Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/dklfeps5eMqQ4kOkOyQOMHKmK3g.roa
File: dklfeps5eMqQ4kOkOyQOMHKmK3g.roa (raw, json)
Hash identifier: 8nhqklY2Uqip/xc4LeOCqO13IxNtYZc+YjDoZH3vQW8=
Subject key identifier: 76:49:5F:7A:9B:39:78:CA:90:E2:43:A4:3B:24:0E:30:72:A6:2B:78
Certificate issuer: /CN=9cd67d1033ca472b5bb80fd596bb836d12e22261
Certificate serial: 018AEFCC536139D23D5AF4371DE906C5F6EF
Authority key identifier: 9C:D6:7D:10:33:CA:47:2B:5B:B8:0F:D5:96:BB:83:6D:12:E2:22:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nNZ9EDPKRytbuA_VlruDbRLiImE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/dklfeps5eMqQ4kOkOyQOMHKmK3g.roa
Signing time: Mon 02 Oct 2023 09:50:59 +0000
ROA not before: Mon 02 Oct 2023 09:50:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208710
IP address blocks: 45.66.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:cc:53:61:39:d2:3d:5a:f4:37:1d:e9:06:c5:f6:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cd67d1033ca472b5bb80fd596bb836d12e22261
Validity
Not Before: Oct 2 09:50:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76495f7a9b3978ca90e243a43b240e3072a62b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f6:01:74:25:2a:c4:d8:80:81:36:a8:4e:83:
91:12:4c:3e:43:91:0d:ff:7e:6c:c3:05:f2:94:bc:
30:43:27:f0:58:dc:8c:92:24:b5:39:35:6d:a4:74:
70:5b:73:25:aa:56:fd:61:0d:70:8f:f0:66:cf:70:
92:74:fa:a4:d3:6c:14:2c:8a:86:57:55:a6:12:a3:
e4:81:00:66:b2:68:03:6e:00:31:37:ab:16:59:d1:
81:7e:ad:07:60:0c:a1:1f:00:fe:23:be:f9:a6:60:
0f:98:4e:63:31:ed:87:e1:0b:c4:09:0b:0e:eb:20:
23:1c:f7:bf:79:a6:42:c5:12:38:91:83:83:2f:24:
83:dc:65:68:8a:d9:b0:84:2d:f3:f9:29:8a:c0:55:
34:44:6b:01:16:f1:f9:d7:2f:3c:d1:91:f5:63:36:
93:ef:4f:4b:a9:20:1d:3f:ef:7b:b5:9b:df:30:0b:
f8:22:a0:82:f2:f1:f1:cd:53:47:56:06:87:a2:d6:
96:f1:56:c4:08:dc:a9:06:7b:61:5c:ba:aa:2b:5b:
81:28:87:24:80:e4:03:3f:4d:57:5d:1d:e4:a7:a9:
66:6b:99:9f:94:ed:83:9a:5b:71:94:d5:68:be:c9:
81:2f:39:53:af:e9:b4:fc:66:9b:98:91:f5:49:a3:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:49:5F:7A:9B:39:78:CA:90:E2:43:A4:3B:24:0E:30:72:A6:2B:78
X509v3 Authority Key Identifier:
keyid:9C:D6:7D:10:33:CA:47:2B:5B:B8:0F:D5:96:BB:83:6D:12:E2:22:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nNZ9EDPKRytbuA_VlruDbRLiImE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/dklfeps5eMqQ4kOkOyQOMHKmK3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/nNZ9EDPKRytbuA_VlruDbRLiImE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.0.0/22
Signature Algorithm: sha256WithRSAEncryption
31:0a:cf:05:65:6e:49:36:3f:af:16:cb:ab:42:9e:63:ef:fa:
25:1c:38:5f:0a:f5:5b:ba:bf:3b:12:f5:cb:fe:9e:82:81:cf:
ab:fe:b1:44:f4:11:30:e4:db:6d:11:2b:2c:53:77:9f:3a:08:
4f:85:71:1f:c0:f4:3b:ea:3b:69:9a:10:b3:20:60:af:ca:3c:
f6:d4:ca:39:78:a3:d3:53:00:b6:a7:a8:8a:1c:53:62:8c:b8:
7b:1d:02:01:17:01:fa:68:da:c6:3c:18:bd:2e:13:4f:da:6b:
ea:ea:77:15:af:3b:4f:b0:c5:1d:67:9d:af:08:f6:82:14:df:
82:cc:50:22:30:8a:f2:2b:33:42:d0:ce:84:1d:02:42:e8:8b:
44:2f:39:b8:a0:5d:52:5f:87:4e:d8:c2:bd:f8:2a:7e:60:8a:
5c:3f:d8:8a:f2:ff:76:cb:5a:d4:06:71:d9:6a:04:82:aa:c2:
ce:34:29:fe:5d:81:40:a4:bc:2d:c6:a2:cf:bb:23:c1:de:de:
73:d1:63:fc:17:89:54:a7:44:c6:48:64:4f:74:24:9f:6b:ac:
a7:98:4a:48:52:24:39:d8:55:5e:5d:41:f3:70:8a:f7:c5:bd:
cf:44:94:ad:da:e9:64:4c:f8:fd:a6:80:9d:75:31:97:47:03:
c5:d9:97:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:17 2024 by rpki-client on console-ams.rpki-client.org