Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/D7Tn7yi9W83JbJluDd7bALLbcmM.roa
File: D7Tn7yi9W83JbJluDd7bALLbcmM.roa (raw, json)
Hash identifier: YYi4BQMAV8FNSVVmR86zm6vmQ1anx9wlRlZVoCHskdc=
Subject key identifier: 0F:B4:E7:EF:28:BD:5B:CD:C9:6C:99:6E:0D:DE:DB:00:B2:DB:72:63
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 018C83D0762F6DA35A360C520B6DFF9F2EB7
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/D7Tn7yi9W83JbJluDd7bALLbcmM.roa
Signing time: Tue 19 Dec 2023 20:42:06 +0000
ROA not before: Tue 19 Dec 2023 20:42:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210636
IP address blocks: 45.86.84.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:83:d0:76:2f:6d:a3:5a:36:0c:52:0b:6d:ff:9f:2e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Dec 19 20:42:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb4e7ef28bd5bcdc96c996e0ddedb00b2db7263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:47:4f:5a:c2:92:57:50:ed:e8:21:6f:b4:af:
e6:db:99:83:1e:4f:c0:30:b3:44:4e:57:66:c2:60:
5e:9d:48:fd:03:ac:a0:6b:71:49:a5:52:a9:54:2e:
cc:f1:64:51:e7:4d:8d:fb:a2:76:4d:e5:5c:41:07:
18:64:a4:31:89:c8:f1:1b:1f:1c:60:7d:c5:bd:3f:
2b:79:25:42:87:07:21:ab:53:af:fb:33:72:7d:5b:
6e:ca:26:fc:0e:44:11:0e:f7:e6:49:3c:4b:de:2b:
f1:29:67:5d:80:65:97:30:b7:b1:21:16:cc:5d:64:
a6:25:5a:29:79:56:fe:ad:8d:86:1d:8e:b6:17:89:
90:82:81:5b:78:77:d1:e9:23:e7:ea:b9:dd:29:2a:
58:5f:99:ee:9d:8a:45:a8:1c:0b:53:b1:78:22:78:
69:2b:a9:37:d1:ae:09:e1:95:d0:0b:38:c8:73:b8:
b1:89:c1:db:ac:38:ea:71:9b:25:fd:9b:29:10:4d:
ec:83:a7:ea:03:e5:fa:fc:8f:4f:9a:e9:f5:55:ea:
1d:2b:f3:73:28:d6:41:09:5b:16:5e:64:9e:d8:7f:
a7:e5:2d:b5:0d:b0:c3:ed:47:a8:76:f3:04:d1:35:
92:19:00:e2:53:d4:2c:be:f6:c2:66:cc:f0:2c:87:
4d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B4:E7:EF:28:BD:5B:CD:C9:6C:99:6E:0D:DE:DB:00:B2:DB:72:63
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/D7Tn7yi9W83JbJluDd7bALLbcmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.84.0/24
Signature Algorithm: sha256WithRSAEncryption
97:63:74:05:d9:8d:9e:64:36:f4:b4:70:31:47:3a:20:3f:7e:
02:6d:d7:1f:6f:f5:c9:39:28:f4:04:76:e4:b1:09:89:b6:91:
fa:51:7d:d7:1a:1f:4d:37:37:07:83:c4:f5:bd:87:b7:94:7b:
36:51:5f:3d:a0:58:70:00:17:c2:1a:cf:7e:7f:2c:2a:15:ab:
eb:38:65:f1:c0:97:4a:13:df:7c:f1:e4:1f:d3:27:b7:3d:0c:
71:1b:67:69:ca:56:56:a7:9d:a6:36:0e:52:09:e3:0a:6d:fd:
f6:ef:e7:cf:bc:1d:0d:8e:bc:68:8c:9d:7a:3d:8b:d0:93:c9:
58:88:b3:6a:0e:39:30:0d:a7:05:66:ea:b5:2d:c2:ba:65:a0:
d9:14:a5:9e:47:f6:f4:75:23:94:cd:24:71:3d:54:62:e5:7c:
df:f7:e4:d3:32:df:8f:53:d5:65:2a:b4:bf:6a:98:32:f0:f8:
79:6a:7a:82:24:79:cb:c0:ad:ee:8a:5f:37:43:b3:73:b3:22:
25:8c:bf:38:cc:ba:1c:1b:48:8e:cf:f5:5a:75:68:64:1a:c0:
7c:e6:d4:49:5d:05:85:90:0a:bd:c4:c8:0b:16:b2:74:e4:af:
00:cb:7b:27:33:d8:91:a3:72:8e:a1:ab:1f:df:b8:eb:3d:81:
4a:aa:60:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:40 2024 by rpki-client on console-fra.rpki-client.org