Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/dvzK46vX8FF3RY3PCZ9g3laYHvk.roa
File: dvzK46vX8FF3RY3PCZ9g3laYHvk.roa (raw, json)
Hash identifier: FVO37LTXXcADpvlEITAvMlvzoKDBEUeWC9XjEMKYzq0=
Subject key identifier: 76:FC:CA:E3:AB:D7:F0:51:77:45:8D:CF:09:9F:60:DE:56:98:1E:F9
Certificate issuer: /CN=b814345affd1506af9af32ec0d77399b7664aa3f
Certificate serial: 0189A0C0A79AF137BA3910AC71FEA245E99E
Authority key identifier: B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/dvzK46vX8FF3RY3PCZ9g3laYHvk.roa
Signing time: Sat 29 Jul 2023 08:25:27 +0000
ROA not before: Sat 29 Jul 2023 08:25:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197641
IP address blocks: 45.144.104.0/22 maxlen: 24
2a0e:ec40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a0:c0:a7:9a:f1:37:ba:39:10:ac:71:fe:a2:45:e9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b814345affd1506af9af32ec0d77399b7664aa3f
Validity
Not Before: Jul 29 08:25:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76fccae3abd7f05177458dcf099f60de56981ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:03:67:1d:59:8e:ad:2b:8a:82:02:76:2c:9f:
a8:8e:ac:80:46:59:12:95:b3:0f:f8:b6:8a:d8:f4:
6c:74:64:55:63:9c:29:ef:66:f9:63:15:1a:98:f0:
d2:f9:12:d9:d1:c3:77:72:4c:73:38:c1:1e:85:10:
d2:c0:e9:97:b7:c8:06:e1:eb:83:62:a6:e5:02:5e:
ee:c6:32:53:ee:95:cb:37:d1:33:01:84:17:44:11:
ea:08:05:2f:48:95:c8:19:d2:4f:9e:05:85:08:26:
c8:a5:d9:7d:ac:8a:1a:e7:cc:aa:7f:29:d5:a8:7c:
49:cc:e6:07:ce:3f:df:dc:6f:a8:d5:b7:d0:2a:45:
33:0d:56:92:94:ef:6c:2c:b7:a3:3e:9d:bc:36:a3:
cf:bc:4d:07:16:bf:3e:e9:58:d4:76:4d:92:2d:bf:
78:d9:5b:31:c8:52:88:31:4e:eb:e0:62:9a:a1:c2:
58:cd:c3:3d:cb:c3:6a:2d:e7:33:5b:8b:eb:18:71:
a5:8d:4d:94:18:3a:c0:2f:69:62:b6:00:a3:af:13:
ae:7b:e5:f6:f7:a5:d2:b8:eb:99:dc:3f:ab:b3:df:
70:55:a3:02:45:03:0e:a8:8e:27:a1:91:55:6c:6e:
33:a3:0e:cc:6c:94:53:c4:0a:a3:fe:d9:df:99:50:
c3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FC:CA:E3:AB:D7:F0:51:77:45:8D:CF:09:9F:60:DE:56:98:1E:F9
X509v3 Authority Key Identifier:
keyid:B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/dvzK46vX8FF3RY3PCZ9g3laYHvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.104.0/22
IPv6:
2a0e:ec40::/29
Signature Algorithm: sha256WithRSAEncryption
c3:05:4f:7b:60:9c:dc:85:00:1e:a8:d0:6a:db:f0:eb:df:48:
0b:f0:cb:6b:05:63:e6:86:c1:d2:e7:e9:72:ca:57:35:0c:c1:
03:95:15:95:27:98:c7:0e:da:31:14:2a:2e:10:67:fd:e1:a4:
e9:f2:ca:db:9e:06:df:a3:80:24:9b:fa:09:85:b4:64:06:0a:
e3:7c:57:8c:69:91:a2:d8:a8:cf:c1:51:f0:2e:ac:41:ee:cc:
91:f3:33:06:ab:19:51:a6:20:02:95:f4:0a:33:c0:9b:16:16:
da:cc:f5:27:47:f9:e8:fb:1c:cf:a1:33:37:2c:91:ca:63:03:
77:4c:7a:1d:d7:44:3a:69:d9:b3:70:0b:38:18:b3:19:fd:50:
35:65:c8:76:77:86:9e:23:bc:0d:fb:60:26:6f:df:fe:4c:a1:
4a:60:ff:bd:96:8f:1c:bf:54:44:ed:8e:35:17:d6:a8:85:43:
a5:84:24:a3:c5:d5:c8:5a:09:80:3a:02:bf:3e:47:34:29:81:
a0:05:7f:55:69:db:b8:22:e0:f9:25:e9:9e:9f:44:8b:c8:d1:
48:10:01:66:4a:57:54:af:66:e8:78:07:24:de:94:9e:94:6a:
e9:4f:e9:9d:86:ec:26:d0:60:66:28:bb:6f:46:e8:8f:79:96:
5b:81:f6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:54 2024 by rpki-client on console-fra.rpki-client.org