Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iOMNGVw4GWlj2ndHw-b0lVcNNI0.roa
File: iOMNGVw4GWlj2ndHw-b0lVcNNI0.roa (raw, json)
Hash identifier: 5tD+K7GM6h9XN0xdIFRpa4VfVt4GalJu07pewXJz3WI=
Subject key identifier: 88:E3:0D:19:5C:38:19:69:63:DA:77:47:C3:E6:F4:95:57:0D:34:8D
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01857139CFB061CCE14BEA41F0A8208B8C87
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iOMNGVw4GWlj2ndHw-b0lVcNNI0.roa
Signing time: Mon 02 Jan 2023 06:44:52 +0000
ROA not before: Mon 02 Jan 2023 06:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206786
IP address blocks: 45.86.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cf:b0:61:cc:e1:4b:ea:41:f0:a8:20:8b:8c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 2 06:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88e30d195c38196963da7747c3e6f495570d348d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2e:cf:99:a3:19:85:df:6e:9e:d8:b0:39:c0:
80:1e:e5:00:7f:09:5b:b9:81:77:1f:fd:c5:2b:e3:
82:0e:f2:71:13:da:2c:02:f9:50:64:02:6f:c1:a1:
21:65:b2:1b:c5:01:92:85:b0:94:62:8e:ad:54:c0:
c8:73:2f:21:31:85:4c:ac:d9:b3:8a:22:2b:9b:97:
d1:d0:f8:bd:79:af:d9:ea:86:1c:72:5a:2e:0e:c3:
ba:82:af:c6:6a:be:38:88:fc:87:87:81:17:5b:4a:
61:b8:68:88:4e:46:55:ee:d3:76:e1:fb:5f:b9:d0:
9a:e6:0b:5b:2a:f0:9a:13:de:ac:2f:a8:eb:0e:51:
67:a8:7c:c9:f5:ac:bb:38:52:28:cd:0c:53:9a:4e:
6e:7d:9f:c8:52:57:e9:99:e6:7d:91:1e:cd:64:f9:
97:04:24:c9:c7:4d:c0:ee:0d:09:67:77:5a:b6:02:
bc:40:6a:8c:db:5b:6f:4e:3e:00:eb:69:7a:fe:a2:
34:71:05:26:26:58:f5:7c:d7:0a:ff:74:d8:74:46:
68:99:0c:46:d8:6e:16:f4:c0:7b:34:66:f5:84:ea:
54:46:95:41:63:01:03:7f:f6:83:b1:22:69:be:2e:
22:dc:1e:6a:04:60:42:99:a4:bd:2b:11:11:a4:59:
da:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E3:0D:19:5C:38:19:69:63:DA:77:47:C3:E6:F4:95:57:0D:34:8D
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/iOMNGVw4GWlj2ndHw-b0lVcNNI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.34.0/24
Signature Algorithm: sha256WithRSAEncryption
34:bc:d1:5d:0e:9b:bd:94:64:55:f2:15:d9:8e:52:8b:7d:7e:
11:74:08:05:0d:56:9b:0a:4c:fa:af:92:81:aa:11:ac:d4:63:
78:ab:3b:fe:d7:f3:23:41:15:df:b3:4d:1c:32:c3:80:a2:8b:
f4:70:c5:40:6f:53:55:cc:7f:9e:71:a4:33:fa:49:8d:8a:ec:
5f:00:32:91:27:08:c8:05:3a:20:49:79:07:09:63:71:ee:36:
15:b9:65:1d:cd:b6:7e:64:c5:a8:51:83:dc:14:d6:14:9f:ed:
78:59:db:35:23:e6:ed:a7:3b:1a:63:36:95:e1:5b:41:b4:e6:
fd:51:e7:55:36:18:6e:c2:1b:9f:96:a4:0c:5b:4c:c5:65:90:
75:3f:ba:12:c8:85:8e:98:f7:41:3c:6c:73:c3:c8:db:95:0b:
08:d8:02:a0:b8:37:f7:1c:91:de:bd:5b:38:08:c8:c3:49:2e:
9c:e3:74:88:04:85:91:7a:30:eb:31:76:2c:e7:28:b1:51:47:
03:28:29:00:77:cd:7c:cd:91:6d:b1:da:62:61:e0:9e:cb:69:
a0:1f:60:b7:6c:09:d2:83:5f:e7:cd:93:b6:9d:2a:b2:80:40:
71:77:80:49:cd:aa:00:6d:ae:13:a3:59:65:8b:bc:90:a9:44:
ef:4b:dd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org