Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Fv8GCvfomvvmWBvm4AR0VBisI4o.roa
File: Fv8GCvfomvvmWBvm4AR0VBisI4o.roa (raw, json)
Hash identifier: IVkA2eJrubW1Q5Xi5VRGfrTos65aVpbhe7mDoFcxTHs=
Subject key identifier: 16:FF:06:0A:F7:E8:9A:FB:E6:58:1B:E6:E0:04:74:54:18:AC:23:8A
Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Certificate serial: 01857042D411BD48936DE371D8448EA0C491
Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Fv8GCvfomvvmWBvm4AR0VBisI4o.roa
Signing time: Mon 02 Jan 2023 02:15:05 +0000
ROA not before: Mon 02 Jan 2023 02:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35424
IP address blocks: 45.67.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:d4:11:bd:48:93:6d:e3:71:d8:44:8e:a0:c4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Validity
Not Before: Jan 2 02:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16ff060af7e89afbe6581be6e004745418ac238a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:13:e9:ae:2a:3c:a3:ca:b1:ef:ff:ae:06:38:
61:24:bb:58:86:b7:bb:d9:56:17:21:e6:50:9a:8b:
21:e6:54:5e:cb:de:f1:12:55:67:b6:92:fe:90:61:
29:75:84:25:9c:2c:3d:38:27:f9:6c:2f:db:57:9c:
45:25:f2:e0:0b:ef:8e:01:a4:2e:0e:4a:30:18:b0:
26:bf:32:13:ce:2f:7d:77:33:cf:1b:da:5e:22:d9:
4e:51:a3:49:f4:41:f8:80:97:b5:04:5e:3b:dc:ad:
5a:2d:c5:8e:a4:73:ec:1a:00:99:a1:11:41:03:1b:
0f:eb:08:bd:88:98:89:51:30:78:ac:a7:70:7b:13:
3e:14:28:8e:bb:67:12:e1:c1:0d:92:f6:c6:29:f3:
e7:9a:40:76:f7:65:e3:ba:7e:63:ca:22:73:46:53:
e8:e5:81:8a:e9:fc:3d:13:14:f8:01:87:d5:9b:be:
6b:89:2b:7c:0a:53:9b:92:46:5e:27:64:32:14:42:
f6:94:11:3a:0a:6b:55:8b:6c:47:65:25:b8:6d:67:
95:7d:d0:2f:36:d8:2d:ef:2f:d5:80:75:1d:f7:9e:
7d:c1:51:ca:0f:08:af:ab:d2:39:3a:0e:5e:62:60:
01:63:f1:7b:db:ff:01:e2:26:37:bc:72:ca:46:c7:
b1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FF:06:0A:F7:E8:9A:FB:E6:58:1B:E6:E0:04:74:54:18:AC:23:8A
X509v3 Authority Key Identifier:
keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Fv8GCvfomvvmWBvm4AR0VBisI4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.164.0/22
Signature Algorithm: sha256WithRSAEncryption
29:06:b4:ed:f4:96:a2:2c:ee:17:13:2a:ce:77:1e:01:8b:1b:
a0:d7:5e:e1:a6:ec:df:d8:dd:4c:9d:2a:9d:a3:2c:8b:32:d7:
30:09:c0:fd:8c:ee:5a:66:9e:12:b0:60:38:e4:12:35:96:7a:
b3:62:8e:84:94:8f:0a:36:fa:fb:6f:8d:c3:ad:e7:2b:37:d0:
9e:8b:5c:9d:a5:ea:a4:54:14:88:57:92:1c:2c:7f:0e:98:e2:
f4:83:79:38:a4:9e:c2:70:c2:00:63:7c:fa:29:6d:eb:ba:df:
34:c7:ff:88:54:88:78:6f:ae:cd:32:32:fd:2a:6a:52:c6:58:
e4:77:75:9a:af:91:50:05:cd:ee:98:e8:3a:97:06:6b:19:42:
dc:15:0e:22:ad:68:4f:56:c8:e1:07:c6:b1:b1:ae:e3:4b:c8:
96:2f:a0:e0:34:26:e2:72:62:f5:99:35:07:ac:31:8b:dd:01:
86:be:6f:ed:57:6b:69:2b:bb:01:41:42:aa:30:8a:90:7b:f4:
47:cb:e6:75:df:76:35:ed:65:d1:f5:f5:31:4d:fe:f6:2b:0a:
6a:a3:06:12:f2:da:7b:0d:6c:ef:6a:0a:55:08:17:e2:8c:07:
73:cf:23:a9:87:48:12:10:9d:3a:37:66:95:33:f5:0a:5f:29:
83:0b:6f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:54 2024 by rpki-client on console-ams.rpki-client.org