Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/Q05M1LPm5hP-S79zWYMNSfbrWzQ.roa
File: Q05M1LPm5hP-S79zWYMNSfbrWzQ.roa (raw, json)
Hash identifier: 3DfcxYXK9+9ThUjwEa+Yr5eXJNtjsb4pMo5jtXhwysU=
Subject key identifier: 43:4E:4C:D4:B3:E6:E6:13:FE:4B:BF:73:59:83:0D:49:F6:EB:5B:34
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 01856CE610B69F612013EB8C82887F243154
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/Q05M1LPm5hP-S79zWYMNSfbrWzQ.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 45.87.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:10:b6:9f:61:20:13:eb:8c:82:88:7f:24:31:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=434e4cd4b3e6e613fe4bbf7359830d49f6eb5b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f0:06:2c:22:8a:fe:a7:08:f2:ef:48:24:6c:
fb:6e:6f:cf:d4:bd:32:c7:7a:35:c2:6a:c6:5d:f0:
b4:5e:78:8e:d0:12:3a:b0:66:7e:ae:b1:6d:21:1f:
fd:56:1c:1d:85:fa:36:b3:20:f0:19:34:14:ff:73:
43:b8:4f:bd:3a:ac:d3:8f:26:1d:f3:d5:1e:c8:65:
00:4b:bb:1a:20:c2:de:df:33:de:e0:4b:0c:b0:69:
35:2f:66:4c:16:f3:c1:03:a5:53:5e:74:58:3c:d5:
b2:c9:fd:99:9f:2c:a9:e9:8d:cd:45:f2:fe:20:7d:
aa:82:72:30:cf:71:94:8e:48:22:32:ec:59:bb:d8:
7e:2d:85:02:c4:c3:d4:92:78:9c:3b:42:c4:5b:dc:
84:13:3c:a7:22:fa:50:39:cf:e1:e2:56:00:07:9c:
46:6b:41:3c:35:7a:52:b6:fc:ba:6a:13:2c:b9:b0:
d5:22:70:52:09:f4:62:85:0a:a7:8d:ce:9d:77:e5:
52:e8:99:2d:ad:92:47:fd:84:9c:3d:85:25:67:da:
fb:6e:90:e4:8c:33:79:01:9d:5a:90:f2:2d:7a:ec:
7d:31:17:42:16:bc:fc:1b:b9:16:dc:0a:13:9d:e5:
32:ba:40:a8:51:03:bd:5b:6b:c3:ad:14:9d:6a:6a:
8d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4E:4C:D4:B3:E6:E6:13:FE:4B:BF:73:59:83:0D:49:F6:EB:5B:34
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/Q05M1LPm5hP-S79zWYMNSfbrWzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.68.0/24
Signature Algorithm: sha256WithRSAEncryption
02:53:9e:4d:13:61:9f:25:c4:58:d6:54:0b:97:60:ed:36:8f:
c2:45:56:61:84:3c:15:9a:5f:ab:53:d3:d9:02:6c:3f:82:8e:
5d:48:7d:3c:93:22:ae:ef:24:14:1c:c3:84:2c:80:c8:c5:07:
d5:8e:df:93:7d:ba:44:27:19:7f:aa:66:2c:a2:c7:31:9b:c3:
68:2f:7e:32:f1:de:00:13:93:18:75:ab:a1:ae:f1:73:ee:38:
89:71:bf:43:11:4d:ce:d0:a6:ad:ee:07:65:af:af:24:4b:95:
a6:9c:8c:b2:e8:97:47:36:e7:25:f7:b4:3a:44:d9:8b:a2:b1:
81:df:cf:f4:c7:a4:e0:13:81:83:73:7b:d3:4e:dd:bd:4a:87:
16:27:d5:27:59:7d:83:06:3a:58:38:6e:28:6f:d4:7f:40:e9:
36:cf:77:77:3e:7b:64:79:f3:d5:72:27:0e:ee:74:02:3f:c9:
6d:f5:47:93:6d:ea:20:cb:e9:4f:cb:60:94:5e:e9:5c:4c:96:
b5:2c:83:20:83:3c:9e:7f:6e:6c:1c:bd:be:ae:23:72:0e:c6:
36:3f:ce:3f:07:d0:b7:ae:dd:0d:d5:42:d7:4a:26:21:27:68:
0e:fc:89:a5:33:ea:22:bd:a5:72:a9:3e:f4:54:16:5f:cf:f5:
7a:39:22:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:46 2024 by rpki-client on console-ams.rpki-client.org