Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/hyfbiVBDrSBDkbvzvEgQy1kOM8A.roa
File: hyfbiVBDrSBDkbvzvEgQy1kOM8A.roa (raw, json)
Hash identifier: Fbm2E7wyz8La9HSc0YrPrlttDvlGYCrd6YgWjRR+oRU=
Subject key identifier: 87:27:DB:89:50:43:AD:20:43:91:BB:F3:BC:48:10:CB:59:0E:33:C0
Certificate issuer: /CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee
Certificate serial: 018C4F80A76B5783C39E939A5DE19474BEF8
Authority key identifier: 25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/hyfbiVBDrSBDkbvzvEgQy1kOM8A.roa
Signing time: Sat 09 Dec 2023 16:54:40 +0000
ROA not before: Sat 09 Dec 2023 16:54:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61125
IP address blocks: 45.66.35.0/24 maxlen: 24
2a09:61c4::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4f:80:a7:6b:57:83:c3:9e:93:9a:5d:e1:94:74:be:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee
Validity
Not Before: Dec 9 16:54:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8727db895043ad204391bbf3bc4810cb590e33c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3c:2a:46:6a:c1:80:a0:77:2e:d8:be:b0:e6:
78:10:c6:57:14:30:12:29:36:7f:6b:7a:66:fd:4d:
5c:c8:4f:24:85:67:ba:d3:5f:45:68:c6:47:2b:fe:
c9:e1:fb:e2:07:0f:4a:e1:73:b1:1c:69:a5:a9:c2:
bb:66:5c:eb:42:6d:32:82:ab:07:06:76:a5:e5:16:
cb:78:b5:35:cd:69:b7:ac:20:09:d2:18:c2:6e:52:
a4:16:2b:f1:51:16:27:6f:70:14:35:5e:e8:04:8e:
77:76:0a:e3:25:ce:89:8c:1d:6c:56:d1:dc:3b:dc:
cb:ea:dc:cd:31:9c:fa:f2:21:ed:fd:5b:ff:c8:68:
07:f1:58:df:38:a8:38:cb:df:80:46:e1:61:10:48:
43:90:36:ba:4b:8b:98:dc:5b:45:5e:55:8d:be:4f:
3a:11:4c:79:f6:18:dc:d0:9a:82:8e:00:84:a9:b8:
70:ef:ac:ad:21:ce:4d:12:0e:db:f6:d3:0e:b9:02:
1a:72:e3:cc:e5:64:bf:fe:a2:67:5e:1b:16:b8:61:
8d:c0:b0:b1:5b:df:b1:39:b4:74:7b:16:c3:ec:16:
a4:0e:f4:61:f9:ce:5c:76:6f:56:f8:a3:dd:77:49:
a0:2c:8f:59:cb:09:02:07:10:f7:6b:d3:54:dd:b6:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:27:DB:89:50:43:AD:20:43:91:BB:F3:BC:48:10:CB:59:0E:33:C0
X509v3 Authority Key Identifier:
keyid:25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/hyfbiVBDrSBDkbvzvEgQy1kOM8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Jc-djVUs3H2MDcb2SbMB8jUUCe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.35.0/24
IPv6:
2a09:61c4::/30
Signature Algorithm: sha256WithRSAEncryption
1f:4c:04:6e:ab:0d:94:7f:d8:51:7e:bb:1f:17:e3:86:2a:eb:
e0:70:1b:21:46:ea:12:ae:81:5c:59:66:73:ac:69:6d:4d:a4:
a8:fd:95:4e:52:aa:96:b7:14:26:47:bb:d6:b2:f4:6e:97:9b:
ce:a4:2e:13:29:1b:c1:ab:19:52:aa:94:21:af:2b:6c:e6:68:
0b:4b:c5:54:10:19:5e:24:7f:e0:ec:e3:e0:f9:d2:d7:03:03:
5f:0f:fb:3b:52:60:c8:81:aa:3c:61:81:a0:a2:77:1c:2b:03:
91:e4:88:7d:f7:8e:3b:ae:78:ee:cd:56:ad:0f:b4:a4:e8:88:
0e:c7:8b:da:2c:9f:7d:52:25:59:50:02:1a:02:ce:e0:42:b6:
f2:7c:e6:a3:03:49:b0:85:58:7d:24:0a:f7:24:3e:81:81:1e:
60:71:f7:65:d6:4b:de:da:6e:2c:dd:6d:77:31:8c:3f:df:35:
c9:d5:38:0e:45:a5:d1:44:eb:91:f8:91:d2:46:6a:98:cb:76:
f9:13:2e:4c:10:6b:f3:10:df:2e:4c:a3:95:cc:96:c2:ab:3d:
5b:c6:7d:a4:2d:a3:ea:11:65:16:22:22:cb:c1:dc:4a:ec:f7:
95:97:2a:34:b2:8b:0b:81:67:0a:f4:19:4b:62:58:36:b3:f9:
92:62:18:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:09 2024 by rpki-client on console-fra.rpki-client.org