Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/U_Wwao0n4qhxZCHeUZbly4AEtzo.roa
File: U_Wwao0n4qhxZCHeUZbly4AEtzo.roa (raw, json)
Hash identifier: 66+Z9rpPIvR+Pg2XnPuvkV2i91Xm1xSD6GDVawb8egw=
Subject key identifier: 53:F5:B0:6A:8D:27:E2:A8:71:64:21:DE:51:96:E5:CB:80:04:B7:3A
Certificate issuer: /CN=36c3c4565743ae57bd2aea9a363c2b3c3e250f72
Certificate serial: 01878EB11149ED4D9DCC0E687DABF3869612
Authority key identifier: 36:C3:C4:56:57:43:AE:57:BD:2A:EA:9A:36:3C:2B:3C:3E:25:0F:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsPEVldDrle9KuqaNjwrPD4lD3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/U_Wwao0n4qhxZCHeUZbly4AEtzo.roa
Signing time: Mon 17 Apr 2023 10:09:41 +0000
ROA not before: Mon 17 Apr 2023 10:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203059
IP address blocks: 45.91.120.0/24 maxlen: 24
2a13:5080::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 17 Apr 2023 20:19:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:b1:11:49:ed:4d:9d:cc:0e:68:7d:ab:f3:86:96:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c3c4565743ae57bd2aea9a363c2b3c3e250f72
Validity
Not Before: Apr 17 10:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f5b06a8d27e2a8716421de5196e5cb8004b73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:f2:2e:ce:99:a5:5b:94:56:d1:34:62:e3:
da:08:b1:6b:14:19:fe:cc:62:63:92:23:a3:20:9b:
6b:72:ff:17:a2:e3:30:8a:8e:97:58:5c:db:0b:66:
45:60:56:7a:aa:bc:da:b2:1c:e0:ef:80:9b:2e:1f:
98:33:c9:b7:e2:43:0e:85:a7:8e:9c:0a:d9:5c:51:
8a:f2:b9:90:e3:da:3d:d1:c2:c1:dd:f0:80:ca:c1:
27:04:79:ac:ad:45:75:3d:d5:79:a9:5e:76:50:33:
3e:f9:74:48:d7:b5:97:08:70:08:32:97:af:07:ae:
60:3f:04:b8:dd:6f:f2:a0:24:8c:ed:3d:66:91:cb:
6c:81:f9:2c:4f:b7:fc:12:e9:00:95:2a:6d:22:bc:
b9:70:ad:04:73:26:52:07:0e:7d:95:c6:a9:c2:b0:
df:67:0f:a4:05:1a:2a:b0:2f:7c:f7:b1:0f:26:0a:
4b:99:81:87:ad:40:9a:15:c0:d0:6e:21:62:92:5e:
fb:83:91:ca:8b:57:cc:2f:f6:5c:02:a7:db:ff:57:
69:cf:4b:7a:17:df:31:b8:54:12:89:3e:5a:10:27:
91:4b:90:b9:c9:57:87:dd:cf:97:cf:4e:bd:41:53:
0e:c7:d0:fb:75:6e:43:fe:1a:98:a5:9d:00:3b:c6:
ca:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F5:B0:6A:8D:27:E2:A8:71:64:21:DE:51:96:E5:CB:80:04:B7:3A
X509v3 Authority Key Identifier:
keyid:36:C3:C4:56:57:43:AE:57:BD:2A:EA:9A:36:3C:2B:3C:3E:25:0F:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsPEVldDrle9KuqaNjwrPD4lD3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/U_Wwao0n4qhxZCHeUZbly4AEtzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/016156-093e-405b-9b2d-a5749d2346e7/1/NsPEVldDrle9KuqaNjwrPD4lD3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.120.0/24
IPv6:
2a13:5080::/29
Signature Algorithm: sha256WithRSAEncryption
6f:dc:eb:dd:0d:d1:4f:ef:91:2e:6e:57:d5:f6:6a:b4:a1:aa:
6d:c2:35:d9:30:ec:6d:00:2c:5d:66:38:c6:28:09:36:46:0e:
1a:57:4e:70:ee:d1:8c:f1:0a:7d:96:3f:6a:27:70:04:db:3c:
9e:b8:54:51:a3:f9:8b:17:f8:5a:7a:d1:73:46:32:1d:3e:14:
e3:69:88:fa:63:ff:ff:db:44:6d:c0:eb:ac:1d:55:15:2c:24:
ac:60:8c:81:b3:b1:c4:56:23:92:fe:33:f8:9d:bb:da:0a:f6:
e4:41:8b:0c:c1:cb:41:b1:f6:7c:f0:3c:cc:72:92:f1:65:64:
95:c5:e1:c8:a1:a1:80:7c:0d:bc:0f:74:17:7c:41:98:9a:ec:
54:c2:c0:6b:66:62:8c:84:3a:91:0f:ad:25:bb:55:12:7d:40:
ac:69:83:a1:da:fd:dc:29:08:5e:a7:f6:19:aa:19:85:aa:85:
ed:05:1a:ec:3e:fe:df:bf:19:ee:aa:c6:fb:12:d8:fc:ee:70:
6b:c5:ff:65:be:85:36:44:78:63:21:ef:0c:fa:4c:d1:0d:fe:
ba:67:58:90:61:f6:a2:db:32:84:8a:9f:d5:42:50:ec:c8:24:
7d:bd:34:e5:48:84:db:3a:0e:da:82:d8:05:3d:57:41:59:06:
8a:1d:f4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:49 2024 by rpki-client on console-ams.rpki-client.org