Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/d5NZVdEnxevzz24OFtMXOdtwUkk.roa
File: d5NZVdEnxevzz24OFtMXOdtwUkk.roa (raw, json)
Hash identifier: lEmxMGMU5zm6zfDzG2e8xdqWF7gP2Nps1yAkb1WJs4g=
Subject key identifier: 77:93:59:55:D1:27:C5:EB:F3:CF:6E:0E:16:D3:17:39:DB:70:52:49
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 018894A528C751BF0AFF5092565212DBD073
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/d5NZVdEnxevzz24OFtMXOdtwUkk.roa
Signing time: Wed 07 Jun 2023 06:57:11 +0000
ROA not before: Wed 07 Jun 2023 06:57:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 45.8.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:a5:28:c7:51:bf:0a:ff:50:92:56:52:12:db:d0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Jun 7 06:57:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77935955d127c5ebf3cf6e0e16d31739db705249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e7:23:09:cc:70:89:eb:18:7b:e3:1d:bf:66:
2c:35:60:34:85:c0:90:13:55:49:f3:94:a1:96:f7:
fb:e9:d7:7c:84:d5:8a:60:fc:38:82:a1:01:e9:c8:
57:07:75:e5:cf:13:60:76:7a:a4:13:ad:19:ad:9c:
52:f5:f5:4a:0c:5f:66:93:7d:3c:69:bb:b9:cc:5f:
e8:02:8a:c9:6f:5d:23:0e:b3:1a:e0:c4:9c:f2:a3:
c6:2f:c8:36:ec:cd:c0:84:3e:80:71:d3:42:4e:2f:
db:ee:c8:fb:39:e8:90:a4:d7:46:41:a0:35:1f:9c:
95:70:e1:a9:75:4c:1a:31:d6:da:47:e1:30:1d:7f:
06:c6:cd:4b:29:e5:62:65:43:28:8d:fa:c3:5f:b3:
54:a5:e0:50:4f:c0:0b:46:01:75:79:8b:c6:6b:6b:
df:fa:3d:c6:75:28:77:30:74:6c:b5:fe:91:09:8a:
11:81:e4:f0:b3:5a:ca:4f:9e:c1:58:92:40:5c:93:
88:20:03:f7:75:e4:fb:95:a2:a5:c3:7c:6a:b7:ea:
89:b5:bc:6d:77:89:05:c6:31:fe:d4:45:d2:37:a8:
8f:cf:65:ca:36:74:51:7a:63:d5:57:db:80:be:75:
ae:69:20:9f:b7:55:56:05:9f:66:d0:00:19:70:32:
32:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:59:55:D1:27:C5:EB:F3:CF:6E:0E:16:D3:17:39:DB:70:52:49
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/d5NZVdEnxevzz24OFtMXOdtwUkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.16.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5c:f4:40:d1:39:a9:e6:d5:fb:de:db:10:ca:f2:b5:60:00:
9c:02:7a:7e:21:ea:f3:a2:89:7f:e4:08:fc:19:12:09:cb:5a:
fb:ea:c4:d0:1a:5f:fd:aa:27:c3:59:6a:69:c0:83:53:97:2a:
24:d0:8e:19:97:dd:0b:21:d6:53:90:ca:b9:f1:0a:bf:11:f0:
95:87:8c:2d:e2:ae:2c:1c:75:05:82:b5:65:6c:59:0b:f2:80:
64:16:4b:a8:ce:d6:98:83:a2:ce:a6:dd:a2:4d:7e:41:29:0d:
24:a0:4c:09:1e:48:e6:b3:63:d2:cb:ae:95:f8:5d:51:eb:42:
f8:5a:2d:50:fb:c6:29:a3:94:9c:ab:dc:d3:f1:d0:0d:27:8c:
60:3b:ad:f2:58:6d:8a:d2:b4:92:5f:28:29:64:3c:4a:10:67:
32:25:c2:fb:50:c1:f1:7c:66:58:d6:2d:b2:f8:24:34:eb:70:
39:41:7e:3f:39:6f:93:06:67:b1:11:ac:fb:a0:17:65:5c:aa:
94:05:af:d0:60:f5:92:8e:cd:67:da:52:1f:9a:89:f8:4e:34:
e2:90:c8:14:ce:d7:ff:9c:8e:d0:77:92:47:aa:ab:dd:b6:d4:
6b:a5:c1:80:c0:5b:b2:9d:04:68:0a:85:5b:3c:81:34:1a:53:
3e:ad:a8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:29 2024 by rpki-client on console-fra.rpki-client.org