Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HObqm0rnyIrpncRl584IeI0G-rg.roa
File: HObqm0rnyIrpncRl584IeI0G-rg.roa (raw, json)
Hash identifier: mRtH244o7aYDjTpUL7CVfOcwNtTm2UC+0YshF7reKEA=
Subject key identifier: 1C:E6:EA:9B:4A:E7:C8:8A:E9:9D:C4:65:E7:CE:08:78:8D:06:FA:B8
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01908CD3A45040F9E836B34C64B4B36DF511
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HObqm0rnyIrpncRl584IeI0G-rg.roa
Signing time: Sun 07 Jul 2024 10:53:18 +0000
ROA not before: Sun 07 Jul 2024 10:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 45.89.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 14:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8c:d3:a4:50:40:f9:e8:36:b3:4c:64:b4:b3:6d:f5:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jul 7 10:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ce6ea9b4ae7c88ae99dc465e7ce08788d06fab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c1:65:a7:cd:ee:e2:af:39:a1:f1:4d:47:b7:
3c:27:28:35:82:07:eb:5c:05:3e:e9:ad:ac:94:48:
b5:08:a3:ca:97:bd:34:fd:b1:00:7f:10:f1:a3:34:
14:fc:3c:e9:14:6c:ae:6f:75:33:fe:22:a8:70:04:
22:37:45:84:2f:f8:d8:ec:44:7c:e1:9b:aa:72:e4:
53:ef:0c:3a:65:b5:d2:0b:86:3b:50:7d:aa:de:be:
6f:7b:63:f4:dd:83:31:c5:5b:74:88:b6:56:57:14:
77:6d:bb:41:06:13:df:c7:ca:24:49:54:dc:20:c4:
75:f9:8a:5e:54:30:5e:5b:1b:10:ea:5f:e5:b5:b2:
e0:68:51:24:fc:ed:00:df:54:ec:03:df:64:95:53:
24:69:12:32:e7:34:5d:c5:11:ee:d5:47:71:2c:a4:
fc:9a:15:aa:b2:c8:9c:62:b0:5c:6f:96:e1:dd:5d:
df:15:f2:fe:00:43:05:d7:0e:1c:0a:e2:02:47:a0:
de:60:9f:aa:90:20:be:b5:c3:e3:87:cb:18:36:bc:
ef:43:29:8d:a8:1f:85:85:d9:a8:aa:b3:f0:18:96:
60:b3:4e:00:2c:7c:9c:15:c2:a7:ae:72:a1:60:55:
88:40:99:e3:6d:de:7d:80:3f:21:09:2f:e3:28:c8:
76:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E6:EA:9B:4A:E7:C8:8A:E9:9D:C4:65:E7:CE:08:78:8D:06:FA:B8
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HObqm0rnyIrpncRl584IeI0G-rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.62.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d9:59:2a:ca:13:66:ba:b6:0e:59:84:c0:8a:1f:3b:04:e4:
58:a5:2e:02:fb:3b:70:fc:16:a0:76:c4:63:bb:ef:1e:3c:1a:
e8:0c:a4:69:80:18:c6:3f:dd:6b:c1:ce:7c:9f:a7:61:2a:7e:
1d:59:3a:28:5a:d7:c4:7f:66:e1:67:7b:b4:7d:35:54:4b:96:
67:72:19:6e:1e:f4:c5:c4:9c:f3:ce:49:89:35:d4:15:b2:62:
bc:65:d2:21:e5:f1:ca:65:2a:50:69:a7:cc:5b:e5:98:b3:0c:
12:cf:f8:51:0e:06:00:8e:4e:26:ea:69:93:81:67:10:c3:6b:
57:c4:2d:88:ba:bc:f1:61:79:17:58:34:15:68:66:83:d0:4e:
3c:16:c9:52:94:ba:44:1e:ee:97:53:1d:85:c7:f7:ed:48:a9:
cd:10:8e:53:7d:90:0c:c5:af:92:55:e9:de:42:bb:24:d8:e2:
b4:5c:01:08:54:8e:e6:f9:29:73:da:2c:9f:65:e4:fb:22:2d:
35:08:35:0f:e6:c1:1f:45:b0:7a:20:9a:d5:2e:2c:7a:89:0b:
fa:4f:41:21:85:0e:da:26:79:83:75:e8:f6:57:8b:8e:71:89:
dd:ca:99:3e:df:c0:86:a0:e1:4a:54:a5:ff:49:07:27:d8:7c:
37:72:10:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 16:54:14 2024 by rpki-client on console-ams.rpki-client.org