Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/39d4b5-b5c9-480a-9405-d9a539b8b7ad/1/3uq1mQ34tfdthaFTvZSZvl5B4R4.roa
File: 3uq1mQ34tfdthaFTvZSZvl5B4R4.roa (raw, json)
Hash identifier: RBV9+nNL3SamjD+bhP/fJTDOlVtguIbnqpEuZFOCXXg=
Subject key identifier: DE:EA:B5:99:0D:F8:B5:F7:6D:85:A1:53:BD:94:99:BE:5E:41:E1:1E
Certificate issuer: /CN=8fd57a75dd7e952bee283935d6df2925d282a070
Certificate serial: 018571D793CC27888D62458A2301FEA09289
Authority key identifier: 8F:D5:7A:75:DD:7E:95:2B:EE:28:39:35:D6:DF:29:25:D2:82:A0:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j9V6dd1-lSvuKDk11t8pJdKCoHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/39d4b5-b5c9-480a-9405-d9a539b8b7ad/1/3uq1mQ34tfdthaFTvZSZvl5B4R4.roa
Signing time: Mon 02 Jan 2023 09:37:11 +0000
ROA not before: Mon 02 Jan 2023 09:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8224
IP address blocks: 45.66.80.0/22 maxlen: 24
2a09:62c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Mar 2023 09:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:93:cc:27:88:8d:62:45:8a:23:01:fe:a0:92:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fd57a75dd7e952bee283935d6df2925d282a070
Validity
Not Before: Jan 2 09:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=deeab5990df8b5f76d85a153bd9499be5e41e11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:69:1e:93:29:09:e5:15:5f:3d:08:73:4a:40:
f4:48:54:cc:b0:07:80:88:e5:72:a2:80:0f:98:b1:
85:45:23:c6:dc:d2:2e:61:2f:2f:47:43:a9:da:5c:
0d:6c:d8:44:59:b5:cb:8e:ab:7a:2a:87:9f:37:59:
06:15:1c:4e:36:32:63:98:cd:cf:05:bc:20:85:e2:
3f:2e:39:49:78:40:32:6e:c3:f1:71:10:73:5a:42:
f3:c2:f1:ca:ad:4f:0f:d1:07:cd:e3:da:ad:77:1b:
38:ac:f9:e1:d7:19:23:f1:ac:9d:da:f3:44:17:33:
af:72:02:6c:02:9f:c4:3e:34:bd:a8:ea:a7:e5:05:
a8:d0:17:13:eb:7e:f5:b8:7e:dc:41:1b:0a:6a:94:
15:79:39:4d:da:a4:bc:c7:dd:e4:50:0d:2d:dc:8b:
33:1c:a0:5b:56:40:b4:e5:1a:95:07:f3:76:38:a3:
61:1c:66:f9:8e:11:d0:e4:7c:05:d4:e1:47:2b:fb:
2b:59:05:86:40:e0:62:08:25:fe:2f:a6:15:31:6b:
4c:61:33:29:b3:5d:36:84:89:98:3b:8b:c3:84:9e:
92:f3:9f:05:dd:ac:43:1d:44:0b:56:1e:53:5b:1d:
0a:22:86:9a:a2:f4:ce:04:6f:66:e2:83:e8:c0:69:
3b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:EA:B5:99:0D:F8:B5:F7:6D:85:A1:53:BD:94:99:BE:5E:41:E1:1E
X509v3 Authority Key Identifier:
keyid:8F:D5:7A:75:DD:7E:95:2B:EE:28:39:35:D6:DF:29:25:D2:82:A0:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j9V6dd1-lSvuKDk11t8pJdKCoHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/39d4b5-b5c9-480a-9405-d9a539b8b7ad/1/3uq1mQ34tfdthaFTvZSZvl5B4R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/39d4b5-b5c9-480a-9405-d9a539b8b7ad/1/j9V6dd1-lSvuKDk11t8pJdKCoHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.80.0/22
IPv6:
2a09:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
1b:aa:2a:8f:84:4a:25:27:46:40:a8:41:95:12:e8:60:2b:a3:
f1:5a:fe:2a:ac:b3:b2:ab:4f:ec:b7:e1:ec:fd:ae:85:b4:6d:
95:dd:41:25:f7:d0:9c:5c:e4:09:54:01:14:44:d6:32:b1:e3:
1c:11:cb:04:ac:3a:d6:da:e4:50:c6:2b:ec:66:c0:ef:86:43:
a1:26:27:1e:54:56:b1:8c:e2:99:78:36:e0:69:04:da:a5:e9:
3a:10:97:92:cb:da:f3:8d:76:c8:cc:d7:47:a9:35:88:a0:75:
cf:63:03:57:3c:d9:38:5f:dd:08:bb:9a:89:7c:3a:56:e1:66:
b6:79:89:99:9a:b8:68:b8:17:4f:53:87:93:a5:71:89:4b:e8:
c7:e4:5c:91:82:e4:ab:08:c4:44:1f:e3:ad:53:89:4e:68:e3:
dd:5e:c5:ce:a7:14:39:2b:b2:48:ab:67:e7:bd:b4:1e:36:7a:
50:ef:31:cb:82:18:fc:2b:09:45:be:d5:8b:33:42:d3:d9:36:
87:68:57:54:bb:db:c1:01:6b:72:3e:71:06:f9:90:ea:0a:d0:
c5:1c:a2:9d:86:a9:a4:4a:8e:d2:f3:77:0f:e8:b7:f1:57:c4:
5f:4a:03:9d:8e:64:23:5a:dd:bf:df:71:b9:02:13:31:f8:f8:
f7:bb:91:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org