Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/rwQyoJoTlMM8pPXiybWNe34nsVM.roa
File: rwQyoJoTlMM8pPXiybWNe34nsVM.roa (raw, json)
Hash identifier: WQwOXrb+mIRjJH/ealuJ/Npf+xiQLM+eBfFycjr8wzM=
Subject key identifier: AF:04:32:A0:9A:13:94:C3:3C:A4:F5:E2:C9:B5:8D:7B:7E:27:B1:53
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 0185707974A0AB0CE732C3078F6303E3AAA9
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/rwQyoJoTlMM8pPXiybWNe34nsVM.roa
Signing time: Mon 02 Jan 2023 03:14:45 +0000
ROA not before: Mon 02 Jan 2023 03:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208094
IP address blocks: 45.141.55.0/24 maxlen: 24
2a05:4741:20::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:74:a0:ab:0c:e7:32:c3:07:8f:63:03:e3:aa:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af0432a09a1394c33ca4f5e2c9b58d7b7e27b153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3f:25:6f:e0:d7:a3:33:0a:46:e3:af:eb:c5:
5d:31:62:65:4c:ae:2d:c9:8d:d2:f6:eb:d0:86:bb:
ed:15:f7:d7:b0:d6:9c:63:98:44:c5:64:f5:eb:e0:
04:f2:f4:a4:11:45:76:cc:fb:5f:7e:f1:42:68:66:
74:92:96:31:99:b2:3c:f9:f0:a0:6f:9e:c5:b5:99:
30:e6:14:b9:ab:c8:ca:9f:28:8b:12:7c:8e:13:4b:
20:cd:2a:e7:a3:7e:21:4c:71:fd:30:af:4a:d0:2e:
47:6c:c8:52:12:4c:26:8a:2d:83:1b:bd:21:ed:6a:
d9:c0:e6:a3:d5:79:26:53:c3:8e:5b:4e:2c:24:2c:
24:f4:6f:86:de:db:4a:bc:52:eb:ad:b3:99:e0:94:
02:85:62:47:cf:e5:a3:cd:5b:87:63:7c:86:2b:76:
c7:b2:64:84:0f:57:25:61:ad:0c:1f:49:0c:c2:c2:
d9:e4:97:e7:06:7e:1e:e2:27:96:e5:7e:48:42:d1:
26:b0:df:f8:10:0e:37:e6:51:a6:b9:04:71:1c:2f:
9a:8d:d7:fc:86:b6:bd:77:a5:a0:ff:61:a6:65:17:
79:5c:b8:7c:71:b8:ae:17:37:d7:bc:87:d1:45:b9:
16:04:86:9d:33:07:ec:1c:8f:68:42:49:5a:1f:6a:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:04:32:A0:9A:13:94:C3:3C:A4:F5:E2:C9:B5:8D:7B:7E:27:B1:53
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/rwQyoJoTlMM8pPXiybWNe34nsVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.55.0/24
IPv6:
2a05:4741:20::/48
Signature Algorithm: sha256WithRSAEncryption
55:d3:cf:bb:e8:0c:c2:45:ae:cb:67:4f:93:85:a6:5d:11:ca:
d9:43:5e:2e:4b:44:6f:c4:8b:08:f4:de:e2:bc:e7:34:be:79:
51:86:73:7a:d8:b5:dc:8d:97:14:0e:1a:da:58:27:60:c0:d1:
73:f8:37:01:a0:1b:7a:c9:30:d9:94:49:da:fb:fd:1d:ca:6c:
c8:ec:93:1f:9a:51:a4:e7:c9:25:5e:a6:fc:2b:3e:f1:f0:af:
52:98:9c:66:25:aa:b5:6d:f4:b7:d9:87:11:53:4e:8d:de:d0:
69:db:7c:4f:4e:46:87:14:40:74:99:bf:e1:36:db:0f:40:c1:
54:20:b9:61:ed:37:69:0c:d2:7d:c7:0d:85:45:43:fe:e5:f3:
06:cf:5c:5b:64:9e:ca:66:1c:40:88:ea:5a:6d:9a:7a:fc:fc:
8d:18:04:d3:73:c4:fd:a1:c3:dd:76:bd:7c:4e:96:02:4b:cf:
7e:4c:bc:0e:6b:a3:55:73:b4:31:4c:2f:2b:bb:f3:7c:3b:28:
23:b2:68:46:64:0c:de:33:cd:a4:ff:ec:43:9a:89:ea:58:95:
27:05:ae:e9:f7:21:dc:a1:e3:fe:70:d9:32:7c:c8:46:b8:33:
89:54:a7:c4:dd:56:ae:bc:97:c6:48:8c:a0:dd:ac:9c:c7:a8:
9e:2e:ab:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org