Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8xikNHXd3OAFLnX80J-dgMMA-bc.roa
File: 8xikNHXd3OAFLnX80J-dgMMA-bc.roa (raw, json)
Hash identifier: 6R0U24Z92vZ6GKW4dM4XqAFjypgBfwl6iQxYqI0M0Bg=
Subject key identifier: F3:18:A4:34:75:DD:DC:E0:05:2E:75:FC:D0:9F:9D:80:C3:00:F9:B7
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0189B6EC79C44D28AEB90CEF11711CFC23DB
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8xikNHXd3OAFLnX80J-dgMMA-bc.roa
Signing time: Wed 02 Aug 2023 15:44:58 +0000
ROA not before: Wed 02 Aug 2023 15:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136557
IP address blocks: 45.67.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:ec:79:c4:4d:28:ae:b9:0c:ef:11:71:1c:fc:23:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 2 15:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f318a43475dddce0052e75fcd09f9d80c300f9b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:d4:46:4e:bf:bd:69:9e:68:2b:dd:67:a1:
71:a6:c9:9c:51:5a:f9:87:85:16:7b:b7:a3:dd:67:
06:49:bb:b4:41:59:47:b7:04:c5:e6:af:d9:ef:7e:
b9:ab:d5:e9:41:60:3e:07:14:c4:6f:6d:73:b6:5b:
39:d3:f2:52:18:4a:cd:90:2a:b9:4c:a3:3f:23:ef:
12:c2:0c:3a:3c:38:ed:98:d5:76:cb:1d:91:a5:a6:
ca:6d:e1:ff:f1:b8:18:7c:5c:65:42:2b:b5:e0:c8:
d7:a5:b2:9b:90:ea:1a:78:63:40:23:49:7b:a7:f4:
4b:af:8a:10:24:76:e9:b0:20:09:c8:9c:66:f4:8e:
a5:32:04:df:b2:b3:41:e8:3a:e4:a9:c3:19:75:b2:
48:74:9b:5a:a1:6d:9c:a6:04:bd:bb:36:27:b3:cf:
03:22:21:12:e7:6c:a1:d8:44:ba:95:68:00:c4:ba:
cc:82:0c:6b:84:80:ac:63:68:5f:c9:9d:12:9b:96:
10:71:7b:a0:58:9b:07:9e:d5:9d:db:02:d8:72:17:
b7:88:01:a4:30:4b:73:a4:99:c0:28:5a:78:42:13:
b8:dc:5e:c1:e9:c5:46:a7:16:a9:b3:fa:11:f2:f6:
19:d2:c5:7a:6c:83:cc:67:cd:84:67:c7:2b:f5:ec:
d7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:18:A4:34:75:DD:DC:E0:05:2E:75:FC:D0:9F:9D:80:C3:00:F9:B7
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8xikNHXd3OAFLnX80J-dgMMA-bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.86.0/24
Signature Algorithm: sha256WithRSAEncryption
11:57:d3:bd:57:aa:11:2d:3a:87:3c:d1:40:42:57:44:98:ad:
72:8b:f7:d7:4f:da:aa:4b:f7:30:3b:b5:26:d2:05:bf:2d:ce:
6b:64:d8:94:cb:09:85:6a:d2:0a:56:39:92:17:90:ef:c1:e5:
f9:87:91:17:cc:2f:8a:38:5f:e9:c8:cc:da:08:c3:c3:ab:40:
02:29:f8:ee:87:f3:3e:fc:03:e7:22:72:4f:bf:dd:9a:32:a0:
9d:2f:ac:40:be:88:f7:b5:3e:f3:38:22:01:99:8f:66:b6:4e:
b4:de:a6:c0:47:28:4f:4e:5f:45:2c:db:c3:51:5b:1d:e5:fd:
c3:2a:80:7c:7e:85:0d:18:00:f6:c2:5b:3e:a9:43:61:35:e8:
9b:a9:fc:cf:9e:c3:12:ef:a2:18:33:ee:77:99:8a:f4:ec:8e:
f9:e8:f2:ff:26:6d:8d:70:f9:4e:1c:12:11:bd:b1:7f:64:ac:
b3:00:cb:9b:4b:1c:f1:40:79:9d:72:13:98:30:90:0d:ce:e3:
5d:73:8f:6d:a7:da:5b:21:7e:46:8d:0c:7b:06:d2:6d:33:e0:
02:35:9f:fa:ae:c7:35:e8:d7:51:10:b0:e8:f6:f0:41:db:31:
60:ab:d8:14:70:73:2c:78:1f:67:f8:70:56:4c:46:9e:8f:90:
37:03:a5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org