Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gE1Pp7Koqls3zHSqm3veKkXL_CY.roa
File: gE1Pp7Koqls3zHSqm3veKkXL_CY.roa (raw, json)
Hash identifier: DCWe86LTOWSaez0+zuB7GRdzrk6op84nyCq6tyrEuk0=
Subject key identifier: 80:4D:4F:A7:B2:A8:AA:5B:37:CC:74:AA:9B:7B:DE:2A:45:CB:FC:26
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DCC65078F04E1846EDF1505DDCADAC006
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gE1Pp7Koqls3zHSqm3veKkXL_CY.roa
Signing time: Wed 21 Feb 2024 15:59:49 +0000
ROA not before: Wed 21 Feb 2024 15:59:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208626
IP address blocks: 45.89.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cc:65:07:8f:04:e1:84:6e:df:15:05:dd:ca:da:c0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 21 15:59:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=804d4fa7b2a8aa5b37cc74aa9b7bde2a45cbfc26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:24:18:8d:cb:87:4e:a5:72:4a:c3:e0:33:a8:
05:b5:79:3a:d9:0d:c0:fb:90:56:77:e8:be:83:2d:
e5:c9:a8:7a:ee:a4:b1:23:59:1a:a2:8f:31:d5:a3:
bd:b2:93:fa:8c:fb:ba:f3:98:ec:3f:a3:39:12:09:
ac:d2:d2:06:e2:2c:cf:89:0e:01:c0:bd:f1:10:0c:
b8:c0:a7:ab:6c:00:c7:6a:2f:bf:19:1d:27:dd:8b:
2e:51:fa:de:2f:f5:c8:51:7d:ce:18:1b:12:bb:ee:
6a:3b:0c:08:0b:26:15:9a:70:83:e9:63:6c:c7:b6:
b4:e6:0c:7e:75:59:db:32:76:f5:b3:f3:bc:f4:ff:
3e:ac:f9:59:5a:96:d1:ea:60:e9:f8:aa:b7:28:f8:
46:96:b6:76:5b:ae:9e:6d:65:66:35:09:6d:4d:a6:
a8:9c:03:86:6f:1f:0e:47:e1:b0:77:af:d1:d1:57:
56:2e:9e:ea:6d:2f:62:e6:53:43:a7:51:ed:82:b1:
32:15:f5:8f:ef:18:64:2c:fe:19:c9:d8:a9:33:c1:
04:0c:65:dd:b2:a0:cf:4b:fb:9d:4f:f1:b4:c7:5c:
2e:66:e0:c5:89:a3:91:56:77:39:5d:0d:17:55:68:
a5:0c:b4:47:79:6a:af:35:b0:79:49:a9:46:7d:db:
3b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4D:4F:A7:B2:A8:AA:5B:37:CC:74:AA:9B:7B:DE:2A:45:CB:FC:26
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gE1Pp7Koqls3zHSqm3veKkXL_CY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.69.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d5:8c:73:a6:1c:ac:0a:af:e5:15:85:23:ac:ae:0a:05:12:
f2:88:bc:f7:67:f1:e3:df:5a:52:38:f4:e4:ed:2e:35:cd:85:
14:5a:8e:84:9f:2f:4a:e5:a1:d6:e0:70:4d:b3:be:7f:58:d4:
fa:13:ab:1a:23:52:ee:20:dc:5b:76:0e:bf:b3:df:61:5f:2d:
d3:aa:a5:7d:5e:db:0b:70:92:f8:9c:b0:66:83:00:03:18:00:
80:5d:8e:ab:5d:45:67:30:59:aa:af:29:41:48:87:4d:23:25:
2a:47:b5:4b:3c:48:0a:b9:fb:29:61:2e:e3:fb:76:ea:e7:d5:
9b:fc:3e:18:eb:dd:ef:22:65:5f:d0:b4:5c:07:10:94:a9:a2:
23:9a:c1:17:47:3b:12:9d:17:31:92:e6:04:95:6c:90:bc:43:
0b:d1:9b:44:f0:bc:bf:64:ec:ad:69:3b:c4:3c:5a:f7:f3:44:
80:d5:e1:5b:b4:1d:74:81:19:1d:98:0a:b9:18:a8:30:7f:72:
e6:62:41:48:9e:32:9b:ac:6c:fe:50:a9:fd:ef:db:cc:f2:6a:
1f:f8:75:a4:fe:f0:a6:71:ab:2a:0f:81:f2:36:e8:d6:ef:16:
ab:5a:f9:63:33:e6:ea:03:fe:1c:ae:87:f1:35:80:ad:10:7a:
e6:97:ca:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org