Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8IufKp-BGDUWq2fAw2nIldx_m28.roa
File: 8IufKp-BGDUWq2fAw2nIldx_m28.roa (raw, json)
Hash identifier: nRzojDIuGvVWxMJ0MGu4EJac1sIW34JZVIS6ea1w3Hc=
Subject key identifier: F0:8B:9F:2A:9F:81:18:35:16:AB:67:C0:C3:69:C8:95:DC:7F:9B:6F
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 01857230FF8A38959B91725EC7154F75E85E
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8IufKp-BGDUWq2fAw2nIldx_m28.roa
Signing time: Mon 02 Jan 2023 11:14:51 +0000
ROA not before: Mon 02 Jan 2023 11:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207614
IP address blocks: 45.90.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 10:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:ff:8a:38:95:9b:91:72:5e:c7:15:4f:75:e8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Jan 2 11:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08b9f2a9f81183516ab67c0c369c895dc7f9b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:7b:80:47:36:cb:2d:f1:b4:dd:e9:45:1d:
49:6b:fd:ba:52:aa:60:a1:db:0e:6a:9c:d6:c1:08:
6b:c5:e4:05:8c:22:7f:8e:4f:34:39:a6:27:e1:cf:
90:86:69:28:a1:c2:1e:7a:64:96:79:b3:1c:49:14:
d6:c3:96:79:a8:9d:9e:e0:fd:c1:16:9b:00:3f:46:
95:7c:bb:51:7f:1c:45:18:c9:dc:30:7e:7e:31:b8:
5f:f5:2e:9b:e8:90:b7:4b:3f:20:62:12:36:25:22:
e5:3f:cd:dc:5e:09:a5:9b:a4:2e:70:7b:85:72:da:
26:e4:fe:d7:40:dc:c0:4a:e6:4e:9a:7e:c6:90:5f:
ed:73:d0:fb:41:e7:a4:75:fb:21:24:99:93:ff:75:
67:e9:6f:39:2b:3e:c6:99:e1:6e:34:bb:d1:b2:a9:
bc:69:f8:52:42:3f:75:53:e3:a6:56:23:fe:cd:7b:
23:f0:5f:6c:93:6b:f7:22:d2:d2:3a:0a:98:06:2e:
07:80:7e:3e:6f:fc:dc:ec:1f:81:75:ee:69:e1:bf:
66:0c:63:7e:88:a3:25:9d:09:94:2b:14:c4:d5:a8:
23:8f:d7:1c:7a:65:45:7c:c3:87:f4:6b:e2:09:0b:
60:ee:16:bc:56:24:bf:b6:af:e6:1a:4a:e4:b5:d9:
62:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8B:9F:2A:9F:81:18:35:16:AB:67:C0:C3:69:C8:95:DC:7F:9B:6F
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/8IufKp-BGDUWq2fAw2nIldx_m28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.45.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:a5:13:fe:c8:d0:74:24:66:04:1a:91:b1:91:88:3e:1c:ec:
b9:d2:b4:e5:95:5d:4d:9d:76:87:5d:2c:6e:5b:8c:3a:da:3c:
30:49:22:29:c9:a9:e4:8e:c2:58:fe:7b:7f:2d:f8:93:41:b3:
c6:33:79:d1:4b:c2:36:9e:d8:ea:08:72:4d:87:1f:53:46:aa:
b4:a8:68:01:1c:87:fb:8d:e9:62:75:91:7b:e6:75:78:84:7d:
14:59:3b:f1:f9:7e:9e:3f:de:5d:38:d0:15:9b:b1:3d:6d:2e:
85:12:75:55:e2:b0:df:25:39:e5:d1:23:1e:1a:a1:30:10:d9:
2a:59:bd:4b:c1:87:3e:df:2d:56:94:ec:7b:96:51:60:5a:ee:
91:ac:93:e4:79:67:25:88:f1:1e:8b:40:a1:91:c6:84:b4:c5:
57:35:2a:81:4e:70:02:03:03:33:06:f7:69:27:73:0f:a1:27:
93:bf:5c:59:dd:1a:1f:2b:59:ac:ad:03:0d:7a:eb:2d:d3:1f:
07:e5:af:9f:80:f5:58:dc:da:7c:44:e5:36:40:f5:2a:18:d1:
05:8a:06:89:47:62:cc:0c:ac:24:3a:ea:df:51:cf:51:88:25:
62:7c:36:85:82:01:87:23:2a:8d:af:85:ae:94:18:3e:5a:58:
bb:58:aa:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org