Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/r9GAAmJLYmthZ3nHr12obu5SGmE.roa
File: r9GAAmJLYmthZ3nHr12obu5SGmE.roa (raw, json)
Hash identifier: EftTXar43N7PxFi3tHGYYKffQ4kLU9cKoQ0tBw/Y11E=
Subject key identifier: AF:D1:80:02:62:4B:62:6B:61:67:79:C7:AF:5D:A8:6E:EE:52:1A:61
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 0190937545144ECE2520A9B8AAB0B990BC0C
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/r9GAAmJLYmthZ3nHr12obu5SGmE.roa
Signing time: Mon 08 Jul 2024 17:47:34 +0000
ROA not before: Mon 08 Jul 2024 17:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.84.114.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 06:15:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:75:45:14:4e:ce:25:20:a9:b8:aa:b0:b9:90:bc:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jul 8 17:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afd18002624b626b616779c7af5da86eee521a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:78:97:fc:5a:02:9b:85:5e:7f:5f:66:1c:
cd:b0:b9:33:2f:65:cf:2a:c2:48:1a:8c:f0:ee:78:
3b:4c:79:54:c8:47:be:f8:5f:79:2d:f9:12:82:a9:
87:b4:02:59:f8:06:dd:b3:ca:12:41:a4:32:f7:e6:
8c:6c:53:86:d6:9b:57:7e:e1:3b:fc:46:26:ca:ac:
4c:24:ef:91:f4:99:51:2e:0b:58:cf:4f:89:8d:d9:
66:ab:bc:54:fa:33:69:85:fe:b0:49:4b:3c:7d:58:
ab:5a:d0:b1:f5:a7:90:5a:52:21:33:2a:87:3f:1a:
5f:27:80:52:38:12:5e:92:b6:b4:6a:4b:78:b7:80:
bb:a4:2b:b8:51:2f:82:20:f2:92:79:9e:af:0b:6a:
26:e5:b0:32:f6:92:70:73:46:66:24:eb:e4:b7:d7:
d9:09:4b:86:d0:f1:43:51:08:69:7e:13:0d:99:af:
85:e9:56:c7:4e:6b:df:13:4f:f3:6c:9d:2c:e3:ed:
77:85:8c:70:e2:2e:95:48:a6:f7:f7:1c:fe:6c:91:
47:3f:ec:db:44:e5:be:ca:82:ea:1d:5e:45:ed:4b:
07:33:39:ca:01:b6:d3:fd:d5:25:ad:f7:45:67:b8:
4c:e9:4c:5e:e1:e6:14:4c:20:48:b0:0c:84:4d:bb:
39:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D1:80:02:62:4B:62:6B:61:67:79:C7:AF:5D:A8:6E:EE:52:1A:61
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/r9GAAmJLYmthZ3nHr12obu5SGmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.114.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:d0:a5:c2:dd:97:d5:80:08:7f:28:36:4f:ca:eb:53:7a:4c:
94:ea:53:82:4c:0c:b5:52:ba:0e:22:13:73:ac:19:1e:8b:37:
a2:fe:d7:91:78:eb:4c:6c:8d:b0:97:c7:fa:76:76:cc:57:96:
cd:b9:dd:5c:a4:e3:c3:64:98:c8:d6:36:ba:aa:ab:3f:61:37:
5c:52:28:b0:d2:9f:07:5c:14:e6:3b:69:01:18:a6:03:42:4d:
5c:db:63:0a:34:17:e1:b9:18:79:18:b3:4c:d1:f3:b3:0a:82:
ea:64:09:26:55:d7:17:aa:e7:2f:09:ac:3e:c3:47:d1:69:b1:
92:8c:88:8e:c5:73:20:5e:23:d9:65:5a:dc:13:bf:c4:69:57:
19:85:bb:ab:60:8f:c1:05:c6:a8:cd:3b:c7:a7:24:c2:88:dc:
60:93:83:b3:35:ca:7e:a5:72:69:e0:e3:77:36:fb:50:19:a2:
b5:36:c1:b5:81:42:5a:de:68:43:32:25:b3:9c:5f:c1:e5:aa:
ea:b5:cf:70:db:3e:b8:72:eb:db:c3:0c:ce:1f:f4:f4:09:ee:
9b:78:af:50:a7:ca:92:a5:d9:02:80:78:41:6a:87:5c:36:39:
67:1c:7b:c2:c5:52:e0:cf:ae:16:ac:c0:f4:d7:53:34:8a:4b:
95:b8:84:65
-----BEGIN CERTIFICATE-----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Generated at Sun Sep 8 07:49:34 2024 by rpki-client on console-fra.rpki-client.org