Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/v_9QZCfsASZT_ud1c4j7tYTMIh4.roa
File: v_9QZCfsASZT_ud1c4j7tYTMIh4.roa (raw, json)
Hash identifier: 1NUcZzkJWanZXt3Y4JBLQzfMqGenI2os+d3KYXJbB+c=
Subject key identifier: BF:FF:50:64:27:EC:01:26:53:FE:E7:75:73:88:FB:B5:84:CC:22:1E
Certificate issuer: /CN=061474cecdf5f503adab60fc55ee7f78a0dba9f2
Certificate serial: 018CC3B6AA5F4ABB840094234CE2946413B4
Authority key identifier: 06:14:74:CE:CD:F5:F5:03:AD:AB:60:FC:55:EE:7F:78:A0:DB:A9:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhR0zs319QOtq2D8Ve5_eKDbqfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/v_9QZCfsASZT_ud1c4j7tYTMIh4.roa
Signing time: Mon 01 Jan 2024 06:29:37 +0000
ROA not before: Mon 01 Jan 2024 06:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208925
IP address blocks: 45.14.250.0/24 maxlen: 24
45.14.249.0/24 maxlen: 24
45.14.248.0/24 maxlen: 24
45.14.248.0/22 maxlen: 22
45.14.251.0/24 maxlen: 24
2a12:d340::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 22 Mar 2024 11:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:aa:5f:4a:bb:84:00:94:23:4c:e2:94:64:13:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061474cecdf5f503adab60fc55ee7f78a0dba9f2
Validity
Not Before: Jan 1 06:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfff506427ec012653fee7757388fbb584cc221e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:cc:e3:5e:42:ee:db:10:42:6a:db:5b:f9:
4c:02:8d:10:df:65:1e:62:6d:70:80:bd:6d:27:23:
2f:09:6f:e1:bb:c9:9d:b8:70:9d:5a:3f:04:d3:e1:
ed:13:83:07:56:09:be:82:51:16:8c:bc:f4:ba:0d:
56:be:3b:84:c4:50:96:ef:67:63:4a:cf:51:d2:5f:
c9:0d:50:d4:d8:77:c4:5f:40:9c:a8:39:15:fd:c2:
0c:74:6a:c8:a1:32:7d:20:94:43:b0:c0:bc:01:9a:
80:89:ae:43:5b:27:00:cd:72:5c:91:97:6b:0e:56:
f0:c6:e9:94:0a:65:20:cd:b8:e0:ee:e2:38:b7:06:
88:08:69:a1:1e:1a:7b:2e:7e:ec:9b:00:71:67:a8:
94:2c:8e:5b:e0:b4:65:fd:a8:23:2e:b8:20:9c:cb:
7d:a4:4a:8c:7c:d8:de:7d:d5:9f:e1:6a:07:81:43:
2f:82:ff:cc:68:f5:62:f1:14:73:19:0b:a5:27:87:
7c:7d:26:97:69:6e:1e:46:ad:cd:26:32:a7:d7:e7:
47:76:fe:4e:ca:92:8d:f9:86:4b:14:e6:ac:f9:d2:
79:f9:74:b5:b3:d6:10:01:a8:60:5f:90:6f:20:0c:
6d:d0:42:0a:b5:b7:98:92:1f:7b:1c:e5:06:6f:b5:
a3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FF:50:64:27:EC:01:26:53:FE:E7:75:73:88:FB:B5:84:CC:22:1E
X509v3 Authority Key Identifier:
keyid:06:14:74:CE:CD:F5:F5:03:AD:AB:60:FC:55:EE:7F:78:A0:DB:A9:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhR0zs319QOtq2D8Ve5_eKDbqfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/v_9QZCfsASZT_ud1c4j7tYTMIh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/BhR0zs319QOtq2D8Ve5_eKDbqfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.248.0/22
IPv6:
2a12:d340::/29
Signature Algorithm: sha256WithRSAEncryption
80:de:7b:a3:c7:d9:68:af:53:da:43:cf:d6:f3:cb:35:f0:fd:
b1:1f:5a:f7:17:54:39:1e:c2:b1:83:2d:a0:16:b4:b5:28:76:
42:81:63:af:a0:93:97:a0:e3:77:d4:41:03:b4:bb:72:b3:10:
a1:7b:c9:60:60:c7:eb:fa:2e:06:17:52:59:13:b2:17:e8:be:
05:14:08:14:fe:87:34:86:51:3a:26:c5:83:c2:0a:60:9a:e2:
00:1c:14:1d:70:c3:c1:96:56:e0:46:84:f0:88:6f:48:31:76:
07:4f:07:c5:ff:b1:1d:b5:fd:f6:94:b8:0a:e3:bd:4b:0e:dd:
ad:d6:a8:c2:d8:50:67:8c:1c:3c:da:dd:71:32:c1:72:fc:3c:
7a:4f:ae:4b:cb:04:e2:e0:ab:47:30:63:1a:fc:19:20:19:15:
7b:ff:18:fb:1d:dc:e4:7c:4f:93:0e:68:36:e9:ba:18:63:8d:
41:d8:61:86:30:38:e4:0e:ae:97:d2:b3:16:06:34:97:06:47:
8b:7e:a5:1c:2b:f5:c4:84:7c:62:8e:26:ac:72:c3:d9:a9:13:
d8:dd:a5:d5:3d:ee:7b:1c:cc:9b:04:8a:af:1b:75:88:3e:a9:
d4:68:97:3f:d7:b9:39:cc:63:05:eb:e1:da:e7:78:4b:6f:60:
0d:69:82:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:12 2024 by rpki-client on console-fra.rpki-client.org