:33:04 +0000
ROA not before: Wed 22 May 2024 08:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.150.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 08:19:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:6e:b8:6f:a9:53:9d:5e:d7:43:50:fb:5b:c0:64:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787650d0951529b1a817232c12c42e49b889e1b8
Validity
Not Before: May 22 08:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=922b098d75e43def2cebb5886a61d4f56a16f3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:33:62:08:1e:9b:57:ca:fe:1c:ad:d7:70:54:
55:45:1d:a7:70:e7:ab:c5:9a:ee:bc:0b:64:fd:10:
ca:65:1a:d2:a6:4b:76:08:8d:71:d6:31:d8:9d:a6:
6b:d8:2e:1d:7c:17:d3:ca:de:09:cc:33:46:51:11:
26:2c:59:69:95:fa:84:95:2b:f3:c2:98:a0:ee:fd:
9e:8d:12:90:03:d9:80:d2:2f:c5:81:6b:24:09:d3:
f6:fe:bc:f6:41:18:2d:29:84:f9:71:8a:22:73:9c:
65:35:7b:be:3f:fd:a1:d7:be:21:47:69:47:df:9c:
dc:05:00:33:17:9e:ba:85:f2:41:78:00:a2:47:84:
2b:56:b7:69:39:c2:5f:46:7f:68:83:8a:f6:da:a5:
85:ed:cd:78:48:e4:91:20:50:bf:28:cf:aa:1b:17:
f4:7e:46:74:55:81:37:0b:1d:61:42:d8:41:26:e9:
81:84:3e:ea:3b:66:d7:2e:be:51:a0:4d:5a:2f:ba:
cb:ff:3f:6c:33:66:8b:84:48:01:28:00:1a:39:a1:
32:d4:c2:43:ea:fa:20:03:06:a9:49:cd:b0:7a:a1:
9a:c1:39:f4:70:f9:81:0d:22:ba:6b:30:96:22:5c:
27:ce:a4:5d:8c:31:57:6a:30:a4:90:e1:13:68:4d:
80:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2B:09:8D:75:E4:3D:EF:2C:EB:B5:88:6A:61:D4:F5:6A:16:F3:BB
X509v3 Authority Key Identifier:
keyid:78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kisJjXXkPe8s67WIamHU9WoW87s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0b:6c:47:ce:b3:e1:55:5a:01:bf:c3:d4:e1:d5:cc:3a:49:
70:7b:6d:6b:67:90:9a:ce:13:8e:e6:a6:18:b6:0e:50:e7:bb:
fb:ca:e7:64:49:a4:91:20:9f:d9:70:b5:1b:28:7a:96:d0:03:
79:da:72:11:f3:06:d1:01:ca:6b:c8:24:65:79:d9:0d:1d:6b:
28:13:cf:af:8f:a4:57:bd:3c:65:89:28:f9:88:a5:ef:8a:1a:
87:22:8a:6f:d5:30:e9:2d:c4:5e:a0:63:e4:1e:de:70:03:5c:
83:af:5e:d9:2f:fe:1e:e1:c1:95:37:d6:47:a9:c0:d6:a1:43:
35:5b:9e:05:b1:fc:50:1a:38:b5:5c:82:5f:ac:5e:9a:c0:a9:
c3:80:53:ad:e5:89:f9:34:c1:aa:c3:c0:85:19:02:9d:6d:8d:
34:21:a5:b1:08:eb:6d:e3:39:42:82:61:1f:67:34:23:0c:93:
69:33:1d:ce:fd:55:db:38:5f:3c:16:6a:94:31:cb:2f:7c:15:
33:30:11:9b:8e:66:0c:9f:6c:2a:5e:3e:8f:cc:d6:fc:c2:08:
59:49:1a:fa:6a:dd:4f:ce:19:5d:1b:26:81:a3:cb:29:a4:a8:
4c:ed:d6:0f:c3:34:96:d7:3d:a2:9a:e5:1c:9f:0e:e5:c7:9f:
4b:17:b4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:33 2024 by rpki-client on console-fra.rpki-client.org