Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/2wu_BpKzK3ADIhBdW6QF--tkPyk.roa
File: 2wu_BpKzK3ADIhBdW6QF--tkPyk.roa (raw, json)
Hash identifier: HJkBOrKFWFrILBbIF2kgdrf2nwYhCkup/fYkg75B1ik=
Subject key identifier: DB:0B:BF:06:92:B3:2B:70:03:22:10:5D:5B:A4:05:FB:EB:64:3F:29
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E00F9CC350737B5E861FAB4483DF8
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/2wu_BpKzK3ADIhBdW6QF--tkPyk.roa
Signing time: Mon 01 Jan 2024 14:29:29 +0000
ROA not before: Mon 01 Jan 2024 14:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60647
IP address blocks: 45.67.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 23:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:00:f9:cc:35:07:37:b5:e8:61:fa:b4:48:3d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db0bbf0692b32b700322105d5ba405fbeb643f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:14:ea:31:24:62:27:ce:ea:69:c6:64:56:a1:
7b:3f:fa:30:e0:0a:30:1f:f4:cd:dc:a9:ba:30:a4:
29:cb:52:69:35:05:79:ce:80:07:d4:d3:fb:5f:bf:
3b:f2:ba:e4:05:0d:ca:bd:70:a9:b8:e2:92:78:da:
70:d5:b1:ee:bc:e9:98:49:d4:21:62:2c:38:08:f4:
64:a4:9c:8a:54:16:8f:2b:78:10:a4:cc:69:9f:4c:
94:ea:45:b6:5f:b5:14:05:cf:da:c4:2a:14:b4:45:
13:72:ce:e8:70:13:10:dd:c6:6f:3e:1e:f0:b2:8c:
f2:e7:92:5d:4c:34:85:b0:42:72:0b:07:33:25:b3:
2b:25:61:ad:4e:99:fa:c8:0f:22:b7:c8:2b:38:91:
93:bc:cc:3a:9d:d7:82:5a:86:e3:65:ed:e5:f5:93:
a1:fd:30:8c:3f:72:7d:7f:9f:6c:0d:04:61:d4:21:
51:75:bc:2c:d6:06:0b:63:64:d0:00:db:c9:c2:9c:
6f:82:44:8e:0e:1e:f7:a9:57:de:68:95:3d:2f:e4:
eb:c0:bb:30:81:aa:47:03:b0:7c:d0:87:95:29:ac:
b8:93:d5:d0:b2:7b:e1:c1:cf:8c:a7:a0:e2:a7:25:
ad:ec:3d:ea:19:72:af:cc:b0:ae:9f:fb:63:ae:7f:
c9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0B:BF:06:92:B3:2B:70:03:22:10:5D:5B:A4:05:FB:EB:64:3F:29
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/2wu_BpKzK3ADIhBdW6QF--tkPyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.202.0/24
Signature Algorithm: sha256WithRSAEncryption
80:be:1a:de:c0:5e:f3:81:6a:4d:f1:e6:39:66:cf:01:95:4d:
81:a7:f7:0d:dc:df:5e:eb:60:c2:10:4b:01:8f:28:e9:08:93:
9c:ba:de:55:69:e4:82:c6:6f:3a:af:09:dc:3b:91:87:5a:69:
de:9f:0f:5a:b9:f2:2d:12:3f:f8:e0:c3:2c:ed:3a:49:c7:a7:
b4:a7:33:ea:2e:49:43:ca:a3:3b:01:bd:3a:16:61:5f:1d:a3:
63:73:94:da:86:b5:05:ac:f5:ba:4e:92:d8:87:58:31:4b:ff:
99:6d:95:8a:9e:f6:b0:2f:7c:84:5f:88:a7:12:0e:f0:b6:43:
79:10:3f:fe:e3:a1:1a:6d:ef:ab:c6:70:ee:e0:bf:89:09:ca:
29:3e:3d:6c:9c:fd:d9:4a:18:f5:d9:58:a4:80:82:b5:04:94:
8d:40:41:a9:58:6d:7c:5c:18:77:99:c1:f2:11:f4:f5:f3:55:
08:2e:91:b6:61:8b:2c:4b:b2:66:08:08:39:0d:af:9e:4e:28:
cd:dc:a7:e7:07:c3:6f:6e:61:fd:d2:a3:f0:28:ba:da:ae:c0:
79:d5:29:0f:6a:9a:1f:b8:bf:7e:85:8d:c3:bb:62:e8:05:ca:
43:f8:dc:15:ab:88:a0:bc:23:d0:af:54:03:54:d0:35:d2:42:
67:7d:f2:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org