Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c8d65e-e5c8-4120-ae1d-b097d9f8ec22/1/71oSaKKpwj7aojUErRTLNFCVChk.roa
File: 71oSaKKpwj7aojUErRTLNFCVChk.roa (raw, json)
Hash identifier: dJ5xgFYZ/nUIUz0KxtbFKcrj+W/Han0U+Zcb4zOI7h0=
Subject key identifier: EF:5A:12:68:A2:A9:C2:3E:DA:A2:35:04:AD:14:CB:34:50:95:0A:19
Certificate issuer: /CN=dc102f6131ce5a746eb5981dd4c1d6b4e17b033f
Certificate serial: 018573160A9F4CB25ABF0EF750979B7A1117
Authority key identifier: DC:10:2F:61:31:CE:5A:74:6E:B5:98:1D:D4:C1:D6:B4:E1:7B:03:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BAvYTHOWnRutZgd1MHWtOF7Az8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c8d65e-e5c8-4120-ae1d-b097d9f8ec22/1/71oSaKKpwj7aojUErRTLNFCVChk.roa
Signing time: Mon 02 Jan 2023 15:25:02 +0000
ROA not before: Mon 02 Jan 2023 15:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 45.13.84.0/22 maxlen: 22
45.13.85.0/24 maxlen: 24
45.13.84.0/24 maxlen: 24
45.13.87.0/24 maxlen: 24
45.13.86.0/24 maxlen: 24
2a12:fd00::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:16:0a:9f:4c:b2:5a:bf:0e:f7:50:97:9b:7a:11:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc102f6131ce5a746eb5981dd4c1d6b4e17b033f
Validity
Not Before: Jan 2 15:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef5a1268a2a9c23edaa23504ad14cb3450950a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1b:9f:a0:71:15:d3:ea:6c:80:05:38:2f:b5:
e0:76:83:cc:16:e1:82:cc:4f:5b:eb:39:f1:93:1f:
bf:47:7f:ef:b2:79:41:d0:71:27:fc:d2:66:69:42:
2f:e9:00:d2:ff:47:cf:10:e0:30:68:02:37:af:2c:
43:c6:29:d4:3b:54:57:ee:aa:6d:6a:74:fa:c5:90:
f9:8e:27:ab:25:da:74:be:26:59:88:1f:1e:1d:bb:
1d:25:1c:b7:7e:00:c1:4f:80:30:bc:50:fa:4b:e5:
6a:01:8d:f7:10:a3:53:9f:e2:9a:4f:cb:00:50:44:
6b:b1:03:a2:f8:ba:50:96:af:35:16:52:c4:ff:3b:
76:a7:16:91:8d:d3:df:30:24:68:98:d7:54:8c:7d:
0f:1a:18:e8:a7:68:98:a1:56:a0:78:d9:8b:5a:29:
69:fa:5a:b1:cb:f2:51:bc:35:a5:26:2f:df:cb:49:
3f:12:91:c4:33:cd:11:cb:f3:58:8d:b3:df:9f:77:
61:eb:8a:51:48:0c:55:77:58:fd:80:67:0a:06:69:
f0:7d:7b:0c:3d:20:83:0f:16:4f:09:c1:9e:13:e6:
60:d5:b0:43:cd:74:51:d7:41:c7:2d:24:4c:37:b5:
2f:e4:e5:63:34:e1:fd:ed:08:ba:b5:98:87:e3:db:
76:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5A:12:68:A2:A9:C2:3E:DA:A2:35:04:AD:14:CB:34:50:95:0A:19
X509v3 Authority Key Identifier:
keyid:DC:10:2F:61:31:CE:5A:74:6E:B5:98:1D:D4:C1:D6:B4:E1:7B:03:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BAvYTHOWnRutZgd1MHWtOF7Az8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c8d65e-e5c8-4120-ae1d-b097d9f8ec22/1/71oSaKKpwj7aojUErRTLNFCVChk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c8d65e-e5c8-4120-ae1d-b097d9f8ec22/1/3BAvYTHOWnRutZgd1MHWtOF7Az8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.84.0/22
IPv6:
2a12:fd00::/36
Signature Algorithm: sha256WithRSAEncryption
5a:69:36:5f:29:77:eb:0b:f5:8e:bc:ac:7d:32:aa:61:73:80:
d4:be:17:04:92:9e:d2:ea:2e:c7:50:7b:ac:58:32:8e:4e:a9:
85:29:0f:b5:4b:33:06:83:46:01:80:d7:b6:e2:d6:5e:4c:05:
fa:0e:30:ab:d9:8e:2e:af:f3:c5:9c:a1:d5:a9:09:31:69:8d:
7e:08:fb:cb:05:a1:b7:92:db:66:b0:f1:95:6c:fd:80:5e:94:
c5:93:11:dd:37:f6:a4:29:9b:a3:c0:43:38:56:ae:3f:e3:ba:
ae:a2:2c:88:11:03:fc:ae:9a:9a:a5:21:ee:6d:54:12:e3:5f:
4e:a7:9a:22:35:df:5b:73:9b:de:b6:93:50:52:87:ad:3b:7b:
41:b7:6e:a0:b7:0e:1f:d6:12:48:f6:7a:ca:78:89:39:7a:8c:
5d:a3:b5:7b:39:02:88:a4:35:63:01:84:e4:a5:da:68:5f:af:
ac:ac:da:9a:21:e6:35:c6:73:35:66:49:54:01:3b:34:1a:4a:
f6:d9:e4:a1:80:c4:df:0b:6f:82:5b:94:65:c4:1b:24:1c:6a:
17:b7:02:6f:b9:9e:9c:d7:71:15:bf:af:e3:70:44:d2:fe:bb:
a7:4f:4a:ca:a6:ec:4c:f5:b7:dd:78:cc:e2:06:18:56:80:76:
3e:d8:22:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:52 2024 by rpki-client on console-ams.rpki-client.org