Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/uZM4Cpnco_IOq6_2EBhUsRKsL0Y.roa
File: uZM4Cpnco_IOq6_2EBhUsRKsL0Y.roa (raw, json)
Hash identifier: GMJKJu26WJHdl2p2lZmM3udKr/RJQ4xawrfaRglpiDg=
Subject key identifier: B9:93:38:0A:99:DC:A3:F2:0E:AB:AF:F6:10:18:54:B1:12:AC:2F:46
Certificate issuer: /CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Certificate serial: 01857030475B7A1F06CD8F76C609A52FBA52
Authority key identifier: 61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/uZM4Cpnco_IOq6_2EBhUsRKsL0Y.roa
Signing time: Mon 02 Jan 2023 01:54:50 +0000
ROA not before: Mon 02 Jan 2023 01:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 45.86.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:47:5b:7a:1f:06:cd:8f:76:c6:09:a5:2f:ba:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Validity
Not Before: Jan 2 01:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b993380a99dca3f20eabaff6101854b112ac2f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:15:87:6e:03:91:cf:01:b5:17:df:39:d9:
35:43:74:e7:2a:3f:32:c3:e6:5c:b0:ad:0a:bb:ef:
c4:5d:e0:fb:91:9d:3a:ac:c4:e0:ab:21:49:f1:15:
a3:dd:dd:6d:3f:60:14:20:29:d0:58:7f:12:3d:93:
ea:2f:37:4a:c9:26:60:04:50:9d:ff:1c:32:47:0f:
f4:32:c2:19:67:d9:c3:a2:eb:37:5d:2e:7a:ff:b2:
bf:11:2f:66:e3:4d:f2:fd:df:1c:6d:5f:b0:f4:dd:
5a:7e:0e:c9:8f:fc:16:99:ed:0c:e1:a3:52:45:6c:
a0:0c:88:18:0a:f1:9f:48:07:ae:ca:c3:0e:b5:e8:
1c:ef:2a:3e:e0:89:7c:9f:9d:a0:00:0a:fe:f0:fb:
a7:ad:93:44:aa:1f:ca:42:25:0c:be:62:47:13:de:
61:f4:e4:73:ef:30:e1:ad:b4:fb:b3:37:cd:0b:66:
1b:dd:b6:58:6b:63:2f:a3:84:be:c1:3d:0d:69:48:
e1:4f:65:48:98:47:e3:13:3e:ce:38:ee:0a:95:75:
1e:cb:81:45:90:d3:ed:c8:3d:e0:36:2f:e6:68:74:
43:b9:f5:c3:0e:d4:22:b3:8a:20:b8:0e:86:cd:52:
b8:85:8d:d2:35:c5:93:2a:80:65:70:b7:97:97:85:
84:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:93:38:0A:99:DC:A3:F2:0E:AB:AF:F6:10:18:54:B1:12:AC:2F:46
X509v3 Authority Key Identifier:
keyid:61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/uZM4Cpnco_IOq6_2EBhUsRKsL0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.204.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:83:67:3c:a6:63:5d:82:dd:38:41:8a:e8:dd:bc:59:a7:3d:
72:5d:f5:2e:9b:df:1f:29:6a:83:a6:33:1f:8e:7b:5e:3f:f6:
6c:a3:9e:30:be:20:45:0b:70:e9:f1:7c:14:a9:9a:c5:24:18:
b6:19:4c:4a:c0:30:d3:64:c4:62:68:d1:f0:54:de:24:2f:46:
6d:aa:72:e3:5e:19:8a:17:49:a8:2e:e1:79:e9:8b:f3:fd:41:
90:0b:9f:ce:b5:35:63:2b:e6:25:65:fe:99:59:9d:13:80:d6:
0a:3d:d1:85:fc:41:5c:66:da:cf:26:af:b4:a0:0d:9a:0a:36:
2b:e0:52:b8:c7:af:6c:12:cc:ab:41:23:c0:17:6d:88:e2:a4:
79:79:5f:df:0b:1c:17:1d:b8:69:f4:dc:90:6b:5f:a3:2f:f7:
86:8a:c5:f6:81:fe:15:a1:61:c0:67:14:f6:32:35:cc:37:11:
3a:11:a3:4c:ec:f3:cc:6c:95:8b:83:02:2c:2e:7b:f9:4d:ea:
a4:2d:46:5b:cd:0f:53:8a:33:fa:ef:94:8a:f0:f3:06:2e:42:
d3:d8:18:09:f2:99:12:9e:dd:3f:90:60:63:cd:74:97:25:14:
e0:60:ff:53:51:c6:90:64:d3:6b:80:93:81:30:dc:f0:99:d2:
7d:3b:94:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:09 2024 by rpki-client on console-ams.rpki-client.org