Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cHJVhyd8HzDB3TNJQPV-TJkDf0A.roa
File: cHJVhyd8HzDB3TNJQPV-TJkDf0A.roa (raw, json)
Hash identifier: H8hjbUZzwJEXEkaN2M/QyLCjh0Z0i8YmkIPZA4qCMEg=
Subject key identifier: 70:72:55:87:27:7C:1F:30:C1:DD:33:49:40:F5:7E:4C:99:03:7F:40
Certificate issuer: /CN=27484956736549eab3b06e23aab89ca5993a8076
Certificate serial: 019109584352341426CFE9A823D20F20EADB
Authority key identifier: 27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cHJVhyd8HzDB3TNJQPV-TJkDf0A.roa
Signing time: Wed 31 Jul 2024 15:11:04 +0000
ROA not before: Wed 31 Jul 2024 15:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137409
IP address blocks: 45.84.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 17:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:58:43:52:34:14:26:cf:e9:a8:23:d2:0f:20:ea:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27484956736549eab3b06e23aab89ca5993a8076
Validity
Not Before: Jul 31 15:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70725587277c1f30c1dd334940f57e4c99037f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9e:47:8f:34:27:50:85:6c:cd:60:64:dc:6f:
33:fa:93:4d:ec:cc:7f:5f:76:07:ae:c3:7e:b4:11:
35:32:c0:0f:0f:9e:fc:e3:a0:8d:f7:6a:8c:db:2a:
ae:92:b7:42:6a:62:b5:7e:eb:7d:78:f5:25:c5:d9:
a7:dc:46:77:ae:db:fa:77:d0:60:4f:9a:e5:da:03:
34:ca:b7:87:6b:a1:0f:b7:9d:69:6d:a6:c3:ee:d2:
ff:68:3c:c7:f6:48:3b:75:c3:98:65:74:b8:62:0c:
35:20:69:bf:77:27:57:f5:46:6b:48:98:99:5f:b7:
e5:2e:c4:29:a3:17:49:d0:35:46:b4:d6:a8:e1:4b:
8a:b5:c1:ca:3b:63:e3:9c:9e:a9:76:0f:4d:aa:12:
cb:3d:9f:61:03:9c:70:d6:b9:06:9e:06:8a:24:90:
03:7c:be:5b:fa:b5:d3:99:d5:f5:7d:99:5b:8b:11:
32:2f:4d:df:59:bc:6e:e1:52:e3:95:2e:57:8b:3e:
59:0d:9a:3a:0d:61:82:3e:19:b4:16:6f:75:bf:6b:
f7:7b:0c:b4:ec:d0:6c:29:73:08:29:08:aa:6c:4a:
4c:fd:6b:d0:1f:57:dd:79:d0:a6:31:85:7a:51:be:
77:2c:58:b6:c8:b7:11:a4:6a:79:f0:e2:8a:da:6d:
15:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:72:55:87:27:7C:1F:30:C1:DD:33:49:40:F5:7E:4C:99:03:7F:40
X509v3 Authority Key Identifier:
keyid:27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cHJVhyd8HzDB3TNJQPV-TJkDf0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/J0hJVnNlSeqzsG4jqricpZk6gHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.102.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:4e:db:1c:f2:06:10:32:75:d6:2e:19:c2:4b:46:0d:4b:f3:
d5:b6:1d:d4:c8:54:4e:59:64:0f:df:54:7d:4d:05:d9:c1:28:
88:1a:0c:3e:9c:05:9c:12:fe:6b:03:77:09:4b:33:e0:3b:95:
f3:69:37:10:45:bf:4b:9d:d8:f4:1d:bd:40:44:0f:29:5b:52:
05:23:8a:fc:8d:b7:b1:52:75:7b:78:8f:7a:73:e1:66:26:5d:
e8:e5:4e:1e:a6:4a:7b:81:ce:6e:c8:43:dd:8f:f3:5d:6f:3b:
ff:09:63:2a:05:c4:a5:13:af:77:c1:8b:25:f2:eb:14:1f:27:
1a:4c:15:c9:98:c6:45:e7:52:a6:f5:4a:29:73:89:42:d3:34:
fa:e0:86:54:74:b0:a3:ed:51:af:3f:89:73:3c:b3:e8:ba:e6:
0a:23:72:86:5c:37:96:62:b7:22:1b:c6:f2:e0:69:ed:54:cc:
ee:c8:e6:8b:2a:18:eb:cb:21:e4:b0:b6:fe:09:11:ef:82:4a:
b6:88:91:d6:7a:db:74:28:7f:d5:e7:d9:2b:e3:25:34:8a:e9:
96:83:3d:54:f1:50:06:b8:d8:0d:a2:bd:9f:6b:3b:0d:5f:bc:
47:dc:7e:1b:06:ff:ef:82:5d:c6:57:be:10:d7:86:23:0c:bb:
46:f7:1f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 20:23:13 2024 by rpki-client on console-fra.rpki-client.org