Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HRXrDrWnPtmV3qRMp6uBXROzLmU.roa
File: HRXrDrWnPtmV3qRMp6uBXROzLmU.roa (raw, json)
Hash identifier: JXHGtwY87RqZ7aLr/PplssBIXOhISKj1ivWvJsYnfoo=
Subject key identifier: 1D:15:EB:0E:B5:A7:3E:D9:95:DE:A4:4C:A7:AB:81:5D:13:B3:2E:65
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0191700468DAA52F050D62C08F90D2D67F7B
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HRXrDrWnPtmV3qRMp6uBXROzLmU.roa
Signing time: Tue 20 Aug 2024 13:40:22 +0000
ROA not before: Tue 20 Aug 2024 13:40:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.85.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 07:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:04:68:da:a5:2f:05:0d:62:c0:8f:90:d2:d6:7f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Aug 20 13:40:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d15eb0eb5a73ed995dea44ca7ab815d13b32e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4e:56:0c:61:a4:aa:be:54:39:9d:07:bd:d6:
5d:52:93:83:5d:43:7f:b5:5a:40:3b:dd:f0:fe:e9:
c7:39:c3:72:3b:b0:0a:5c:fa:95:a0:d1:ac:97:1e:
b7:bf:cf:f1:3c:b0:0f:50:f1:4b:0a:1c:f7:bf:cc:
dd:03:9a:04:56:4d:ea:1d:0e:be:96:c7:f9:60:09:
ef:1a:a2:30:57:d6:46:b2:d8:e2:5b:b7:94:43:6d:
16:46:15:87:de:07:38:ec:43:5e:34:a2:6c:f2:08:
f4:01:b2:69:4c:44:99:f3:a2:7b:ac:9f:9b:f2:96:
87:16:f2:6f:10:05:dc:7f:19:3b:a0:0f:5d:12:54:
7a:89:7a:97:1d:0d:7f:24:20:ef:5b:99:35:e3:62:
17:e6:96:99:83:8d:75:6d:56:55:bc:66:0a:ee:00:
9c:70:d7:4f:c2:7d:db:8a:a4:4e:dd:f4:54:68:48:
e5:4c:58:54:03:6e:e9:9f:9f:b2:f0:10:35:b3:80:
b2:0e:17:9b:b9:af:cc:00:62:43:33:70:41:83:fd:
ec:0e:02:3c:df:77:3d:52:9f:85:e2:35:56:7f:9c:
c2:3e:be:b6:f3:8b:09:b7:a4:2e:98:42:f6:79:82:
f5:ef:f2:c4:35:35:51:9a:23:59:69:b2:58:85:57:
7e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:15:EB:0E:B5:A7:3E:D9:95:DE:A4:4C:A7:AB:81:5D:13:B3:2E:65
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HRXrDrWnPtmV3qRMp6uBXROzLmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.90.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:b2:a3:20:db:2d:a2:fe:b2:d6:6b:ae:ce:d2:1c:6a:6c:ae:
12:9a:90:a4:54:70:28:0e:62:97:10:1b:0a:91:41:46:e9:d1:
9a:b2:df:7f:e0:79:2f:48:e8:b0:38:3b:2d:1c:76:51:69:81:
7c:1f:99:c3:14:55:ce:8c:22:75:7e:b3:66:de:f9:4f:f9:7e:
6c:b6:64:7e:54:85:4c:1f:5e:f6:f2:dd:4f:7e:73:df:38:b6:
d8:4d:6a:a9:d4:86:62:d1:b4:6a:a7:a7:fb:74:85:a4:91:7f:
d3:df:28:e5:82:a3:05:ed:24:07:3c:ad:3f:e5:22:77:9e:c3:
e8:3b:58:5a:a8:9a:ec:d9:4a:18:62:73:fe:15:e4:f0:96:66:
b2:ee:d9:86:48:49:b8:c5:39:d0:f0:3e:cd:3d:83:ad:d0:1f:
bf:76:1a:c0:d2:52:f2:a6:ee:3e:5d:e8:ed:e5:f3:5d:8b:6d:
d2:e8:7c:38:91:31:df:f7:63:61:ed:20:e4:37:78:25:38:55:
e1:c0:95:c5:4c:46:d2:d9:2b:5d:79:62:92:56:6b:42:58:9f:
65:88:21:c6:a8:d3:d7:4f:3a:e0:25:0d:af:61:e1:9b:55:bc:
85:17:af:7b:d3:8e:f3:ba:42:cc:c7:43:b7:2a:54:ee:1d:d6:
b2:93:3f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org