Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2a0URTnz7W4sTVFjYdrQT3JPUJU.roa
File: 2a0URTnz7W4sTVFjYdrQT3JPUJU.roa (raw, json)
Hash identifier: NpGi4bTABEEePc456Gg8QvFuLqgiYChbaEFm2KTgrk4=
Subject key identifier: D9:AD:14:45:39:F3:ED:6E:2C:4D:51:63:61:DA:D0:4F:72:4F:50:95
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018784A29A5BB9DAEEA9EE89AEE1862EDA7F
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2a0URTnz7W4sTVFjYdrQT3JPUJU.roa
Signing time: Sat 15 Apr 2023 11:17:41 +0000
ROA not before: Sat 15 Apr 2023 11:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210837
IP address blocks: 45.89.63.0/24 maxlen: 32
45.89.62.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 03 Dec 2023 14:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:a2:9a:5b:b9:da:ee:a9:ee:89:ae:e1:86:2e:da:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Apr 15 11:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9ad144539f3ed6e2c4d516361dad04f724f5095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d7:48:f3:78:90:20:5e:37:17:44:15:1a:d7:
e0:5b:51:70:66:02:bd:76:a9:97:ee:f3:43:61:7d:
79:45:c5:6c:9a:7b:bb:b8:9a:03:4b:4d:fa:c8:b8:
44:0c:fe:00:a1:51:0c:07:39:ec:c6:5a:e4:25:6b:
4e:64:a2:ee:b9:d7:5d:4f:5c:3b:96:ce:0a:8e:fe:
dd:14:a8:b0:8f:67:3b:1b:a0:e1:1f:bf:90:c6:62:
3a:40:8c:0f:ef:15:ff:d7:3d:f5:79:2e:8d:07:17:
a6:27:69:57:6e:0a:cb:e2:7c:ca:77:c6:6e:f0:e8:
a3:74:40:88:19:40:7b:d4:cb:52:df:36:63:5d:46:
66:66:54:dc:48:65:a9:c9:63:50:d2:4a:21:b1:c4:
d4:d6:3f:9a:c3:f3:81:bf:3b:b2:45:0b:d7:c9:cd:
46:a1:1d:45:ce:0e:ef:01:9b:d3:a3:b7:de:0f:77:
13:db:5d:c5:46:e8:35:19:c3:86:de:ed:1d:45:4b:
f5:9f:36:ff:e8:2c:6f:a2:3f:6f:c5:92:3f:6a:93:
b9:1a:57:04:17:0a:7d:ac:31:f8:85:98:48:16:54:
91:fc:a1:0e:63:0d:ab:4c:1a:30:1d:e4:88:8f:8d:
8b:4e:03:de:0c:f1:6b:05:d2:51:f5:7c:66:01:9a:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AD:14:45:39:F3:ED:6E:2C:4D:51:63:61:DA:D0:4F:72:4F:50:95
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2a0URTnz7W4sTVFjYdrQT3JPUJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.62.0/23
Signature Algorithm: sha256WithRSAEncryption
60:27:58:10:fd:fc:5f:c9:1e:47:f0:54:c9:34:1e:eb:60:bf:
9c:53:1e:c6:9e:0f:72:a1:41:05:18:d6:4f:21:ea:b4:68:b3:
1d:de:cb:8c:64:50:35:54:99:35:26:86:ec:21:ab:12:7f:89:
15:49:ea:b4:c1:4c:2b:95:07:83:64:be:d3:b1:9a:a7:f6:56:
b7:32:9d:f4:6b:81:61:28:5b:0b:ac:72:c0:65:67:b9:65:1c:
8c:39:1e:ae:28:c0:04:d0:ec:2e:e2:55:b1:f6:35:ce:b5:64:
2c:d2:52:e5:03:37:ec:38:d3:ca:a4:b1:84:2b:1d:e5:e8:31:
e0:85:62:b7:df:18:e7:6a:06:9b:03:4c:51:69:70:93:11:ac:
9c:22:41:ce:c5:40:e5:50:32:14:0d:85:5a:1b:8c:0d:2a:82:
02:68:c1:32:b6:31:22:c9:7a:f7:58:fd:66:80:5b:ae:c8:76:
32:28:2b:b9:d7:9e:a9:c4:00:9c:16:93:e3:78:f2:40:4e:8c:
20:87:1f:b9:77:44:83:9a:6e:e0:1b:e9:f6:68:3c:8f:04:cb:
16:20:58:7e:71:1e:eb:c0:93:f6:fb:31:fc:74:a3:51:56:30:
8c:9f:05:32:be:c4:25:a7:f7:f8:37:a7:03:df:71:d7:61:f1:
93:7b:6a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org