Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d0cc41-c8f1-4a44-91f0-d1a4599cb0e5/1/CmTRau7SIJac6LF6vP8M7dZ5b6Q.roa
File: CmTRau7SIJac6LF6vP8M7dZ5b6Q.roa (raw, json)
Hash identifier: vM0nC/MQtn1eBLwYdBBQcelLiS9mnsv9Y3OkSyUJBZE=
Subject key identifier: 0A:64:D1:6A:EE:D2:20:96:9C:E8:B1:7A:BC:FF:0C:ED:D6:79:6F:A4
Certificate issuer: /CN=f7d32e75294187d46e8eae0f8fe72b5fd7abf886
Certificate serial: 018E51D3490D17613DDB00868C9FB93BE1AF
Authority key identifier: F7:D3:2E:75:29:41:87:D4:6E:8E:AE:0F:8F:E7:2B:5F:D7:AB:F8:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/99MudSlBh9Rujq4Pj-crX9er-IY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d0cc41-c8f1-4a44-91f0-d1a4599cb0e5/1/CmTRau7SIJac6LF6vP8M7dZ5b6Q.roa
Signing time: Mon 18 Mar 2024 13:49:45 +0000
ROA not before: Mon 18 Mar 2024 13:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215424
IP address blocks: 45.14.76.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 18 Mar 2024 23:23:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:d3:49:0d:17:61:3d:db:00:86:8c:9f:b9:3b:e1:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7d32e75294187d46e8eae0f8fe72b5fd7abf886
Validity
Not Before: Mar 18 13:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a64d16aeed220969ce8b17abcff0cedd6796fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:d0:27:0e:44:a9:3c:c0:42:cd:95:c0:23:
11:4a:2f:33:48:4e:ac:15:6d:da:11:64:c9:98:68:
ea:6a:4e:05:74:18:53:a1:14:3b:58:6a:2c:88:32:
e2:37:cb:86:6b:f6:4d:4f:a3:7b:cc:9b:31:6c:d4:
6a:49:ab:3e:b3:67:0f:d4:ac:0c:10:06:e8:6e:e5:
2b:de:0e:90:52:86:4b:80:33:7e:00:45:67:8b:2d:
e1:ff:ca:f2:06:1c:5d:08:ba:dd:96:ca:8e:f4:f4:
e1:04:70:d9:b0:92:13:c7:3b:71:14:03:31:db:f3:
08:cb:54:7f:2f:cf:a3:4b:7b:04:1b:b5:20:f8:9d:
0f:65:cc:9d:68:df:8a:c8:9a:bc:8b:3b:7a:62:5d:
91:3d:8b:75:35:33:c0:5c:09:a1:8a:6a:c9:0e:bc:
7b:c7:3b:89:8a:09:bd:6a:49:6e:9b:d3:f1:a6:1f:
ee:e7:31:19:9a:d1:2a:5c:13:f2:70:19:ed:d4:70:
af:8d:24:f7:6d:b3:9f:1e:9d:1d:71:32:75:08:7a:
1d:a9:ff:ff:37:04:f3:a6:c5:a6:d6:2f:fc:45:53:
84:b4:08:a5:ca:50:05:12:ae:20:a3:ce:b4:ab:13:
f9:3c:06:fa:8b:e0:33:be:32:9b:ff:7a:e7:85:ac:
8d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:64:D1:6A:EE:D2:20:96:9C:E8:B1:7A:BC:FF:0C:ED:D6:79:6F:A4
X509v3 Authority Key Identifier:
keyid:F7:D3:2E:75:29:41:87:D4:6E:8E:AE:0F:8F:E7:2B:5F:D7:AB:F8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/99MudSlBh9Rujq4Pj-crX9er-IY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d0cc41-c8f1-4a44-91f0-d1a4599cb0e5/1/CmTRau7SIJac6LF6vP8M7dZ5b6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d0cc41-c8f1-4a44-91f0-d1a4599cb0e5/1/99MudSlBh9Rujq4Pj-crX9er-IY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.76.0/22
Signature Algorithm: sha256WithRSAEncryption
93:61:96:da:5f:00:87:58:67:43:b9:3b:3b:ed:f1:8a:39:f7:
36:cf:0d:77:36:a4:53:70:ec:1e:c2:86:aa:93:0b:c3:0a:76:
6b:6f:f1:21:1d:13:c3:55:96:6f:f1:9d:94:8d:36:3d:70:3a:
71:f8:d0:7d:7d:27:4b:34:47:cb:6e:6d:fb:1a:c3:83:1c:49:
b2:b9:b8:33:ee:d7:87:41:51:70:7b:ba:26:67:7e:cb:62:90:
a9:29:1a:f3:c3:24:53:4b:29:8f:3b:5f:2b:1e:40:b7:d5:cc:
4c:6e:2c:22:ab:46:d9:11:c0:68:9e:df:fc:57:df:d1:3c:83:
cd:5c:04:bb:0a:4c:83:95:b7:8b:30:93:ec:b0:7b:01:94:8e:
f3:54:3a:64:2a:4a:82:8f:b1:81:fc:66:07:23:9f:35:48:4e:
12:b4:a2:e8:bf:70:ae:db:5c:97:93:ee:70:6c:0c:15:91:d0:
7f:ce:46:bb:ae:f2:7d:12:3f:27:88:ed:50:7b:b5:38:c7:94:
c3:f7:aa:f0:3b:b0:20:78:50:32:66:9d:70:15:dd:4f:c5:3f:
e6:db:44:d9:1b:06:3c:dc:22:4c:18:b8:28:25:a2:40:4c:94:
7f:6e:38:bb:5d:f2:2b:6e:17:65:33:44:a2:05:08:e6:3b:7d:
3f:c6:16:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org