Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/_EmCKBKOxtuE0BNoNH_44LYAXaw.roa
File: _EmCKBKOxtuE0BNoNH_44LYAXaw.roa (raw, json)
Hash identifier: YJVhwmyCwKXIv2GdaezFNKN3dehb5AXAwvPkh47xgAk=
Subject key identifier: FC:49:82:28:12:8E:C6:DB:84:D0:13:68:34:7F:F8:E0:B6:00:5D:AC
Certificate issuer: /CN=cb335dc6feb385f6a23344056a13c2c595028e91
Certificate serial: 0192151FF4DF0ECCCC1BD8B06AC315629A25
Authority key identifier: CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/_EmCKBKOxtuE0BNoNH_44LYAXaw.roa
Signing time: Sat 21 Sep 2024 15:07:48 +0000
ROA not before: Sat 21 Sep 2024 15:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41652
IP address blocks: 45.80.0.0/22 maxlen: 22
2a0e:3780::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 27 Sep 2024 08:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:15:1f:f4:df:0e:cc:cc:1b:d8:b0:6a:c3:15:62:9a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb335dc6feb385f6a23344056a13c2c595028e91
Validity
Not Before: Sep 21 15:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc498228128ec6db84d01368347ff8e0b6005dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:0e:2d:3f:bd:f9:ba:ea:9e:2a:b0:5a:ad:
eb:38:46:3a:a9:d1:89:5c:56:0c:a8:9a:5a:0f:46:
a8:aa:1d:7a:bc:3b:d1:8e:77:42:9c:0b:ee:c6:20:
db:6b:0a:80:43:f5:a2:7a:59:36:86:06:f1:9e:3d:
6a:17:e0:40:64:4d:38:aa:73:47:6f:d7:20:7f:b9:
67:1c:01:b7:53:e8:1a:cb:f0:7c:33:bf:5e:5b:7a:
68:6f:81:88:51:38:19:42:80:0a:16:41:b6:d8:18:
70:88:28:7f:c3:58:94:87:3b:45:28:9d:b7:b8:50:
01:a4:50:cd:76:84:69:8d:4a:97:cf:6c:d3:d0:53:
f9:16:c1:98:84:f9:cd:ee:55:c2:c9:2e:cc:93:56:
83:9c:94:09:cb:3b:cd:12:ba:ee:2a:fb:23:7a:35:
d6:d2:b3:cc:16:52:dd:d8:f4:5d:d1:c5:c2:b1:7d:
c7:88:b0:dc:9d:47:53:26:87:62:ec:b6:01:9e:c3:
52:72:01:e4:9c:0d:03:af:fb:fb:17:5e:0d:84:1d:
9d:37:7f:86:ee:6e:c8:da:62:1d:92:9c:12:41:f4:
db:16:6f:5c:78:e2:e3:4a:47:7f:80:03:21:30:6d:
0d:81:03:94:1f:52:33:85:98:65:ba:0d:be:7a:bd:
3c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:49:82:28:12:8E:C6:DB:84:D0:13:68:34:7F:F8:E0:B6:00:5D:AC
X509v3 Authority Key Identifier:
keyid:CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/_EmCKBKOxtuE0BNoNH_44LYAXaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/yzNdxv6zhfaiM0QFahPCxZUCjpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.0.0/22
IPv6:
2a0e:3780::/29
Signature Algorithm: sha256WithRSAEncryption
57:e0:81:fd:80:80:d7:d7:38:71:ea:9d:02:75:81:bd:1b:22:
96:43:fc:05:04:93:7b:73:3e:47:b6:71:e2:aa:80:63:3a:8c:
4e:22:f4:05:87:a2:e9:e4:29:b3:af:ff:10:35:7c:38:7b:ca:
2d:90:31:5e:63:0c:26:f3:ee:48:09:7c:00:48:7b:87:ad:5c:
f0:b1:60:94:08:a6:b9:e3:17:21:0f:46:1f:f7:cc:65:c1:cc:
11:6e:4d:71:eb:e7:82:ab:56:5b:34:bc:dd:be:01:1d:d5:95:
0e:15:8b:e6:fc:22:f2:47:b7:ac:9e:d0:18:f1:6b:be:96:6d:
b3:92:26:2f:da:b3:b4:4c:96:0f:f2:df:54:0c:07:26:51:50:
07:41:50:cb:c1:41:a4:64:ca:3c:d1:bc:dc:02:6d:36:69:4b:
0c:c7:ce:e3:63:c6:53:60:2c:ff:09:80:05:3f:c7:0e:6c:14:
83:23:81:fd:00:a4:49:73:2b:a7:33:2f:e2:b7:91:79:b9:eb:
28:b0:97:b9:61:68:b0:5d:5c:eb:19:b5:b6:cf:53:6d:cb:44:
2d:5d:d9:51:b1:54:da:14:19:9c:ce:83:a9:15:28:80:05:be:
08:d0:cd:54:94:7a:60:ea:f9:10:88:60:47:72:23:86:b2:7d:
09:e3:56:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 09:46:39 2024 by rpki-client on console-fra.rpki-client.org