Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/wq8EROW6la-XoGXzLlvPGGdW22M.roa
File: wq8EROW6la-XoGXzLlvPGGdW22M.roa (raw, json)
Hash identifier: E8h6X6erAY7i8AnEYHRtcXcFdutXKljBxEabISRzzJc=
Subject key identifier: C2:AF:04:44:E5:BA:95:AF:97:A0:65:F3:2E:5B:CF:18:67:56:DB:63
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 018A5F0345B977F90A28A3A06CF255E1EEDC
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/wq8EROW6la-XoGXzLlvPGGdW22M.roa
Signing time: Mon 04 Sep 2023 07:06:04 +0000
ROA not before: Mon 04 Sep 2023 07:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202480
IP address blocks: 185.45.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:03:45:b9:77:f9:0a:28:a3:a0:6c:f2:55:e1:ee:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Sep 4 07:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2af0444e5ba95af97a065f32e5bcf186756db63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:88:71:57:36:d5:7f:9b:3c:2c:65:f9:fe:1a:
60:e3:52:46:7b:10:17:f8:03:c3:be:8d:c1:1e:b9:
0e:c1:87:1b:0f:bd:e3:61:4e:ea:d5:2a:bd:ba:4a:
0f:a2:a8:84:12:a4:e5:25:6c:59:4d:ac:47:f3:b2:
ae:2b:a8:2a:57:af:71:0d:da:59:42:b9:80:a5:a5:
c5:57:0a:dd:5d:fd:b2:e4:c8:66:ab:11:f3:18:46:
fd:e7:a4:dc:26:4e:37:07:25:58:d3:a9:02:38:6b:
af:95:4f:ae:69:bc:2c:d3:22:bf:09:a4:0f:f3:1f:
d1:33:e2:53:89:b2:66:f6:57:3d:3c:de:d3:92:21:
fe:60:bf:e6:8c:27:e9:72:e0:d8:5e:1b:fa:e2:00:
c9:4c:27:67:84:18:84:8b:b7:1f:95:fe:2e:81:9d:
3d:b9:d4:36:77:7b:63:a0:14:a2:8a:ce:53:3c:e4:
2b:fe:70:ad:ae:86:50:8c:39:75:58:5d:57:90:dc:
bf:f2:f8:13:7b:e7:1d:14:7c:ca:f4:d5:d0:82:cf:
00:97:2d:ce:63:ee:ec:3d:7c:ca:41:e6:eb:84:91:
42:66:10:86:58:8f:48:06:5b:8b:e3:d9:de:5c:a1:
5d:4c:57:48:5f:df:5d:8c:e4:98:a7:f9:18:68:12:
37:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AF:04:44:E5:BA:95:AF:97:A0:65:F3:2E:5B:CF:18:67:56:DB:63
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/wq8EROW6la-XoGXzLlvPGGdW22M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.143.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1f:3a:3a:de:9b:cc:03:79:02:d4:eb:b9:c5:5d:c4:15:64:
6d:a6:f6:62:6f:af:b2:51:fb:58:fb:b9:e3:4a:bd:65:b9:7d:
fc:e4:26:0a:cc:03:d0:9f:ae:78:2d:76:22:e0:d1:51:c6:87:
66:8d:4f:12:63:d8:d3:68:a1:84:fe:c6:32:3b:25:6c:f9:42:
25:df:7f:75:f6:96:14:69:dc:df:25:77:e4:5b:6d:cb:61:da:
6e:5f:5d:70:65:74:ba:e7:76:ba:75:34:c2:54:29:29:17:4e:
da:18:8f:3a:4e:80:d5:8a:95:6b:aa:7a:5f:ab:37:5d:67:d8:
54:8a:f1:e4:f7:72:fc:07:5c:af:11:a3:a5:91:32:3c:1b:1c:
67:95:39:d4:9f:14:da:d9:37:5d:61:df:90:c8:c5:1b:b6:d2:
01:46:e3:e6:5c:0a:4b:81:e8:95:75:6c:8c:2a:ae:cd:3b:be:
85:91:04:32:91:e5:9f:fd:6c:e3:07:03:97:1a:cd:08:24:15:
f0:8d:2e:24:27:67:80:1e:23:11:fc:7b:ed:f1:8f:f0:79:07:
6f:7c:fe:02:ac:24:b8:48:42:ce:24:72:58:46:6b:21:64:fa:
76:8e:c1:5e:5c:5b:97:b3:99:3b:c0:b1:89:90:3a:74:1c:f5:
0b:c9:f2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:00 2024 by rpki-client on console-ams.rpki-client.org