Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/cPkLFHZBtIbgQalihqWR23DRDK4.roa
File: cPkLFHZBtIbgQalihqWR23DRDK4.roa (raw, json)
Hash identifier: ldvMrxt4tsURvh/Mb4HMRJ+02GvRw5ytPPVycCNVM1o=
Subject key identifier: 70:F9:0B:14:76:41:B4:86:E0:41:A9:62:86:A5:91:DB:70:D1:0C:AE
Certificate issuer: /CN=706d64134faa746293c0384edac0371950f3b224
Certificate serial: 01856F5498C33348C30E1A90A4D7168AA137
Authority key identifier: 70:6D:64:13:4F:AA:74:62:93:C0:38:4E:DA:C0:37:19:50:F3:B2:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/cPkLFHZBtIbgQalihqWR23DRDK4.roa
Signing time: Sun 01 Jan 2023 21:54:53 +0000
ROA not before: Sun 01 Jan 2023 21:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 45.90.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:98:c3:33:48:c3:0e:1a:90:a4:d7:16:8a:a1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d64134faa746293c0384edac0371950f3b224
Validity
Not Before: Jan 1 21:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70f90b147641b486e041a96286a591db70d10cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:48:0d:ea:76:ee:06:17:c8:f2:4e:a2:12:70:
00:eb:18:9f:0f:81:55:d8:64:86:76:ca:39:e3:37:
1c:99:0b:e4:f4:ed:10:6d:b6:87:26:e5:91:cb:d2:
8b:04:25:85:37:3e:62:8f:fd:9c:e7:0d:84:60:6a:
a9:3f:88:ab:5f:e8:69:84:df:05:3b:f6:6e:bc:63:
a0:bf:58:f0:19:25:46:45:64:d3:e5:8e:1e:ce:4e:
4e:52:a9:74:9d:2f:81:ae:24:ef:cd:97:c1:2c:48:
76:38:0a:2e:8d:6b:82:eb:7c:2d:cf:92:d5:29:d3:
d6:d3:a1:bf:36:ed:59:7f:4f:2d:55:ae:95:6c:1c:
1c:73:bd:40:79:35:4d:a1:54:7d:81:6e:8f:df:4c:
00:1b:c3:4d:79:36:d8:35:14:79:11:d4:bc:c9:ef:
b0:44:98:80:2e:b0:2f:ca:6a:62:9a:52:b3:dd:ba:
d6:8a:f3:35:8a:79:b1:a9:e2:d1:ec:f8:e5:38:b0:
cf:f7:59:34:f5:f8:8b:51:8c:10:90:ab:56:45:69:
f9:7e:0b:1c:1c:7d:bf:0b:db:49:77:6a:2b:ca:b1:
a2:57:99:69:3f:e0:7e:b5:39:cb:7f:08:83:a5:b9:
df:fc:c3:bf:1b:98:7d:64:71:e4:80:a7:4d:fe:ac:
61:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F9:0B:14:76:41:B4:86:E0:41:A9:62:86:A5:91:DB:70:D1:0C:AE
X509v3 Authority Key Identifier:
keyid:70:6D:64:13:4F:AA:74:62:93:C0:38:4E:DA:C0:37:19:50:F3:B2:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/cPkLFHZBtIbgQalihqWR23DRDK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.41.0/24
Signature Algorithm: sha256WithRSAEncryption
78:72:63:22:f1:10:73:59:87:cf:e9:ac:50:3b:5c:04:a2:3c:
ee:11:03:b9:a8:db:50:f6:73:16:0f:0f:d8:cd:5d:7a:aa:c0:
c2:58:2c:f9:e5:98:bb:76:96:42:03:c9:f0:d6:e3:36:00:5f:
1d:db:70:3b:5d:f2:a5:27:7e:91:44:f2:07:f8:e1:72:a5:59:
3b:6f:0c:05:bc:a1:b6:91:2c:38:b6:de:66:37:74:be:00:15:
f6:de:f0:d1:9d:ce:5d:11:b0:25:87:92:ba:0c:1f:68:4c:37:
c8:19:85:7d:7d:f0:07:55:90:8e:13:6d:24:cd:73:b5:89:84:
1c:72:70:e5:31:d5:ac:c1:34:bb:d2:4f:f4:99:05:b6:32:4b:
d5:79:fe:21:56:54:df:24:11:37:d3:19:69:cf:82:79:f1:65:
92:82:02:23:d4:51:3a:d8:85:be:e0:6b:cf:a3:cc:21:f1:b3:
24:76:0c:e1:b5:6e:e5:1a:96:de:0a:21:e0:99:7a:2e:98:b1:
1b:25:d3:99:af:72:7e:93:a4:60:1b:10:07:fc:d2:83:33:57:
1e:76:5d:02:43:65:32:b6:a1:1f:15:0d:06:f6:87:0d:1a:7e:
45:6f:b0:d3:15:ae:fc:bc:d3:8e:a2:41:48:f5:0f:02:9a:97:
4a:09:26:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:44 2024 by rpki-client on console-fra.rpki-client.org