Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/hMcyAmmSz7JYy_05YaUWUVZmmwY.roa
File: hMcyAmmSz7JYy_05YaUWUVZmmwY.roa (raw, json)
Hash identifier: zbnWr9Bsh8EIQE2giH6YsMF5WM8BN5Er82BQwHyIFnU=
Subject key identifier: 84:C7:32:02:69:92:CF:B2:58:CB:FD:39:61:A5:16:51:56:66:9B:06
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018572036425D3213D11C199436AB067E62B
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/hMcyAmmSz7JYy_05YaUWUVZmmwY.roa
Signing time: Mon 02 Jan 2023 10:25:02 +0000
ROA not before: Mon 02 Jan 2023 10:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61424
IP address blocks: 45.89.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:64:25:d3:21:3d:11:c1:99:43:6a:b0:67:e6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 2 10:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c732026992cfb258cbfd3961a5165156669b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a5:62:c2:9e:55:b8:d3:1a:89:d0:82:ce:85:
5d:9a:b1:f3:fa:3f:1e:e8:97:86:1c:4a:46:96:7a:
57:8d:f4:39:02:e0:ce:98:9e:12:7a:f4:25:74:c0:
34:37:52:bd:93:f0:52:52:b1:0d:41:f6:84:20:b1:
20:9b:36:df:eb:8e:f5:a6:41:08:e1:ff:0b:56:9a:
2c:42:c5:a7:ab:ab:32:ae:2d:6a:1d:5c:d4:b0:87:
46:05:96:91:80:9f:65:0e:b4:3c:49:8a:8e:31:86:
07:f4:43:2f:9f:04:16:36:12:18:9a:a7:b9:2b:1a:
9e:d3:bc:38:2c:ab:59:3d:a0:85:d2:03:2e:3e:8c:
a5:aa:4e:3a:5d:55:59:09:4c:13:30:5b:1e:95:1d:
ca:eb:8d:88:d2:e5:b5:df:ff:a5:49:12:37:a6:97:
5b:56:e6:b1:12:05:6a:0f:58:2a:1b:a8:ea:ad:84:
21:04:5f:94:87:73:cf:ef:88:bb:07:1d:d9:8d:0e:
b0:56:79:dd:31:b6:ad:b9:22:6a:4b:81:16:bc:aa:
e9:0d:c3:7f:2d:7a:7b:d2:e3:13:86:58:f0:42:ce:
81:51:6e:f1:cf:4c:86:b1:c6:8b:9c:4b:f6:04:c9:
b1:4d:1f:ee:35:7b:24:62:6b:c3:70:94:d2:9d:00:
d4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C7:32:02:69:92:CF:B2:58:CB:FD:39:61:A5:16:51:56:66:9B:06
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/hMcyAmmSz7JYy_05YaUWUVZmmwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.54.0/24
Signature Algorithm: sha256WithRSAEncryption
46:4b:23:ad:8a:85:5d:e8:54:32:c5:8b:2a:63:78:0f:5c:c3:
b2:40:5d:f3:9d:2e:1e:bd:41:de:3c:ca:ce:63:8d:f1:d1:23:
65:ea:21:c1:fc:16:64:6c:39:6b:26:2a:fa:05:d6:0f:c0:67:
8e:6c:ab:f2:72:d4:ab:14:90:7a:f8:ec:30:4f:32:a6:76:8a:
48:e5:0a:d1:43:3e:d2:70:86:7d:75:c1:94:e7:df:95:1f:a0:
a6:61:40:3c:01:5f:c1:2c:f1:3f:29:78:84:02:1b:db:af:e6:
60:2c:12:9a:a2:0f:07:21:11:f2:de:1e:f5:a3:31:a6:26:4a:
fc:d9:20:3e:0e:3b:be:35:e5:75:f5:e7:d5:1b:b0:58:60:51:
cb:76:e1:09:3e:ba:b0:d2:4e:98:3c:34:af:30:dc:4c:78:85:
0b:7b:52:13:f5:1c:29:22:8e:69:81:da:02:04:3f:39:d0:80:
c0:5c:43:55:fa:6f:0a:ae:17:33:42:64:68:5f:ef:b3:2d:f4:
e7:1c:7e:13:2f:e4:88:e2:4b:6c:4c:2d:35:24:b6:24:c3:8b:
1c:5f:4b:6f:eb:2f:5b:21:68:3f:dc:af:41:85:f2:31:6f:cd:
b2:2e:3b:ca:02:65:ac:b2:a4:68:a6:9c:30:ac:9a:f2:39:4b:
58:c0:93:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:17 2024 by rpki-client on console-ams.rpki-client.org