Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F3B7D9yTF04Gvcj4rVZpu1iiBCc.roa
File: F3B7D9yTF04Gvcj4rVZpu1iiBCc.roa (raw, json)
Hash identifier: 13UefL4RQ5RaHXn4un2IWz2clgidtgXNqiBAVz558Ks=
Subject key identifier: 17:70:7B:0F:DC:93:17:4E:06:BD:C8:F8:AD:56:69:BB:58:A2:04:27
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD4BE6E988C54DA182C3A64317727
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F3B7D9yTF04Gvcj4rVZpu1iiBCc.roa
Signing time: Sun 01 Jan 2023 20:55:03 +0000
ROA not before: Sun 01 Jan 2023 20:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56382
IP address blocks: 45.14.69.0/24 maxlen: 24
185.255.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d4:be:6e:98:8c:54:da:18:2c:3a:64:31:77:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17707b0fdc93174e06bdc8f8ad5669bb58a20427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:37:6b:ff:12:1a:cc:c8:6c:13:16:ca:ac:f4:
12:d7:88:18:84:d0:5b:41:40:c4:c0:a1:aa:08:c5:
78:cd:0d:e7:c4:f4:91:30:f0:c9:7f:28:e8:c5:55:
0b:de:b9:8f:83:b2:ea:51:87:2a:95:fe:6e:c0:8f:
df:2f:70:42:43:74:00:d4:a3:13:4b:df:d7:1e:26:
08:93:29:04:1d:5d:11:1d:41:32:c1:6e:50:66:a8:
9c:a1:5e:7f:54:c6:6b:63:bc:66:d0:cc:40:f3:d3:
a3:41:b7:80:ea:63:21:56:ee:ad:75:f0:e1:9e:9c:
7e:73:bd:75:f2:db:68:9c:52:4a:d9:ba:9e:e3:ab:
8a:9f:11:bf:3d:e4:d8:be:0e:b0:ba:26:c5:34:ac:
a1:cd:2b:df:9f:1e:a6:a5:00:55:ea:f0:b7:f9:21:
f5:16:3f:20:2a:7b:65:90:d0:31:b6:70:dd:b9:74:
0a:6d:65:7c:28:7c:cd:20:ce:d8:b1:24:d1:e3:64:
21:fd:40:c0:b8:1b:6f:d9:03:78:db:f5:bd:35:f5:
2a:b4:51:f6:a0:51:ff:17:d0:a0:29:01:39:cb:2d:
2a:17:3e:64:73:5a:03:c1:e3:29:39:df:bb:c8:01:
18:63:d2:86:f2:6b:35:f9:69:b8:d9:a1:cb:37:6d:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:70:7B:0F:DC:93:17:4E:06:BD:C8:F8:AD:56:69:BB:58:A2:04:27
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F3B7D9yTF04Gvcj4rVZpu1iiBCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.69.0/24
185.255.52.0/24
Signature Algorithm: sha256WithRSAEncryption
61:53:8d:dc:5d:26:fe:85:fd:ba:7f:df:86:cb:7e:92:fe:a8:
84:ae:fe:d9:7f:69:01:3a:a6:56:22:d3:83:6b:6d:2b:92:97:
26:f0:83:8c:b8:42:bf:ef:13:ac:69:20:82:37:29:16:1a:87:
24:a4:4c:e7:f6:ec:f3:48:64:93:c8:30:e6:fe:34:2a:49:86:
0e:8a:2f:33:c0:e9:95:13:98:0b:5c:c0:6d:c0:68:70:cf:23:
83:20:ab:c1:ee:e1:27:d3:61:53:e3:a6:27:14:c6:0a:89:fc:
e2:82:c4:da:d1:8f:d6:47:ab:45:f9:a0:7f:b9:1a:9f:5b:01:
a0:4d:69:54:2d:ef:72:2c:ba:e4:f3:c3:b7:96:80:73:5e:b4:
0d:7d:f4:9f:e6:2c:c9:c1:0c:87:1e:8e:6e:2b:0a:8a:7c:66:
d1:b7:69:ed:04:4e:46:b2:2c:c1:5a:e2:ab:3c:56:92:a7:12:
79:81:67:13:e8:23:78:9b:44:73:c7:84:18:96:c8:b1:4a:75:
d6:3c:59:4a:54:76:2f:96:37:b4:1b:dd:db:3c:64:99:a5:40:
53:62:ea:68:41:25:1b:75:1a:c0:a3:57:58:5d:a5:8a:a8:df:
f0:83:9b:1e:83:11:44:9b:3b:7b:a4:53:02:a6:0b:9f:c9:34:
8a:e1:f6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org