Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/Uq1Kdx-XY8rRhWm8kLNTZlbGUi8.roa
File: Uq1Kdx-XY8rRhWm8kLNTZlbGUi8.roa (raw, json)
Hash identifier: WZnTFmSN3+K9uSNhTsjpqW1hpdw3UOx9XhrJoLlJwlg=
Subject key identifier: 52:AD:4A:77:1F:97:63:CA:D1:85:69:BC:90:B3:53:66:56:C6:52:2F
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: 018C4FECAF0BCF19B3816ACEF1763E37892C
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/Uq1Kdx-XY8rRhWm8kLNTZlbGUi8.roa
Signing time: Sat 09 Dec 2023 18:52:40 +0000
ROA not before: Sat 09 Dec 2023 18:52:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 45.85.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4f:ec:af:0b:cf:19:b3:81:6a:ce:f1:76:3e:37:89:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Dec 9 18:52:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ad4a771f9763cad18569bc90b3536656c6522f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:90:79:04:59:b8:62:03:39:0f:b4:1a:6a:3f:
01:be:62:b5:eb:4a:d7:09:81:b9:75:87:41:87:29:
37:b5:b6:13:3e:93:e7:09:44:ca:55:f1:eb:cb:28:
b2:07:4b:27:57:15:62:18:6e:d2:90:55:62:ec:75:
18:ac:97:38:95:be:93:db:ce:68:d6:35:88:2c:33:
f8:ef:53:c7:72:db:b3:ba:17:66:71:a9:5b:20:9f:
38:31:a0:ae:db:e6:a5:1f:b5:36:c4:1b:20:6d:af:
8b:bd:ee:5a:46:d6:65:51:09:04:36:6f:60:89:a4:
c6:d0:61:47:da:6b:8b:02:5d:78:42:a8:f9:78:8b:
98:a7:4c:0a:7e:65:69:c4:72:79:43:94:52:9d:bb:
a4:2c:f7:63:a3:1e:10:5e:e2:74:a9:7d:2d:5c:66:
f9:39:6d:78:d0:ad:b1:38:ac:e8:5c:03:a1:ad:03:
c2:e7:83:5d:3b:c1:36:c6:b0:17:e4:04:d4:ea:be:
2b:f5:c6:c4:d9:03:ba:9a:a5:6b:46:fe:71:aa:2e:
ea:a6:e1:3d:5a:50:16:d1:30:c5:8f:92:0a:f8:d4:
85:27:2f:52:c8:22:91:ac:95:b9:32:d7:22:87:0b:
ba:10:1e:80:34:e8:8c:55:7f:84:3e:16:a3:0e:db:
4e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AD:4A:77:1F:97:63:CA:D1:85:69:BC:90:B3:53:66:56:C6:52:2F
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/Uq1Kdx-XY8rRhWm8kLNTZlbGUi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.219.0/24
Signature Algorithm: sha256WithRSAEncryption
54:47:63:17:69:d6:aa:4e:5d:66:14:a7:ba:2d:0f:94:74:65:
23:07:bc:0b:7b:fd:aa:fe:b6:1e:54:3e:b0:ce:ac:1c:ee:d2:
93:c0:95:5b:e8:e9:54:20:58:94:2f:0b:76:ab:fb:c0:5e:7b:
f7:bc:35:34:75:e8:9e:39:f2:c7:af:28:eb:a4:20:8a:d3:2c:
4f:eb:e4:21:f9:41:90:19:a9:1b:5b:ce:3b:5a:fe:9c:41:c4:
c4:ff:4f:5d:17:a5:2a:f7:04:b7:ae:44:b3:f0:54:2e:9e:a2:
a0:bd:17:2e:8d:62:6c:78:6d:1a:ea:56:a0:f8:29:b8:21:a3:
52:cc:c0:e9:d3:04:10:5b:61:8f:f9:cc:82:ee:28:20:07:26:
05:d1:6e:d4:22:85:a6:5c:f2:ac:4b:40:45:42:f0:74:31:f6:
d0:f8:3f:e1:a3:7c:84:42:ea:c9:00:07:ef:72:17:b5:f4:99:
a4:f1:45:36:9b:fe:91:03:16:0d:ec:d0:9e:09:31:53:2d:71:
43:43:82:31:d2:61:c8:b8:e2:cc:bc:61:37:bf:4c:d5:ed:95:
58:2a:b9:6e:33:27:28:86:e8:50:a3:fd:79:53:de:1a:d6:6f:
95:0c:e6:7e:a2:6e:b2:10:38:b7:72:ff:8d:f3:d6:01:0d:7b:
0f:a8:4c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:18 2024 by rpki-client on console-ams.rpki-client.org