Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/K9hwcpYtOwHJK4WpM6XF1dy5vl0.roa
File: K9hwcpYtOwHJK4WpM6XF1dy5vl0.roa (raw, json)
Hash identifier: 6Epo5dvNquLeKZWW13xnU0ih7PqRgeTY4teyOrBH9KQ=
Subject key identifier: 2B:D8:70:72:96:2D:3B:01:C9:2B:85:A9:33:A5:C5:D5:DC:B9:BE:5D
Certificate issuer: /CN=2fb87a2c309d75553a46e1025775e9aa41f6b337
Certificate serial: 01856D387504490DF88D10547BBFC17A1327
Authority key identifier: 2F:B8:7A:2C:30:9D:75:55:3A:46:E1:02:57:75:E9:AA:41:F6:B3:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L7h6LDCddVU6RuECV3XpqkH2szc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/K9hwcpYtOwHJK4WpM6XF1dy5vl0.roa
Signing time: Sun 01 Jan 2023 12:04:54 +0000
ROA not before: Sun 01 Jan 2023 12:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208463
IP address blocks: 45.135.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:75:04:49:0d:f8:8d:10:54:7b:bf:c1:7a:13:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fb87a2c309d75553a46e1025775e9aa41f6b337
Validity
Not Before: Jan 1 12:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bd87072962d3b01c92b85a933a5c5d5dcb9be5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:36:29:5f:eb:bf:28:3a:3a:58:a4:0f:40:92:
9f:73:36:dd:c9:69:da:5e:ea:67:03:de:c7:3e:5c:
bf:e8:a7:88:d9:ec:38:b9:67:54:37:ab:12:37:9e:
13:f0:cd:0e:47:86:70:77:73:8d:0d:fa:ff:77:ec:
4d:86:b9:2d:16:60:a6:26:0d:c7:5d:61:71:f4:47:
84:e7:14:9d:59:c3:8f:af:46:dd:c3:1c:f2:96:ae:
c9:23:9f:1d:0a:97:6f:07:a7:ca:fb:ff:4e:93:e7:
ad:66:2e:aa:31:66:28:70:b2:2f:64:b1:51:22:97:
40:e4:14:b2:d5:8d:fb:b2:db:9e:20:6d:8a:44:c4:
6c:8d:d7:9c:ed:03:e0:c9:4f:1a:6b:5a:dd:1d:47:
1b:28:fc:f8:6f:e7:75:f1:16:bf:cd:f6:53:66:9a:
f7:db:ea:ba:e7:54:0b:14:07:73:f6:95:e2:e4:15:
8e:8d:e1:b5:87:d7:ce:02:fd:a2:61:44:d0:6d:38:
ce:99:83:b4:24:95:c7:2c:9c:b7:a3:e4:9f:24:c5:
ce:df:fa:a4:3a:52:0a:2f:c9:7a:1b:61:b2:1f:9d:
fe:2d:17:a2:a2:aa:44:4f:49:fa:8e:d6:10:b7:0a:
f9:a0:20:59:6a:a4:57:a6:53:bf:73:90:4e:33:dd:
b6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D8:70:72:96:2D:3B:01:C9:2B:85:A9:33:A5:C5:D5:DC:B9:BE:5D
X509v3 Authority Key Identifier:
keyid:2F:B8:7A:2C:30:9D:75:55:3A:46:E1:02:57:75:E9:AA:41:F6:B3:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L7h6LDCddVU6RuECV3XpqkH2szc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/K9hwcpYtOwHJK4WpM6XF1dy5vl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/3cfd94-7d51-459a-8393-7717eb319160/1/L7h6LDCddVU6RuECV3XpqkH2szc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.108.0/22
Signature Algorithm: sha256WithRSAEncryption
62:3a:52:34:92:15:73:ca:33:c3:7d:2e:13:fb:e2:ab:29:ff:
45:f2:59:6f:4d:03:f2:d7:30:6c:63:cf:6a:88:a5:7d:ae:1b:
01:ba:86:b4:bf:38:97:8d:fb:11:70:57:b7:09:28:15:53:43:
c6:57:ac:4a:77:34:bb:1d:2b:c5:a6:5a:47:7b:aa:3d:b0:ca:
bc:24:89:58:1f:6c:7b:6a:c0:4c:f2:c9:d2:a7:be:2e:fe:94:
8b:29:c3:e0:ef:ba:8c:19:f6:26:8e:4d:39:1d:41:94:67:31:
99:f9:60:a7:3b:9c:75:9d:25:39:46:50:00:7c:b0:dd:af:df:
d9:e4:9f:de:51:e0:b8:62:41:62:1c:f0:3f:a4:45:c2:39:4a:
32:e8:cb:de:22:19:e0:0b:e0:08:19:ec:bc:2c:6b:b5:e3:99:
96:c7:99:f1:b8:cc:0a:0e:77:0e:14:92:59:f8:04:0c:ab:dc:
f1:64:0b:ff:42:b0:d8:07:07:54:43:71:f4:48:5a:3b:3f:31:
f4:1c:2e:55:b6:f8:ba:ca:fd:f0:19:ec:f8:50:99:b4:3c:78:
e6:c7:fe:35:0f:c4:33:14:f8:fa:bb:1b:17:22:8d:29:55:a0:
33:5c:12:47:09:96:4d:bb:ee:ee:02:12:dc:ff:fa:d5:4e:63:
2b:ac:d8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:27 2024 by rpki-client on console-ams.rpki-client.org