Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/t75rFGztrofU6nxkrRcZccLMixw.roa
File: t75rFGztrofU6nxkrRcZccLMixw.roa (raw, json)
Hash identifier: eGaANAALeYEvc87H93v34+X/99bEMQyCAh0cAL2B+cE=
Subject key identifier: B7:BE:6B:14:6C:ED:AE:87:D4:EA:7C:64:AD:17:19:71:C2:CC:8B:1C
Certificate issuer: /CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Certificate serial: 01856D419C167AED095F6D891D400AABB4E6
Authority key identifier: 84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/t75rFGztrofU6nxkrRcZccLMixw.roa
Signing time: Sun 01 Jan 2023 12:14:54 +0000
ROA not before: Sun 01 Jan 2023 12:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207058
IP address blocks: 185.173.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:9c:16:7a:ed:09:5f:6d:89:1d:40:0a:ab:b4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Validity
Not Before: Jan 1 12:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7be6b146cedae87d4ea7c64ad171971c2cc8b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:af:19:81:b7:d4:e0:fc:cf:ad:db:ad:3f:
24:c0:2f:83:34:7c:c8:38:db:20:36:f0:47:10:c4:
c8:da:4e:5e:aa:70:07:7b:ba:28:ed:8c:70:79:90:
bc:1c:26:56:45:4d:5d:0b:82:e3:a0:9a:d8:97:97:
7a:b7:5b:18:b4:8b:ae:a5:1e:ef:10:bb:2b:a2:32:
ee:c3:ad:93:8a:40:9b:38:64:12:7c:25:bf:86:4f:
40:03:6b:5c:f7:62:9f:b6:d3:b5:14:0f:80:97:ab:
27:c7:98:8b:28:58:a7:54:82:eb:0b:dd:f6:12:59:
b7:9b:0c:49:c5:64:ac:bd:e5:4b:7c:43:96:46:17:
27:42:44:49:80:ae:fa:3a:a8:f8:35:6b:43:3a:37:
0a:f9:07:a7:d0:86:13:9c:f6:ed:f4:f8:38:76:59:
b8:92:c5:47:d0:10:12:13:36:d6:22:55:03:51:fd:
02:c0:84:c4:98:bc:e8:ca:8d:c4:c0:c2:cd:2b:1b:
c5:02:2c:13:88:8c:7b:f1:4c:d7:51:98:86:6a:c1:
3a:34:70:86:31:1f:09:bd:9d:ca:f4:33:02:63:90:
13:ca:c3:5e:c1:8c:42:ba:df:08:a3:ef:d7:f1:70:
43:76:dd:1b:8e:4c:d9:67:b2:59:72:a7:b4:9c:68:
5e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BE:6B:14:6C:ED:AE:87:D4:EA:7C:64:AD:17:19:71:C2:CC:8B:1C
X509v3 Authority Key Identifier:
keyid:84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/t75rFGztrofU6nxkrRcZccLMixw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/hD2KoSadGj8zITNYYMZ8fghnfcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.45.0/24
Signature Algorithm: sha256WithRSAEncryption
61:b4:9b:35:49:0b:a8:42:d4:af:d8:89:28:f4:f7:71:ad:5c:
f4:ec:0a:d6:2a:e1:49:39:9b:66:9b:7f:1b:85:f8:99:52:65:
df:6b:05:45:1f:5b:54:95:72:ec:51:aa:37:8a:b7:23:ee:6f:
3d:ca:4e:ce:a4:a7:ec:6f:c8:f4:23:5f:4d:2a:0a:80:75:ea:
fd:28:60:c7:f7:2a:de:d5:2f:5a:2c:67:d6:22:75:5c:e1:9f:
29:1b:3e:f1:10:46:b5:28:19:cc:f8:43:31:ef:0e:b2:5d:5b:
36:3e:13:bc:c8:36:14:39:2d:0c:96:e3:c6:da:f9:f2:d4:7b:
df:ac:7b:fb:b4:b2:a5:c8:06:e7:64:8c:e0:c6:18:2e:84:d2:
4b:48:5f:16:6f:0e:41:5d:42:61:08:17:bf:b7:2c:78:9f:8e:
d6:bd:34:8f:c0:d7:ea:d0:9d:1d:de:4f:27:c2:b6:08:92:44:
d8:37:10:ae:98:16:69:44:05:8e:97:24:62:97:29:7c:39:85:
85:df:93:86:83:a0:f9:f8:09:21:a0:28:85:aa:fc:34:98:1d:
c6:8e:6c:e4:83:7c:80:41:44:e3:49:00:da:1f:06:3c:6b:7b:
7b:06:24:f2:c4:fb:41:cd:fb:33:03:71:9a:ee:bf:83:53:a7:
dc:66:96:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org