Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/nqKWBguhSUa6j593f8s46vPD-pI.roa
File: nqKWBguhSUa6j593f8s46vPD-pI.roa (raw, json)
Hash identifier: Dy6iBhqi/9MNQ4xJZbYnNrcu17Q4Q321umMKRpg385c=
Subject key identifier: 9E:A2:96:06:0B:A1:49:46:BA:8F:9F:77:7F:CB:38:EA:F3:C3:FA:92
Certificate issuer: /CN=8bd4bcbf35db7fe2ef663522a5a3a3979a4f1ff8
Certificate serial: 018572033BD4FF0473EBA006FDBBCB2ABBE6
Authority key identifier: 8B:D4:BC:BF:35:DB:7F:E2:EF:66:35:22:A5:A3:A3:97:9A:4F:1F:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9S8vzXbf-LvZjUipaOjl5pPH_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/nqKWBguhSUa6j593f8s46vPD-pI.roa
Signing time: Mon 02 Jan 2023 10:24:52 +0000
ROA not before: Mon 02 Jan 2023 10:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60667
IP address blocks: 45.84.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:3b:d4:ff:04:73:eb:a0:06:fd:bb:cb:2a:bb:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd4bcbf35db7fe2ef663522a5a3a3979a4f1ff8
Validity
Not Before: Jan 2 10:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ea296060ba14946ba8f9f777fcb38eaf3c3fa92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:c6:84:0b:0e:e2:1d:c1:a1:7f:ee:be:81:3e:
07:39:03:9e:2c:29:81:20:ee:83:0b:06:80:6c:5b:
14:1e:0c:ca:49:db:75:95:0c:ac:f5:b6:bb:1a:f2:
29:96:83:a9:ce:d9:de:ed:35:47:bf:04:38:87:55:
fa:d8:e7:84:6e:a4:f0:b5:26:f2:68:a2:e9:e9:b6:
e2:ef:13:c6:53:f0:e4:90:c7:71:11:69:71:67:69:
2a:8b:1b:50:58:cc:96:d3:f9:e4:03:f9:c3:16:af:
ee:b5:d0:02:93:db:30:fc:e4:b0:dd:92:8c:43:e3:
79:1e:35:ed:b9:d6:d0:e9:25:fa:0a:61:dc:93:24:
01:ab:71:7b:ff:1e:59:b9:4e:57:80:9e:52:f5:02:
f6:e0:5a:89:c3:b1:2a:28:05:fe:4d:26:77:b8:67:
6a:fc:9f:96:7b:f8:f4:93:0e:e8:e7:ae:f4:41:8d:
93:6e:bc:7d:f6:76:be:46:84:a2:ec:da:15:7c:9e:
6b:3f:28:d8:53:16:e2:e8:32:33:4b:fd:6d:1f:66:
2b:6f:b8:6b:3b:f0:a7:10:35:96:21:8b:fa:3c:57:
f3:d4:d8:26:cc:0c:c1:45:bb:e4:24:48:4a:e3:8d:
d7:90:0e:0b:56:80:ff:e9:fb:17:f6:44:f3:d9:6f:
7a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A2:96:06:0B:A1:49:46:BA:8F:9F:77:7F:CB:38:EA:F3:C3:FA:92
X509v3 Authority Key Identifier:
keyid:8B:D4:BC:BF:35:DB:7F:E2:EF:66:35:22:A5:A3:A3:97:9A:4F:1F:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9S8vzXbf-LvZjUipaOjl5pPH_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/nqKWBguhSUa6j593f8s46vPD-pI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/i9S8vzXbf-LvZjUipaOjl5pPH_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.211.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:09:bd:0d:bf:6d:0b:f5:a9:0b:2c:06:b1:ef:0a:07:fa:68:
24:65:c7:2a:10:ec:84:ad:25:9a:03:db:df:cb:19:53:b8:c6:
99:1a:82:4e:92:18:ca:5c:43:8a:fd:94:19:f6:8d:ba:61:03:
18:b9:42:b2:6a:1b:9d:3f:17:ec:51:b8:72:bf:cb:74:50:cc:
e1:26:18:f2:ea:72:e0:a1:04:ea:d1:79:18:d6:ff:37:d8:16:
f6:d4:27:9e:5e:bb:e5:91:80:98:3d:06:50:73:8d:97:75:62:
5b:af:cc:8d:e9:36:a5:7e:80:a6:dc:ef:ce:73:c3:af:ac:03:
cf:6b:65:42:a7:e2:7c:47:53:37:44:37:dc:35:e9:fb:9c:89:
e8:6d:ed:2b:48:0e:ef:24:4c:89:f9:26:1b:cc:42:a4:bf:ed:
c0:bf:f1:ee:38:b8:95:e1:eb:6c:42:2f:5a:89:bd:ec:86:46:
db:1b:20:f1:38:15:fe:82:4a:03:81:22:38:57:8b:1d:7e:cb:
7b:58:c2:50:51:79:6d:98:02:86:7a:cb:44:97:19:62:b9:0f:
e1:3e:8c:38:8f:00:ea:0f:21:f3:1c:65:ab:2a:be:10:14:49:
bd:fb:c6:e9:6b:bd:fa:e5:b6:36:5c:08:fe:dd:aa:47:69:7f:
27:cd:c4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:51 2024 by rpki-client on console-ams.rpki-client.org