Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/JRu6jbhIl8VryGxHluDb12cDTSk.roa
File: JRu6jbhIl8VryGxHluDb12cDTSk.roa (raw, json)
Hash identifier: R1C8TB2vJjFvRH1Xh3KYf9vkfRSEDzymDLTiDejL+0s=
Subject key identifier: 25:1B:BA:8D:B8:48:97:C5:6B:C8:6C:47:96:E0:DB:D7:67:03:4D:29
Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772
Certificate serial: 0186B64EBEFD0B5B03433C707BBBC6BE874E
Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/JRu6jbhIl8VryGxHluDb12cDTSk.roa
Signing time: Mon 06 Mar 2023 09:44:19 +0000
ROA not before: Mon 06 Mar 2023 09:44:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208654
IP address blocks: 45.85.148.0/22 maxlen: 24
2a0e:c680::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:4e:be:fd:0b:5b:03:43:3c:70:7b:bb:c6:be:87:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772
Validity
Not Before: Mar 6 09:44:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=251bba8db84897c56bc86c4796e0dbd767034d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:30:d1:bf:91:8c:f8:1b:af:9b:7f:8e:d5:
35:e2:80:6b:9b:8d:f9:fd:47:57:30:99:5f:4e:5f:
c3:86:d7:b8:e2:1e:c0:f5:3a:2a:94:81:07:34:e6:
0b:69:76:2c:63:47:a1:cd:db:92:5c:d3:0d:19:0e:
87:05:62:00:2a:b6:04:51:57:4c:ae:9f:b6:15:87:
f3:34:a0:b3:01:01:f2:6a:68:6d:0c:91:d0:ca:c0:
58:2a:76:ac:73:9d:07:af:c5:96:1d:30:b9:8d:f1:
24:16:7a:dc:1e:04:04:bd:fd:25:b3:21:dd:f5:5f:
7b:09:af:9d:da:13:95:6a:a5:fb:ca:a5:5e:92:dc:
d9:8c:f6:c3:60:69:d0:86:c9:7b:c4:1e:07:0f:53:
3f:5f:a6:8d:13:a2:e6:9a:50:b5:4f:14:a5:48:b6:
f5:2c:4e:31:23:a8:7f:f2:98:b3:9e:46:2e:d0:ea:
00:5f:15:92:89:90:69:a3:85:bd:bb:75:91:b7:12:
16:c8:6d:3e:d9:33:e0:f0:b5:f4:45:27:a4:f1:87:
b8:53:a0:05:9c:8b:6b:eb:26:59:2e:19:51:03:60:
c5:c7:26:95:73:f1:68:48:60:17:e6:08:45:6c:5e:
fd:33:2e:d6:3d:fc:85:fe:6c:a1:70:c7:42:3e:84:
62:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1B:BA:8D:B8:48:97:C5:6B:C8:6C:47:96:E0:DB:D7:67:03:4D:29
X509v3 Authority Key Identifier:
keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/JRu6jbhIl8VryGxHluDb12cDTSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.148.0/22
IPv6:
2a0e:c680::/32
Signature Algorithm: sha256WithRSAEncryption
2e:7b:c2:d3:f6:c5:d3:d2:b9:17:8f:6c:86:0e:dd:32:24:e3:
ae:85:9b:ce:eb:40:e2:1e:5e:f0:9f:b1:94:5c:9b:ac:77:0a:
b5:cc:54:fc:96:8f:3a:f3:93:40:80:19:ff:cc:8a:40:cb:8e:
76:1d:a4:2d:f9:36:e6:aa:3c:bc:15:42:cd:33:f9:20:31:c0:
15:bd:db:41:64:ea:88:b1:a8:1f:81:fc:92:3c:eb:47:41:ab:
5a:37:15:70:55:3a:83:ad:f3:74:a6:57:2d:73:fa:2e:ff:b1:
28:c6:8f:c3:dd:0c:7e:9c:a9:58:c0:e9:d9:5e:90:d2:d4:0f:
09:b5:ef:74:3a:8b:3f:9a:b8:01:a7:69:ea:4b:c4:b3:48:33:
bb:f3:60:86:59:90:2b:79:bb:03:45:77:9b:1c:e9:bf:7f:b4:
f6:34:aa:3c:d2:f8:94:1f:c0:b8:e3:50:ba:72:0d:80:b7:1f:
f1:e7:ff:a4:9e:48:26:32:f9:a3:ea:09:44:4e:18:5c:2b:ca:
14:28:2e:b7:3f:e9:ce:90:a0:a7:88:93:33:82:7a:d8:1d:a3:
97:ff:b7:4b:7b:3f:0a:38:71:70:9a:23:cf:fd:ae:74:20:d3:
c0:53:05:1b:16:b9:a9:69:91:3c:3e:99:70:9e:22:77:40:23:
76:9b:21:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:54 2024 by rpki-client on console-fra.rpki-client.org