Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/GbeNA0qRRhz-EJdn882Vo4lxDOc.roa
File: GbeNA0qRRhz-EJdn882Vo4lxDOc.roa (raw, json)
Hash identifier: 3EFI15WloVbQU47G4xEJNlyAcOzZgY41PyKnW/9s9A4=
Subject key identifier: 19:B7:8D:03:4A:91:46:1C:FE:10:97:67:F3:CD:95:A3:89:71:0C:E7
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 01856B77BD2A4DBE20761923FD3F26D530C3
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/GbeNA0qRRhz-EJdn882Vo4lxDOc.roa
Signing time: Sun 01 Jan 2023 03:54:47 +0000
ROA not before: Sun 01 Jan 2023 03:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208847
IP address blocks: 45.82.232.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:bd:2a:4d:be:20:76:19:23:fd:3f:26:d5:30:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jan 1 03:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19b78d034a91461cfe109767f3cd95a389710ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:74:fb:c4:03:bf:9f:fc:fe:54:3c:12:10:e2:
1b:bd:60:b4:3d:21:02:19:49:dd:ab:5b:e6:85:10:
99:a4:6a:7d:6f:59:4e:11:6c:43:18:cf:15:09:bb:
9f:c9:80:ec:54:6e:6d:03:ea:db:b4:d4:0c:ed:f7:
94:13:6f:ea:2e:a3:bc:20:e9:5e:1a:ac:29:e0:07:
4f:33:d5:31:81:24:db:d5:ad:af:c0:ae:38:06:4d:
f7:2c:0d:c3:2a:8f:16:5e:ac:88:2d:30:53:3f:94:
3d:85:19:34:9e:81:e9:9c:e5:65:8a:fc:a2:99:0e:
bf:24:55:4b:bd:db:d1:7b:b6:0d:b0:ee:25:28:41:
8e:ab:a5:b0:9c:86:60:81:34:90:78:2a:33:67:04:
83:2f:66:f5:73:03:97:1c:49:17:79:cc:02:b8:ea:
24:24:69:9a:05:c5:dc:e0:bc:62:05:6e:24:16:75:
cd:4f:ee:b7:35:df:37:41:38:02:0d:b6:56:fa:87:
47:25:5c:85:78:ea:c7:8f:ab:80:f3:d1:d7:7b:15:
d2:a0:1b:cf:67:e5:ba:2f:1f:d1:7c:ec:d8:14:10:
6c:80:7f:c1:6c:d9:ec:0a:e4:1e:ab:22:cc:84:b0:
74:f3:9c:c8:7f:fc:4d:2b:cc:f0:e3:94:a4:ad:d0:
5b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B7:8D:03:4A:91:46:1C:FE:10:97:67:F3:CD:95:A3:89:71:0C:E7
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/GbeNA0qRRhz-EJdn882Vo4lxDOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.232.0/22
Signature Algorithm: sha256WithRSAEncryption
96:12:20:da:81:47:a5:4d:e8:94:81:07:81:e5:12:22:e8:30:
c7:63:05:51:bc:ac:67:92:e5:a0:77:cb:c2:2a:0a:ca:e0:05:
ef:74:72:99:b3:66:06:85:cc:7c:2e:4b:b6:5e:c1:dc:ac:f1:
60:bb:6f:ba:d2:d9:65:6d:4b:61:22:bd:36:ee:44:db:5d:92:
5e:ed:bc:46:0b:04:dc:73:86:05:46:72:27:9e:af:9b:54:51:
1b:27:7f:5b:7a:44:c0:1d:66:76:f4:8a:25:07:40:76:91:38:
a7:68:0f:2b:84:49:e1:cc:1f:9b:ec:d0:71:58:fb:67:ed:fe:
05:a2:02:cd:58:c8:41:b4:55:0b:a4:fc:5d:82:4a:76:ac:fa:
03:85:8f:93:be:ac:7d:5a:3b:e4:1f:a9:41:32:fe:96:a1:7f:
79:1a:fc:9a:22:95:3b:0b:b9:42:f2:5f:99:85:65:1f:d7:0c:
14:68:57:94:e1:cb:12:60:90:40:de:99:d5:88:b1:41:e2:eb:
f1:e4:54:38:59:80:15:ee:28:78:9a:07:8b:2f:fd:f3:a5:29:
7c:f6:b6:ca:2f:0d:82:b8:55:00:e4:38:5c:b9:a7:fd:0c:d4:
37:26:e0:3a:23:ec:e0:ee:aa:25:85:ba:8e:d3:3b:21:13:35:
ab:ab:e2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:17 2024 by rpki-client on console-ams.rpki-client.org