Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/h5q2s1alZyN2bR4h55tEq-t_r38.roa
File: h5q2s1alZyN2bR4h55tEq-t_r38.roa (raw, json)
Hash identifier: gon8z+VIVZ8/WSanlKl3jyPmXth6+l/Xb5gMj/WbqSk=
Subject key identifier: 87:9A:B6:B3:56:A5:67:23:76:6D:1E:21:E7:9B:44:AB:EB:7F:AF:7F
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018FC41EC8FABBCFA55EF863C85249843F3A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/h5q2s1alZyN2bR4h55tEq-t_r38.roa
Signing time: Wed 29 May 2024 11:31:42 +0000
ROA not before: Wed 29 May 2024 11:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206804
IP address blocks: 45.86.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 06:38:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:1e:c8:fa:bb:cf:a5:5e:f8:63:c8:52:49:84:3f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 29 11:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=879ab6b356a56723766d1e21e79b44abeb7faf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:11:a4:71:a9:51:74:7f:12:5d:e9:c9:3e:
f5:02:d8:89:15:42:7a:b4:32:f1:42:e9:d1:b4:34:
3f:bb:ea:3a:8a:da:cd:68:92:9e:b3:89:c3:8e:c5:
67:1e:61:26:f5:cb:08:b0:1f:06:6b:6a:48:ad:45:
72:26:55:03:75:5d:f7:37:e6:08:ee:29:03:df:48:
78:4b:65:0f:0c:2c:08:e7:03:a4:d6:69:f9:28:21:
e3:94:45:50:2e:d0:d0:75:08:05:4f:e6:bc:a2:8f:
f8:3e:c6:0c:24:d2:97:b4:6b:cf:20:e4:bb:04:74:
79:64:23:4b:71:20:bc:c5:0e:c5:88:80:02:52:ba:
c8:d7:c5:7c:09:a9:6b:17:8c:20:3b:72:29:e6:e9:
d1:e2:0e:db:f9:b8:82:e2:4f:2f:57:73:1c:6f:ff:
2b:dd:7e:06:e3:78:51:94:13:79:d0:ad:f5:c0:11:
67:08:8b:1d:b8:64:16:13:31:64:c7:23:56:33:c8:
2b:5a:fe:28:5f:af:23:e8:e2:40:cf:51:12:80:b2:
e2:75:d4:ef:a3:6f:e5:75:a3:2d:8b:27:68:c2:ec:
e8:34:f4:2a:23:71:6d:d8:10:a6:9e:71:ae:ff:28:
9a:65:4c:c6:82:c2:1a:68:95:f7:9d:55:02:6c:07:
b5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9A:B6:B3:56:A5:67:23:76:6D:1E:21:E7:9B:44:AB:EB:7F:AF:7F
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/h5q2s1alZyN2bR4h55tEq-t_r38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.201.0/24
Signature Algorithm: sha256WithRSAEncryption
37:74:b5:ad:45:31:81:46:11:89:0b:1f:b7:9d:00:90:47:28:
72:75:4d:a6:28:ad:b2:2f:17:ad:76:0d:7d:5d:2e:b4:5a:32:
f0:a5:7b:b6:06:1c:b0:5c:f7:25:f6:eb:b1:9f:5e:0f:4a:74:
7e:44:94:e3:a3:d1:a6:b4:6d:d7:b6:47:d5:0c:ee:6a:57:b0:
d0:47:3e:8b:a8:f9:b7:c2:56:9d:86:7e:51:3c:f8:10:b2:52:
3a:a4:0e:b9:cf:d7:56:dd:69:5c:9d:d2:91:cd:33:15:1e:ed:
f8:33:f9:74:bf:53:d4:7e:1e:65:d7:57:af:97:98:22:8d:b5:
ff:27:f4:94:d5:4e:12:d1:1f:49:04:37:80:48:1a:69:9e:dc:
c1:73:58:14:74:0c:be:70:f7:62:f7:f4:60:2e:63:cc:6f:b6:
df:72:64:4c:24:c5:9c:e2:c0:df:d4:01:04:18:ec:4d:ec:c5:
d1:fe:cc:77:aa:27:ad:3b:52:e4:3d:32:2a:85:5d:0c:d7:c4:
54:9d:00:b9:95:df:15:34:20:a8:2c:6a:dd:44:26:3d:bd:f5:
79:8b:83:5f:77:84:fb:a3:09:45:64:64:6f:37:0d:e0:6f:42:
ac:8e:47:7c:a3:6c:9f:0b:78:b7:6c:5d:eb:44:c1:e0:0c:b4:
6b:d4:17:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:52 2024 by rpki-client on console-ams.rpki-client.org