Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/bWN15xk9JfOrT06kGcnrTnPCnZ0.roa
File: bWN15xk9JfOrT06kGcnrTnPCnZ0.roa (raw, json)
Hash identifier: DngnkcQPeuRjsqFN5LgEM7T/9i/jIxuRTvpkC8xo5yw=
Subject key identifier: 6D:63:75:E7:19:3D:25:F3:AB:4F:4E:A4:19:C9:EB:4E:73:C2:9D:9D
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 0185710C190C7CB9135069A3242EBF9BE93A
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/bWN15xk9JfOrT06kGcnrTnPCnZ0.roa
Signing time: Mon 02 Jan 2023 05:54:56 +0000
ROA not before: Mon 02 Jan 2023 05:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15879
IP address blocks: 45.80.232.0/22 maxlen: 24
2a0e:4980::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:19:0c:7c:b9:13:50:69:a3:24:2e:bf:9b:e9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Jan 2 05:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d6375e7193d25f3ab4f4ea419c9eb4e73c29d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d6:07:20:c5:73:9a:cd:13:75:34:9f:76:db:
c3:ab:76:bc:fc:a2:ce:81:c2:56:ff:cc:69:09:e5:
84:31:27:68:8b:e2:ef:4c:65:52:90:01:d8:05:57:
f9:89:88:3c:3f:03:a5:1c:d3:0f:dc:85:a3:ae:7c:
de:59:0f:ff:2e:ab:96:1c:11:a0:df:57:5e:e3:f3:
77:ad:b2:30:b3:cb:51:59:f0:b8:f6:58:20:7d:74:
4a:54:05:31:3f:d3:c5:56:d7:e4:24:da:e8:8a:b5:
02:d7:b8:d3:08:f8:3c:0c:f8:9c:c9:6e:d3:75:f4:
b0:1b:11:aa:77:eb:e0:c3:36:f5:12:1c:cf:11:c0:
57:bb:fa:fc:28:be:9f:e9:85:38:a8:d4:af:bc:c3:
88:d8:15:3d:fc:07:4b:43:9e:d5:a4:2a:53:2c:b0:
99:84:c5:c9:27:4c:b6:b1:d8:73:e2:71:02:42:12:
13:54:94:97:36:1a:bd:72:cd:67:01:5c:5b:c8:a4:
23:d2:1a:eb:f9:37:7b:2e:bb:0f:a0:73:4e:b6:89:
1f:b5:40:9f:3d:3e:30:62:a9:60:82:b1:2d:92:57:
09:f0:86:b1:3e:5a:71:b8:b1:f8:0b:77:f1:cf:18:
f6:79:86:6c:e1:ae:34:d1:54:fc:3b:78:41:60:b8:
9a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:63:75:E7:19:3D:25:F3:AB:4F:4E:A4:19:C9:EB:4E:73:C2:9D:9D
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/bWN15xk9JfOrT06kGcnrTnPCnZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.232.0/22
IPv6:
2a0e:4980::/32
Signature Algorithm: sha256WithRSAEncryption
09:a3:a2:ce:3c:b7:f3:70:2c:b1:5d:33:26:65:38:1c:80:2b:
4b:e1:2d:4d:e8:d0:03:1f:e9:aa:4f:70:ab:ea:00:a5:68:48:
4c:6f:c8:ff:be:89:50:8d:33:1f:dd:de:25:f5:0f:4a:c3:36:
4e:86:e6:4c:87:8e:5a:17:ab:00:0c:e3:5e:b0:d4:d2:df:b4:
13:ad:ec:21:ec:c4:62:35:59:c2:47:64:fb:37:4e:c4:8b:cb:
0f:99:ab:ac:6d:b8:e6:3f:41:3c:23:b5:bc:98:c8:95:89:8f:
38:0c:df:b5:1b:20:4b:1d:eb:f3:7b:e6:5e:eb:7b:e7:1c:95:
75:70:12:a8:90:0f:94:b5:fb:bf:02:ff:d4:94:4b:80:73:56:
e2:d5:78:92:ca:47:84:04:19:7e:a6:89:62:a1:6a:69:2d:d6:
f5:63:2f:51:73:e8:21:86:90:da:8d:c8:4d:20:74:e4:f9:a3:
b6:d7:8f:7c:b8:8e:2d:52:53:19:b9:76:00:3a:30:23:a9:ff:
1e:ae:12:2f:3e:fd:d2:c4:d0:d3:0f:58:af:a8:65:9a:9e:72:
48:d4:f7:0a:46:a6:4d:e2:46:84:2b:48:19:46:c0:07:13:fd:
c3:69:67:71:6a:06:6c:23:36:64:33:35:6f:32:e1:b8:1f:9b:
cc:90:2a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:08 2024 by rpki-client on console-ams.rpki-client.org