Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0a627e-c40a-4590-8c9a-696e3d188f2a/1/r3A3DVtY54smpfXmUmFpdVYbC5M.roa
File: r3A3DVtY54smpfXmUmFpdVYbC5M.roa (raw, json)
Hash identifier: vVVzPJXpoHKPhugBea2W8JSt9GNbUZP2H4YyDFmQWRU=
Subject key identifier: AF:70:37:0D:5B:58:E7:8B:26:A5:F5:E6:52:61:69:75:56:1B:0B:93
Certificate issuer: /CN=d6cce89eea451b8294a8bb697c4993ae44d05c6f
Certificate serial: 018675791F6315B42E2E62E140BE3455A7B3
Authority key identifier: D6:CC:E8:9E:EA:45:1B:82:94:A8:BB:69:7C:49:93:AE:44:D0:5C:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1szonupFG4KUqLtpfEmTrkTQXG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0a627e-c40a-4590-8c9a-696e3d188f2a/1/r3A3DVtY54smpfXmUmFpdVYbC5M.roa
Signing time: Tue 21 Feb 2023 19:35:17 +0000
ROA not before: Tue 21 Feb 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 45.85.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:79:1f:63:15:b4:2e:2e:62:e1:40:be:34:55:a7:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6cce89eea451b8294a8bb697c4993ae44d05c6f
Validity
Not Before: Feb 21 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af70370d5b58e78b26a5f5e652616975561b0b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cc:07:fd:48:b5:bf:57:24:72:ad:6d:6f:8e:
6c:ef:ba:16:3c:55:83:22:61:ce:e6:ac:7d:29:24:
74:73:10:be:06:b9:15:2a:78:c6:f4:9d:2b:ae:8b:
37:cf:a9:97:e1:1d:b7:82:58:19:30:1b:4d:9b:61:
6c:71:82:a4:54:5c:f6:86:cc:af:ac:0a:b4:24:4d:
f2:3b:1c:0d:da:44:47:29:c7:66:ec:24:3d:0c:86:
54:a8:15:4b:6b:17:f0:cb:0b:80:c3:1e:11:37:f0:
cd:38:f6:ce:69:3a:1d:2e:a0:39:16:d4:96:4a:b7:
3f:83:06:67:4e:e3:36:f9:c1:ba:6f:c2:90:a1:60:
3f:63:29:7b:a9:99:b3:43:2f:bf:31:e5:6d:d2:be:
85:f2:18:04:24:cd:58:8f:5e:dd:db:45:90:14:3c:
ab:71:a4:57:8c:cb:74:d3:1a:23:c1:25:9a:2d:27:
39:31:6a:3a:88:07:6c:69:b6:34:21:41:21:64:4d:
0f:9c:3c:e1:e5:2f:cc:66:e7:4a:b1:c7:29:8f:37:
00:34:db:4f:54:2f:10:96:24:28:54:43:37:94:a9:
5c:dc:c2:49:6f:da:e0:7d:62:0c:e4:6a:59:6d:29:
f7:5a:ef:32:75:97:f7:70:6d:19:2a:72:b2:15:6e:
b0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:70:37:0D:5B:58:E7:8B:26:A5:F5:E6:52:61:69:75:56:1B:0B:93
X509v3 Authority Key Identifier:
keyid:D6:CC:E8:9E:EA:45:1B:82:94:A8:BB:69:7C:49:93:AE:44:D0:5C:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1szonupFG4KUqLtpfEmTrkTQXG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0a627e-c40a-4590-8c9a-696e3d188f2a/1/r3A3DVtY54smpfXmUmFpdVYbC5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0a627e-c40a-4590-8c9a-696e3d188f2a/1/1szonupFG4KUqLtpfEmTrkTQXG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.189.0/24
Signature Algorithm: sha256WithRSAEncryption
37:49:53:04:ec:5d:e9:61:24:34:03:ba:24:07:fa:1e:93:b9:
f1:52:c1:7a:39:d7:83:5f:83:ff:f7:b9:a3:e3:bd:fd:e9:d9:
2c:36:2e:9f:4b:80:52:f8:fb:58:4f:21:b0:ee:4b:ed:f1:3d:
9f:35:91:a9:01:1b:cb:8b:aa:98:41:5f:95:45:53:23:1f:c8:
5d:fe:e8:d8:0c:bc:27:8d:a6:f8:b7:d1:a8:e6:b4:66:26:0c:
f5:1b:48:fc:67:c6:13:e2:76:f4:95:aa:f9:f4:0d:27:2a:42:
6f:f9:94:ee:07:f8:b9:2b:23:30:e6:45:f4:94:eb:54:d9:0a:
cc:99:b9:90:d8:16:af:e4:bc:c9:85:11:e5:10:da:11:ee:58:
4a:67:9d:4d:25:be:90:98:84:0b:4c:ee:92:e2:44:0e:9b:12:
c9:34:36:81:72:6d:97:dc:f2:38:2f:15:b6:e9:86:f7:a6:37:
df:85:d4:83:ba:4b:54:b4:45:4e:e2:7e:8a:0d:0d:26:ec:99:
97:68:0a:76:f9:6d:05:99:73:fb:be:d0:58:fc:de:99:d9:3a:
d9:01:66:b9:c1:16:a8:ff:dd:b2:9e:52:da:bf:f0:a7:b1:f7:
fa:b8:e9:65:80:3a:2a:5e:38:79:5b:0b:30:48:e5:a7:b2:f1:
fd:08:f5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:30 2024 by rpki-client on console-fra.rpki-client.org