Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/2Lh9VlfBTbZKOztDjPFzfX6Pb5A.roa
File: 2Lh9VlfBTbZKOztDjPFzfX6Pb5A.roa (raw, json)
Hash identifier: OfyptgugkTjYHURx5fWauL24NzDxFdqloBX7e9YMBu4=
Subject key identifier: D8:B8:7D:56:57:C1:4D:B6:4A:3B:3B:43:8C:F1:73:7D:7E:8F:6F:90
Certificate issuer: /CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Certificate serial: 018CC5008ADDABD467CC9410C4028185BE85
Authority key identifier: 5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/2Lh9VlfBTbZKOztDjPFzfX6Pb5A.roa
Signing time: Mon 01 Jan 2024 12:29:56 +0000
ROA not before: Mon 01 Jan 2024 12:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57494
IP address blocks: 45.87.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 10:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:8a:dd:ab:d4:67:cc:94:10:c4:02:81:85:be:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Validity
Not Before: Jan 1 12:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8b87d5657c14db64a3b3b438cf1737d7e8f6f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:22:24:9f:c4:18:4f:1a:a2:e2:bf:da:c5:da:
52:7c:96:d6:84:41:22:71:61:19:3b:aa:28:5b:27:
79:df:5e:e7:72:18:3e:c3:06:8a:3f:d8:ba:7f:2f:
63:e5:a4:49:9f:d9:0c:02:ca:dd:72:32:dd:57:61:
cb:ef:a7:8d:80:9e:0a:f6:d7:b9:62:58:83:d5:d2:
0f:42:f6:99:9d:99:f4:89:62:02:cd:a6:51:5a:f8:
fa:27:23:01:7b:69:eb:81:e2:3a:89:85:11:11:a5:
c7:0c:08:c2:40:48:fd:1a:4a:08:7e:df:04:69:2e:
a3:ed:ba:27:68:74:93:7a:b7:25:f9:d2:7e:6d:e2:
9b:22:b9:82:9d:f5:9d:3f:00:3b:6b:47:87:15:7a:
b5:36:20:76:10:a8:cb:08:49:24:94:f4:5f:12:f1:
8c:db:fe:2a:06:7f:4d:05:ce:a7:3b:b8:b5:78:94:
9a:ad:2b:5b:a6:67:d5:88:03:21:68:c5:3d:59:d0:
c9:83:09:e5:f4:1a:39:2c:96:8b:58:1a:af:4d:f2:
e8:0a:2c:9e:35:21:b3:37:5e:08:64:9c:05:df:1f:
cc:b4:f3:a9:e4:d3:2d:c9:98:68:f8:09:52:14:b4:
79:6c:10:0d:90:25:68:87:87:08:c8:98:e4:d4:ef:
71:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B8:7D:56:57:C1:4D:B6:4A:3B:3B:43:8C:F1:73:7D:7E:8F:6F:90
X509v3 Authority Key Identifier:
keyid:5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/2Lh9VlfBTbZKOztDjPFzfX6Pb5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.245.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:92:49:04:68:a6:8a:31:64:bc:c1:c5:c0:dd:d8:43:6b:97:
00:63:67:61:31:aa:85:e4:52:da:29:a6:21:d6:ae:93:12:6b:
40:e2:fd:f5:d6:8c:89:79:80:10:45:aa:2f:1c:cf:14:b2:d0:
38:ab:ea:cb:11:75:b6:08:60:f6:68:c8:70:0b:48:3e:95:71:
d0:19:16:51:82:83:16:0c:d4:64:6e:6d:f7:a3:1c:07:ef:42:
33:dc:91:b5:ae:17:9a:01:30:81:df:54:f8:2d:28:58:9b:f3:
b2:e4:ea:82:41:ba:da:c8:38:88:86:e5:a9:e7:b6:68:68:80:
2a:71:61:c0:2c:6c:9b:d6:59:bd:64:22:dd:b2:2b:a9:57:d1:
83:b9:a4:c7:80:0c:1f:8b:77:2f:73:8b:35:7e:7a:b4:8f:26:
41:a6:eb:71:d1:59:c3:8e:25:09:d7:ff:df:c0:8e:be:5d:3f:
fe:3b:57:10:88:82:3d:bd:62:f3:07:61:d5:0c:61:dc:37:58:
fc:bf:1d:8d:0a:9e:30:54:16:d5:10:27:4b:c5:4b:35:aa:52:
49:8c:0f:ce:16:24:af:2e:73:3c:ef:89:de:ec:61:1f:66:a9:
17:9d:8a:fb:8a:5f:0e:6d:f2:0d:0a:79:91:6c:90:69:eb:b9:
9c:34:58:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:11 2024 by rpki-client on console-fra.rpki-client.org