Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/CoMFm_UvOQR4FbSYZKl7mw5L8gw.roa
File: CoMFm_UvOQR4FbSYZKl7mw5L8gw.roa (raw, json)
Hash identifier: YlniQT7c6UJj4WnNp0JnV8EOsLDWBNe8MRTrZI/GK4I=
Subject key identifier: 0A:83:05:9B:F5:2F:39:04:78:15:B4:98:64:A9:7B:9B:0E:4B:F2:0C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018EE12BC961962639887B6D0B142FA6B6CE
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/CoMFm_UvOQR4FbSYZKl7mw5L8gw.roa
Signing time: Mon 15 Apr 2024 09:52:06 +0000
ROA not before: Mon 15 Apr 2024 09:52:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 45.90.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 08:43:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:2b:c9:61:96:26:39:88:7b:6d:0b:14:2f:a6:b6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 15 09:52:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a83059bf52f39047815b49864a97b9b0e4bf20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1b:e8:ba:20:a6:fa:8b:af:76:17:71:bd:9b:
6c:9e:c7:28:30:a0:73:ea:fc:86:79:ac:34:36:4c:
a4:b3:82:49:d1:d1:bf:eb:50:8a:51:ac:0b:2d:e1:
fb:7c:d5:90:4d:5e:55:bc:35:e7:88:82:fb:f2:f2:
6e:10:8b:10:01:ff:34:66:81:e1:99:be:14:fa:91:
9c:48:85:67:2e:3e:52:43:3a:6a:fa:1a:63:d4:8d:
9b:0f:fa:76:0f:4c:53:54:e7:2e:ec:08:d2:c5:f5:
79:c3:97:5f:f9:21:6e:a1:67:b1:bc:07:cf:9f:52:
a6:15:ef:2c:63:f2:eb:df:1d:e1:ca:65:88:50:36:
b8:0b:73:59:e8:9d:a6:2f:87:33:6e:1e:0e:4a:1e:
42:1d:b3:0e:ee:a0:af:1c:81:6a:54:00:3d:8f:65:
8a:db:03:83:26:6f:9f:c2:ad:d6:a0:01:58:87:a1:
d2:36:14:fc:b9:5e:b5:fe:1a:6d:15:28:ee:6a:10:
99:0d:45:eb:48:5c:58:2a:40:d3:ac:da:4b:1a:90:
08:88:04:71:76:b0:af:2e:8c:40:b2:d1:67:c9:1a:
1c:e8:ed:7e:a1:a5:5d:ac:7b:d6:5a:6b:17:17:d5:
1a:f3:7b:06:31:ec:44:e8:83:6e:3d:f5:cf:df:83:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:83:05:9B:F5:2F:39:04:78:15:B4:98:64:A9:7B:9B:0E:4B:F2:0C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/CoMFm_UvOQR4FbSYZKl7mw5L8gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:a7:d5:50:9e:e5:8e:f9:c4:b5:73:35:96:9f:4b:1b:7a:17:
d0:b2:cb:83:b5:96:a7:75:50:65:92:ee:7a:b4:99:d7:08:17:
26:8c:95:99:ff:06:c5:6e:22:30:fd:c4:f8:39:b4:9f:3a:8c:
1f:8e:9b:a7:d0:ab:26:d8:53:dd:d3:a2:66:11:2c:1a:cd:7f:
31:a7:49:03:ef:89:ed:bc:b1:7c:71:65:f8:fd:79:b8:84:8a:
34:e3:d6:2a:e7:3e:69:27:bc:60:e6:12:a6:42:64:b3:17:ac:
dc:60:25:5e:2c:f9:ff:e6:e2:3c:63:a2:ba:8a:97:8d:ed:61:
4d:7f:eb:4c:dd:4c:9e:79:b4:4b:b8:d7:ff:df:da:9a:b0:4b:
37:30:f4:5d:a4:10:b6:db:f4:0c:a5:43:76:bd:da:70:d9:d1:
f3:86:47:e1:3b:0d:1a:b1:7b:93:1e:c3:69:a7:db:98:74:03:
eb:80:fd:69:57:13:2c:d3:39:35:64:e9:3f:7e:1c:7b:2c:d0:
0b:47:01:c1:b6:c5:cf:1b:06:79:f5:f4:2b:5b:b4:15:ef:1a:
17:6b:3f:b7:70:90:4b:88:18:bd:dd:b4:11:71:0e:77:2d:50:
8e:f8:7a:11:ae:1a:86:da:a4:cd:43:53:07:c1:45:ad:fc:8f:
7d:62:37:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 10:56:28 2024 by rpki-client on console-fra.rpki-client.org