Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/f_okPJ8skIyFbdZk6Nh1pzrLrPQ.roa
File: f_okPJ8skIyFbdZk6Nh1pzrLrPQ.roa (raw, json)
Hash identifier: 72Cge/FK2x9gREKlKmVz9Z3B3AC/5O4dU6lku4w58/o=
Subject key identifier: 7F:FA:24:3C:9F:2C:90:8C:85:6D:D6:64:E8:D8:75:A7:3A:CB:AC:F4
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 018572D5D227998D43C89FBA76C248A4913E
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/f_okPJ8skIyFbdZk6Nh1pzrLrPQ.roa
Signing time: Mon 02 Jan 2023 14:14:53 +0000
ROA not before: Mon 02 Jan 2023 14:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.92.116.0/22 maxlen: 22
194.28.46.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:d2:27:99:8d:43:c8:9f:ba:76:c2:48:a4:91:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Jan 2 14:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ffa243c9f2c908c856dd664e8d875a73acbacf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b9:15:6d:60:c8:d5:88:6f:db:59:8d:39:10:
58:8b:8e:c0:a8:c5:5e:91:8a:8c:91:21:6c:e0:be:
a1:22:06:6d:95:39:8b:cd:8e:79:26:9c:35:dc:a0:
cb:19:96:dc:4e:73:a3:dd:2c:78:42:5c:73:3d:04:
6c:bf:aa:1f:1a:df:45:aa:1c:2c:65:06:91:66:b2:
75:c2:ae:15:5c:9d:23:e4:4f:45:65:54:05:4d:47:
9b:17:d8:e1:0d:f2:f9:71:e2:ec:f3:da:9b:65:99:
dd:4a:bb:da:31:2c:c9:18:37:2e:b7:34:c4:20:1e:
05:5b:ea:98:81:8f:3f:18:48:ba:c0:4a:d1:38:4a:
c4:e8:73:54:8b:e6:4f:47:18:91:c7:29:43:7a:e9:
d0:97:c2:5a:16:4f:42:f6:b6:42:28:32:70:1d:b9:
a6:ee:9d:40:98:d3:b5:3a:0c:f7:56:7c:2e:09:91:
e3:38:08:31:90:a8:25:f9:7e:16:ff:b5:1d:b4:f2:
8b:6b:7c:bc:ca:59:90:29:47:fb:ac:6f:72:64:b3:
3b:8c:81:17:62:8d:d1:44:00:bf:8f:b8:9a:60:5d:
52:84:1e:36:bc:e9:12:08:2d:18:68:b0:ef:3e:d5:
54:2c:dd:80:35:f6:1a:80:33:ad:b7:e7:ae:d9:a1:
7d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FA:24:3C:9F:2C:90:8C:85:6D:D6:64:E8:D8:75:A7:3A:CB:AC:F4
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/f_okPJ8skIyFbdZk6Nh1pzrLrPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.116.0/22
194.28.46.0/23
Signature Algorithm: sha256WithRSAEncryption
da:40:ac:2b:14:4a:3c:e7:46:b3:38:8a:b2:81:22:f7:74:a0:
59:89:48:9e:b3:e8:b3:62:9b:3b:e3:92:6b:50:30:0a:bb:69:
89:37:56:5e:01:fb:e2:63:a1:d8:4a:40:07:5f:d8:fb:fe:fd:
15:96:bc:10:a1:c4:01:a1:17:0a:a9:0f:5f:33:50:16:88:aa:
f9:d6:5f:53:c4:a2:2a:e1:fe:a5:70:be:64:0f:d6:ea:ae:cd:
ac:bd:58:fb:5a:71:cb:16:67:00:ec:6d:96:36:28:7b:1e:30:
e6:5f:75:07:f3:13:42:03:98:64:bf:df:b7:e8:85:01:fe:c7:
ab:14:15:f5:7c:95:c0:5c:51:c8:57:df:7b:9d:59:84:07:07:
c2:57:1d:bc:57:ec:42:68:ff:4f:ac:09:db:32:04:8d:60:f2:
fc:56:e6:cf:1c:32:2d:6e:a5:4d:39:74:97:64:cb:56:94:90:
62:98:f3:eb:79:d2:aa:b6:0e:d5:12:f4:6c:f5:57:ae:bf:cb:
ec:24:49:f0:31:fa:81:84:d5:bc:54:38:4a:80:72:94:44:3e:
73:f8:d9:fa:2e:62:81:05:ba:e4:16:58:05:f1:1f:f3:dc:12:
a4:9d:6a:f5:27:fd:6d:cf:63:01:b0:e4:cb:5b:9d:9c:4d:99:
0a:b5:7f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:15 2024 by rpki-client on console-fra.rpki-client.org