Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/8ea34c-af87-4721-9e69-2af3b76c18c9/1/h0eKhaMZ6wBMKRxt-_GfjA0RxFE.roa
File: h0eKhaMZ6wBMKRxt-_GfjA0RxFE.roa (raw, json)
Hash identifier: 7f1XiU6xl0Au4Uj3nWertqUD9ybWxVlkGNbJPsZ+zVc=
Subject key identifier: 87:47:8A:85:A3:19:EB:00:4C:29:1C:6D:FB:F1:9F:8C:0D:11:C4:51
Certificate issuer: /CN=9ed8fcff3193ac53bb4b07c48d3dd29ef588eb8d
Certificate serial: 01856D5D21A1C2ACD060B6E2303E628682DE
Authority key identifier: 9E:D8:FC:FF:31:93:AC:53:BB:4B:07:C4:8D:3D:D2:9E:F5:88:EB:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntj8_zGTrFO7SwfEjT3SnvWI640.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/8ea34c-af87-4721-9e69-2af3b76c18c9/1/h0eKhaMZ6wBMKRxt-_GfjA0RxFE.roa
Signing time: Sun 01 Jan 2023 12:44:58 +0000
ROA not before: Sun 01 Jan 2023 12:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50628
IP address blocks: 45.144.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:21:a1:c2:ac:d0:60:b6:e2:30:3e:62:86:82:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed8fcff3193ac53bb4b07c48d3dd29ef588eb8d
Validity
Not Before: Jan 1 12:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87478a85a319eb004c291c6dfbf19f8c0d11c451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:10:d8:11:1c:b0:23:9b:bd:44:3a:26:a8:12:
2d:d3:3f:e8:cd:be:ab:2c:74:9c:6c:4d:c0:dc:a4:
02:8e:1f:68:ae:19:4b:1d:5c:35:ca:bc:ec:87:44:
0a:74:84:d0:71:8e:35:9a:df:99:20:ff:55:cb:67:
fb:a3:42:fb:2f:00:3e:10:3b:44:b4:d7:1c:98:18:
4b:0d:2b:a8:52:6a:42:25:35:96:64:bb:ff:a0:47:
02:4a:59:44:51:64:0c:f8:0c:b4:50:b8:af:6d:e5:
6a:bf:65:31:21:71:0f:d3:13:33:db:29:04:3f:40:
92:38:25:19:12:35:bf:e0:2e:56:1c:13:1b:df:ee:
4a:60:35:9d:c9:7e:71:ef:6a:96:5b:b7:c5:8e:46:
bc:02:f6:db:e5:01:ff:68:f0:a6:18:c6:c2:c4:09:
44:55:30:ad:4f:0c:7b:11:47:ee:a1:5e:53:70:16:
e0:36:56:26:0e:8a:8a:f2:a9:ad:60:72:c4:eb:66:
e9:ad:b4:02:d2:66:7b:4a:df:89:ac:24:83:fa:99:
e1:70:ed:d0:b3:74:ef:17:c6:3a:81:da:1c:f4:af:
ad:f5:3d:a4:ed:0f:15:85:7d:9d:87:66:2d:27:43:
4f:08:77:bf:50:64:46:8b:08:79:2f:3b:2b:f3:c2:
36:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:47:8A:85:A3:19:EB:00:4C:29:1C:6D:FB:F1:9F:8C:0D:11:C4:51
X509v3 Authority Key Identifier:
keyid:9E:D8:FC:FF:31:93:AC:53:BB:4B:07:C4:8D:3D:D2:9E:F5:88:EB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntj8_zGTrFO7SwfEjT3SnvWI640.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8ea34c-af87-4721-9e69-2af3b76c18c9/1/h0eKhaMZ6wBMKRxt-_GfjA0RxFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8ea34c-af87-4721-9e69-2af3b76c18c9/1/ntj8_zGTrFO7SwfEjT3SnvWI640.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.92.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:7b:ac:e2:6a:4e:f0:a7:30:5b:e0:09:95:8b:2f:74:72:9f:
80:eb:52:6c:48:84:4f:30:d6:17:56:b9:89:60:69:34:49:6e:
0b:4a:a3:52:00:d6:ab:11:a8:49:32:50:73:a9:7c:85:29:ca:
ad:3f:9b:b7:80:7e:5f:a2:1c:94:6f:6e:a9:78:b0:21:5b:f7:
99:94:c4:bd:03:9e:7e:5f:b0:1c:d4:bc:75:ed:cc:2e:dc:c7:
0a:97:08:1f:ec:c4:2d:d1:72:93:ce:d0:eb:3c:c6:29:dc:cc:
56:12:3c:47:b9:d8:88:69:29:30:8d:08:7e:a9:a2:d1:c8:a9:
b7:f4:81:12:34:2d:a3:5b:5d:4c:21:3d:e9:dc:8c:36:9d:e0:
cd:59:fe:4a:a7:f6:5a:46:13:6e:ad:16:61:55:42:5c:4f:06:
22:94:8b:89:75:aa:1c:9d:bc:cc:c2:6f:a1:c5:31:49:7e:31:
9a:d0:41:ad:7a:76:2f:11:7c:4b:72:cb:c4:de:6d:ae:6c:a0:
fd:bf:e3:8f:28:b9:0c:7b:63:17:9c:8a:da:c1:1a:eb:f6:3c:
80:3d:45:8b:38:92:84:47:e1:d9:6a:04:a4:1a:f3:b6:0f:47:
b9:77:a1:4b:5b:03:d6:1b:0f:ac:8f:cd:39:15:12:88:ed:e1:
97:c9:e0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org