Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/iFHYgg9h6ruXTzLFNAIP9-ryMes.roa
File: iFHYgg9h6ruXTzLFNAIP9-ryMes.roa (raw, json)
Hash identifier: t0VcIOXeDC1jvidDIHq+7ktooM7sV0QAr8Z/gib04Cc=
Subject key identifier: 88:51:D8:82:0F:61:EA:BB:97:4F:32:C5:34:02:0F:F7:EA:F2:31:EB
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 018571FA2E0BE0147A12D2DBD44663C92D11
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/iFHYgg9h6ruXTzLFNAIP9-ryMes.roa
Signing time: Mon 02 Jan 2023 10:14:59 +0000
ROA not before: Mon 02 Jan 2023 10:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 145.46.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 11:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:2e:0b:e0:14:7a:12:d2:db:d4:46:63:c9:2d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Jan 2 10:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8851d8820f61eabb974f32c534020ff7eaf231eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:81:9d:cf:f3:50:bf:9f:68:94:cd:31:b1:d5:
1b:1c:24:48:6f:be:16:ed:43:d5:37:c9:8d:26:d3:
2a:5e:60:7c:24:83:d1:b4:68:a2:53:ba:9d:55:34:
6c:e9:a8:19:1a:1e:f4:60:96:b2:78:0a:aa:b3:c4:
ba:97:54:1e:23:72:16:a0:d9:d9:fe:06:ef:bb:93:
97:be:0d:27:09:8b:00:9c:c0:7d:a4:f6:39:e5:4c:
59:bc:7e:37:b7:30:aa:86:07:8e:9e:51:77:03:f8:
1e:b2:51:f6:08:fe:83:19:5b:b6:9e:84:3e:9a:7a:
00:51:36:a5:08:ae:6e:da:fe:ce:2c:0f:d2:8f:63:
a4:8a:03:f6:05:49:83:de:be:48:c9:f1:f3:79:eb:
d1:5a:5b:fa:f6:a9:ba:23:f1:5c:51:f4:de:82:35:
c5:9f:4a:d6:94:d0:20:d3:e6:b7:49:77:f4:c0:45:
a5:1e:25:db:85:bc:c5:e4:57:6e:07:f8:a1:32:09:
e5:cc:f5:85:63:e9:d0:91:c6:a7:f5:d1:e8:75:ff:
fb:c0:51:ef:f9:5b:35:8e:14:a6:a0:12:cf:2c:01:
70:ed:09:17:06:64:86:1e:53:a6:10:40:3d:ba:e9:
74:33:b8:7f:72:67:81:97:c2:78:79:9b:0a:ed:df:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:51:D8:82:0F:61:EA:BB:97:4F:32:C5:34:02:0F:F7:EA:F2:31:EB
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/iFHYgg9h6ruXTzLFNAIP9-ryMes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.46.168.0/24
Signature Algorithm: sha256WithRSAEncryption
84:5a:f4:ae:6f:90:1b:f5:c4:cb:ed:fa:5a:40:1f:ed:c9:8b:
e1:ac:e6:d5:c1:54:60:28:9f:08:e1:2b:a9:46:1d:a8:db:1d:
7c:24:2b:9c:38:fa:3b:ee:6d:81:40:66:34:5f:b7:78:46:8d:
ab:e7:ab:f0:ee:a6:f8:13:98:b7:db:97:5f:e7:b9:a6:f8:da:
2f:67:40:dc:e2:90:81:f0:04:dd:ea:b1:bb:75:09:d5:10:52:
00:7a:b6:9f:e0:2d:d3:81:74:6d:02:9f:87:cf:47:8f:73:fd:
bd:49:58:de:59:ff:77:30:0f:25:28:a0:ec:bf:4b:ae:50:f1:
7f:d0:39:d5:1e:fb:04:9e:3f:11:e8:3f:35:ec:1f:49:67:8f:
28:19:5d:15:78:db:77:64:9c:83:30:9d:11:35:d6:58:0e:28:
b5:bc:04:32:c5:c4:15:dc:0a:0c:dd:93:34:c3:89:a8:a4:37:
01:97:e3:e6:b4:3f:f4:ba:e2:86:f4:87:a3:e3:57:f6:dc:2b:
90:86:08:95:a9:92:22:b2:b1:65:e1:c9:5a:bc:2b:93:dd:58:
1a:08:64:89:22:2e:b0:57:c0:8c:88:21:bb:1c:81:31:b9:8c:
d4:bf:13:a1:1b:f7:d3:74:fd:d3:47:19:20:93:e9:cf:62:44:
95:be:32:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:20 2024 by rpki-client on console-ams.rpki-client.org