Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/hTTMz6j-Lh5iO7eKaffQz5k2a94.roa
File: hTTMz6j-Lh5iO7eKaffQz5k2a94.roa (raw, json)
Hash identifier: dBLNrcNWnAReryRQIQide+jaY55u+yjfuaSbmXu/ZVQ=
Subject key identifier: 85:34:CC:CF:A8:FE:2E:1E:62:3B:B7:8A:69:F7:D0:CF:99:36:6B:DE
Certificate issuer: /CN=84c17102b6e92e292ec8acaf659e3c290a8d0b68
Certificate serial: 018C396F26B3836BE312E9DCC6901182D336
Authority key identifier: 84:C1:71:02:B6:E9:2E:29:2E:C8:AC:AF:65:9E:3C:29:0A:8D:0B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hMFxArbpLikuyKyvZZ48KQqNC2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/hTTMz6j-Lh5iO7eKaffQz5k2a94.roa
Signing time: Tue 05 Dec 2023 10:03:54 +0000
ROA not before: Tue 05 Dec 2023 10:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212752
IP address blocks: 45.90.83.0/24 maxlen: 24
45.90.82.0/24 maxlen: 24
2a10:b480::/29 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:39:6f:26:b3:83:6b:e3:12:e9:dc:c6:90:11:82:d3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84c17102b6e92e292ec8acaf659e3c290a8d0b68
Validity
Not Before: Dec 5 10:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8534cccfa8fe2e1e623bb78a69f7d0cf99366bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b0:45:05:e1:7e:b3:c1:c2:99:11:fa:c8:52:
8d:71:0a:16:8a:60:43:ab:49:df:45:dc:0b:af:b6:
98:5b:c3:9f:47:81:76:40:72:c5:84:53:a5:13:60:
08:d5:d8:5b:28:f8:8d:f6:2c:80:13:36:bf:e8:47:
b6:15:af:12:8d:72:f4:b7:4c:b8:12:d8:bc:6f:df:
bf:1e:a2:04:b9:87:d9:12:f4:c8:88:67:d3:9d:2e:
c5:33:fa:a5:1f:76:bc:76:ee:60:f0:c0:71:fe:7a:
5b:35:d9:f3:32:03:f8:a5:a0:83:8e:52:09:e4:42:
4f:b5:0f:9b:c2:11:2d:2d:07:6f:a3:18:78:91:13:
8f:2d:7c:98:e9:61:0e:a9:6b:d7:bf:c4:37:0d:35:
57:c9:10:93:f1:82:87:8f:b9:2f:af:52:07:ab:bd:
80:c1:07:c2:c2:bd:ff:61:40:15:fa:9d:43:bb:9e:
ae:ba:60:18:f6:b5:b2:3c:10:ae:2c:d3:84:89:80:
ce:a8:e9:06:bc:89:07:45:bb:92:1b:dc:47:62:0c:
86:7c:86:20:15:d8:99:52:aa:2a:46:1e:7a:86:76:
1f:e7:7a:78:89:42:b2:10:32:3a:82:27:52:cf:39:
c5:63:d4:32:43:8d:5d:0e:06:f0:2c:4d:82:d6:8c:
ba:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:34:CC:CF:A8:FE:2E:1E:62:3B:B7:8A:69:F7:D0:CF:99:36:6B:DE
X509v3 Authority Key Identifier:
keyid:84:C1:71:02:B6:E9:2E:29:2E:C8:AC:AF:65:9E:3C:29:0A:8D:0B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hMFxArbpLikuyKyvZZ48KQqNC2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/hTTMz6j-Lh5iO7eKaffQz5k2a94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/hMFxArbpLikuyKyvZZ48KQqNC2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.82.0/23
IPv6:
2a10:b480::/29
Signature Algorithm: sha256WithRSAEncryption
58:c9:79:57:1a:37:08:91:96:91:46:6d:75:1b:a7:fe:ec:4b:
a2:b3:26:74:e0:f7:d0:fa:9f:38:be:96:d4:5a:24:5d:96:74:
f5:a6:1d:d4:43:c7:42:53:91:52:55:b0:b0:f1:69:11:69:29:
59:cb:43:24:68:a1:7c:46:c6:7b:b5:a4:21:2c:57:18:95:84:
60:1f:84:e2:41:b8:24:2e:63:de:e5:12:93:55:ee:0f:29:cf:
81:43:10:23:38:ce:23:ad:32:3d:53:2e:3c:86:7a:23:be:08:
84:4a:92:d1:85:0f:f2:8a:64:9f:40:42:42:8e:53:dc:36:de:
18:5b:4c:e3:a0:01:9a:f1:e4:18:6d:d0:ad:b8:95:9c:ea:70:
fd:99:9b:dd:01:33:d8:ee:bb:3f:70:65:54:93:1b:9e:d0:ab:
70:81:22:27:a9:2e:e9:01:3c:f2:7c:8b:77:ef:7f:4e:93:12:
ba:88:32:cb:5e:0c:ac:15:fe:33:12:98:e1:81:16:95:b3:d7:
26:6d:2a:41:0d:2e:11:5a:e6:4e:73:0c:54:8b:a5:85:2a:4a:
3d:16:58:59:fc:0e:2c:b8:79:3a:5b:f7:a5:d4:cc:dd:37:4d:
6a:30:39:c9:58:39:30:3d:21:91:75:87:42:be:03:23:54:0d:
fe:c4:53:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:55 2024 by rpki-client on console-ams.rpki-client.org