Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/nyCenhCVJDS7_ZQsZAJUejXizTk.roa
File: nyCenhCVJDS7_ZQsZAJUejXizTk.roa (raw, json)
Hash identifier: LpbuSbRH6YJ+O6ECsBHusqddyZi/I26iejOmu1ScrH4=
Subject key identifier: 9F:20:9E:9E:10:95:24:34:BB:FD:94:2C:64:02:54:7A:35:E2:CD:39
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018F80ED45EE0F65C6922EC0A1BC36F79ABA
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/nyCenhCVJDS7_ZQsZAJUejXizTk.roa
Signing time: Thu 16 May 2024 10:23:04 +0000
ROA not before: Thu 16 May 2024 10:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210837
IP address blocks: 45.89.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 10:53:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:ed:45:ee:0f:65:c6:92:2e:c0:a1:bc:36:f7:9a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: May 16 10:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f209e9e10952434bbfd942c6402547a35e2cd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:30:47:74:2c:f9:21:25:b6:32:7b:29:71:e6:
bc:1c:34:27:61:77:e9:a2:e1:3e:86:b7:0f:48:38:
5f:24:49:98:a4:ed:c5:ed:bc:ca:e3:0a:6c:5b:93:
20:70:23:62:5a:2e:25:f2:c8:4d:f9:a4:8c:65:29:
a0:57:74:94:a0:09:de:e0:4d:95:27:f0:7a:66:da:
cb:db:35:0d:f8:6c:93:f3:f5:b2:b6:2a:87:50:da:
02:13:8a:d0:e9:67:f5:bb:ec:de:bf:d6:24:a3:a5:
8b:fa:73:eb:9a:a9:c2:ca:a8:04:17:f5:c7:30:5c:
fb:40:72:db:ef:28:45:f3:f7:39:d3:a5:4c:08:de:
ff:68:18:d3:20:45:28:b3:dc:c8:e9:f3:38:cd:7c:
96:14:18:f4:c5:28:57:15:a8:e2:a4:f3:00:60:f3:
6a:7e:b5:78:07:97:05:5e:01:92:d5:c3:85:99:55:
e8:81:68:43:90:ef:a2:86:63:c2:bc:26:7c:7c:ce:
c4:f2:10:ee:18:2d:5e:00:91:3a:0f:9e:7a:ec:a0:
a2:e3:85:0e:92:d5:fe:d9:91:a4:a0:94:43:52:a5:
ba:e7:dc:44:7d:09:ad:21:c4:dc:e0:bd:f2:01:f1:
f5:f2:5d:5f:da:4a:7c:70:da:6c:7b:26:e0:69:9e:
21:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:20:9E:9E:10:95:24:34:BB:FD:94:2C:64:02:54:7A:35:E2:CD:39
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/nyCenhCVJDS7_ZQsZAJUejXizTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.62.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:68:49:96:75:01:96:a5:78:55:5f:27:bc:74:37:1e:b9:92:
d5:7d:04:44:b3:be:74:01:fd:58:0f:43:f9:20:35:37:46:2d:
30:35:47:5a:49:7d:9c:86:42:9c:2d:9f:15:de:81:15:69:b9:
67:56:33:e6:2a:84:14:ab:dc:41:e0:c7:46:c9:06:9c:0e:6d:
eb:ff:96:d2:6a:37:24:06:23:d1:1a:5a:3f:18:6e:8b:5c:6d:
f1:61:d9:03:f9:f9:fb:a2:3b:c8:27:e7:fb:00:86:9f:b9:84:
78:b4:a7:5d:49:1f:ac:fc:51:9f:08:c7:52:37:61:30:06:c1:
46:5d:35:1f:35:df:65:6b:d0:ac:1b:53:26:fa:44:15:16:c0:
ba:49:25:e4:85:29:4f:f9:e8:ce:8d:d0:2e:11:90:11:75:52:
bc:c2:37:59:5a:8e:f7:be:f0:d5:df:a5:58:ff:66:d2:f2:55:
49:86:90:8a:05:ea:3a:98:a2:10:fa:d7:bd:5a:83:3d:81:39:
81:73:f1:77:14:4e:26:17:44:30:64:03:81:5b:c3:1c:f5:44:
52:b1:22:12:b9:6d:4f:67:79:6d:7d:94:ee:58:d9:fc:af:b1:
ee:2a:a7:89:0d:ab:bc:f0:ea:5e:fa:28:ac:dc:b4:2b:45:bd:
da:24:d4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 12:16:51 2024 by rpki-client on console-ams.rpki-client.org