Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/5151c5-faa4-45ef-b238-b69cdb4efd82/1/D9DF9NCQjFImnaBF50XFc_veRMQ.roa
File: D9DF9NCQjFImnaBF50XFc_veRMQ.roa (raw, json)
Hash identifier: hKejG3mZ7+nZxELem9PjPZVCkBXJUStrEsjywkxZjCQ=
Subject key identifier: 0F:D0:C5:F4:D0:90:8C:52:26:9D:A0:45:E7:45:C5:73:FB:DE:44:C4
Certificate issuer: /CN=c8d02a9a3a3338ae63d484ef3006b8ad6eafaa1a
Certificate serial: 0189650A7678E227E27CA75B039274570C1D
Authority key identifier: C8:D0:2A:9A:3A:33:38:AE:63:D4:84:EF:30:06:B8:AD:6E:AF:AA:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNAqmjozOK5j1ITvMAa4rW6vqho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/5151c5-faa4-45ef-b238-b69cdb4efd82/1/D9DF9NCQjFImnaBF50XFc_veRMQ.roa
Signing time: Mon 17 Jul 2023 18:08:51 +0000
ROA not before: Mon 17 Jul 2023 18:08:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 45.84.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:0a:76:78:e2:27:e2:7c:a7:5b:03:92:74:57:0c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d02a9a3a3338ae63d484ef3006b8ad6eafaa1a
Validity
Not Before: Jul 17 18:08:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd0c5f4d0908c52269da045e745c573fbde44c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:33:d9:92:55:70:2c:86:cd:02:b5:d5:a8:fa:
34:f3:cb:62:b7:27:29:d3:00:22:58:98:58:32:33:
52:5f:d4:0e:bd:d4:5b:66:c9:cc:36:36:0a:7c:b8:
47:a9:6f:fc:f7:9e:63:a8:a7:48:20:73:32:3d:e7:
5a:24:65:66:dd:a3:59:fb:62:50:39:54:2c:37:75:
24:71:fa:8a:c3:f9:a2:e5:7c:ba:54:42:ad:82:d6:
8f:65:bd:4c:0e:52:4f:94:7a:09:98:b2:db:5a:8c:
1f:81:e6:1e:7e:63:c6:9a:f3:63:73:f1:d2:8b:9f:
27:e8:9a:ff:d2:92:be:ba:52:d7:b5:25:e2:84:79:
ab:e7:7c:e6:fe:62:3b:1d:04:50:c9:59:47:35:42:
d2:97:eb:4f:47:b5:3e:52:51:4a:db:b3:2c:ee:bd:
41:f9:86:2c:f5:9a:7d:58:ab:66:aa:53:cf:eb:d7:
81:03:c6:b6:5f:ef:1d:67:bb:04:4c:4c:fe:3c:82:
da:64:9a:5d:83:12:b9:ac:0d:82:b9:ba:5f:a8:9b:
1b:ad:68:98:45:7b:e9:4c:ab:11:f8:5a:f8:30:b6:
d0:ad:8b:af:c4:a9:a1:3f:5e:10:42:35:c2:99:65:
5f:09:49:a3:4a:37:b4:aa:2a:c9:34:fd:e9:25:2d:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D0:C5:F4:D0:90:8C:52:26:9D:A0:45:E7:45:C5:73:FB:DE:44:C4
X509v3 Authority Key Identifier:
keyid:C8:D0:2A:9A:3A:33:38:AE:63:D4:84:EF:30:06:B8:AD:6E:AF:AA:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNAqmjozOK5j1ITvMAa4rW6vqho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/5151c5-faa4-45ef-b238-b69cdb4efd82/1/D9DF9NCQjFImnaBF50XFc_veRMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/5151c5-faa4-45ef-b238-b69cdb4efd82/1/yNAqmjozOK5j1ITvMAa4rW6vqho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.48.0/22
Signature Algorithm: sha256WithRSAEncryption
27:1c:cd:42:7a:85:d0:b7:dc:aa:76:b2:b4:a1:6d:6d:80:2e:
3a:65:59:44:30:aa:e7:85:e6:af:39:84:ef:40:c3:79:fd:c1:
f4:69:ff:16:e9:d3:04:62:1f:a7:df:4b:90:39:08:f5:a6:2a:
98:9c:69:62:8a:8c:c1:7d:18:75:d1:1a:c9:96:00:4a:20:fd:
df:94:78:fa:32:5b:f5:4e:76:56:3c:00:38:89:ac:7e:82:d2:
a4:03:52:7d:0b:51:d1:a9:52:08:56:00:e8:e4:7d:ba:a9:d1:
e4:01:47:97:71:b4:f1:e9:9f:01:40:2d:49:de:8e:f1:c1:87:
d2:76:76:5b:7c:36:9d:6d:f3:b9:69:2b:52:de:01:09:d2:96:
c5:01:66:15:81:07:d4:22:f9:db:49:07:3d:1a:83:50:f3:60:
46:2b:48:98:0c:ef:db:a3:f9:b8:33:c7:b3:40:b2:f6:1f:f7:
98:71:ce:c0:24:34:91:00:bc:9c:ab:f6:2e:47:df:00:34:03:
7f:84:7d:b0:16:7f:18:89:88:49:8b:4b:5c:ad:c3:fd:6d:bf:
36:0d:18:9f:c7:b6:6a:ae:ea:d2:be:a4:4b:86:6b:e7:3c:b9:
74:93:13:e6:ae:ee:98:f1:a6:92:b6:bb:e1:18:79:0e:4b:ac:
76:0c:11:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:08 2024 by rpki-client on console-fra.rpki-client.org