Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/S60eQlnHcWNSisQylR1TIUPp7rk.roa
File: S60eQlnHcWNSisQylR1TIUPp7rk.roa (raw, json)
Hash identifier: dFmjV4521IiYj9Y0SRmq3VfTtyhyfpdzH7wccbfhtxE=
Subject key identifier: 4B:AD:1E:42:59:C7:71:63:52:8A:C4:32:95:1D:53:21:43:E9:EE:B9
Certificate issuer: /CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Certificate serial: 018F877331D7E36465976C8D4D1409A6FD71
Authority key identifier: BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/S60eQlnHcWNSisQylR1TIUPp7rk.roa
Signing time: Fri 17 May 2024 16:47:04 +0000
ROA not before: Fri 17 May 2024 16:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 45.87.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 16:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:73:31:d7:e3:64:65:97:6c:8d:4d:14:09:a6:fd:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Validity
Not Before: May 17 16:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bad1e4259c77163528ac432951d532143e9eeb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c0:28:bd:fc:51:84:36:79:e1:09:fa:74:7b:
c6:7a:b4:f6:26:0a:27:86:4e:0e:f3:11:d8:72:7c:
26:6a:d8:50:17:20:75:62:40:91:e0:d7:b3:3e:8a:
6c:1d:55:3b:33:60:0d:76:33:e9:81:5a:32:d8:1e:
87:90:0c:57:dd:ad:69:47:8c:72:c9:3e:25:37:99:
58:58:22:51:55:39:0f:e7:6b:1c:0c:6b:95:5e:aa:
33:52:61:0b:77:2a:c7:36:6b:62:ee:04:e7:5c:9e:
ec:ec:d4:50:8c:03:b9:89:33:f9:90:eb:5c:b7:4b:
9d:b6:b8:81:8b:20:5a:f9:f6:ef:04:c2:32:47:98:
a6:5a:f3:68:31:ae:dc:a8:ea:37:39:01:6b:72:1f:
e6:84:53:68:72:9b:33:d3:16:7c:5b:91:0e:e3:48:
93:3c:61:e4:7b:84:ae:02:24:0c:7e:66:44:0a:48:
2e:7b:18:fb:72:c3:9e:08:17:38:5b:e9:24:2c:83:
8c:d9:95:f5:5c:6d:c0:3d:21:8f:49:53:17:f2:16:
2e:a4:da:b5:fc:b2:74:34:ad:b1:cb:4e:10:6d:ed:
66:c0:85:a5:a3:99:25:06:d0:6b:8a:67:1d:f2:81:
e1:6f:b2:31:d1:98:26:48:f3:67:95:9c:a3:bc:bc:
99:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AD:1E:42:59:C7:71:63:52:8A:C4:32:95:1D:53:21:43:E9:EE:B9
X509v3 Authority Key Identifier:
keyid:BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/S60eQlnHcWNSisQylR1TIUPp7rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/v0Gt3JpO6iRtQvmMfHKzC2jWepc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.100.0/24
Signature Algorithm: sha256WithRSAEncryption
31:58:f6:93:93:93:ff:36:8b:32:a5:fc:56:75:b1:2b:f9:22:
d9:06:bc:20:56:35:d0:8d:04:41:c2:c5:01:31:2f:39:3e:7f:
3e:28:a5:09:fd:28:1a:32:ef:16:0b:da:b1:75:39:66:21:e4:
ca:50:4d:3e:b6:ea:22:68:49:3d:fb:74:01:a4:d0:d0:9d:19:
05:b6:2b:95:f8:62:14:d2:94:a6:3f:69:10:00:db:4f:ef:af:
bd:2b:38:05:70:f0:07:30:3d:cc:0c:59:66:8f:4f:98:c0:e5:
dd:dd:2a:ed:3a:53:a7:2a:6f:2b:4e:87:2f:99:a6:b3:db:5f:
87:6c:73:6e:de:f5:0c:63:2a:3c:75:e9:d8:2f:dc:64:b4:1b:
aa:c9:de:f0:c3:f6:d9:b1:b1:5e:84:66:02:4d:a0:5c:a6:ef:
ee:25:a6:9f:fe:6c:93:be:f5:2b:ea:19:ec:2d:8e:3e:f9:28:
30:92:a1:ca:29:a2:22:b2:61:1d:e0:44:59:2f:b7:2d:25:1e:
e9:87:f5:30:9c:5d:b6:db:9c:2b:a2:e5:86:0b:e4:d3:62:0f:
02:7d:ec:bd:4b:94:0e:5e:75:3c:7c:57:c5:14:1e:21:d7:58:
90:a2:01:b9:22:43:49:e5:b8:7d:05:8c:c8:02:bb:36:43:4c:
9a:2c:b2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 22:18:28 2024 by rpki-client on console-ams.rpki-client.org