Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/LSbwUrlzxGSbnTiDmh2ZXo2bN8k.roa
File: LSbwUrlzxGSbnTiDmh2ZXo2bN8k.roa (raw, json)
Hash identifier: ZnW8l3rw0o835yZLmdRr8DDzMXXemHDPgbw5SqtsoSU=
Subject key identifier: 2D:26:F0:52:B9:73:C4:64:9B:9D:38:83:9A:1D:99:5E:8D:9B:37:C9
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C53CEEB75E6E7CF628CF11A3E3B04
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/LSbwUrlzxGSbnTiDmh2ZXo2bN8k.roa
Signing time: Mon 02 Jan 2023 10:34:48 +0000
ROA not before: Mon 02 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210709
IP address blocks: 45.85.116.0/24 maxlen: 24
2a0d:f407:1032::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Nov 2023 06:17:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:53:ce:eb:75:e6:e7:cf:62:8c:f1:1a:3e:3b:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d26f052b973c4649b9d38839a1d995e8d9b37c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cc:52:09:d3:0c:44:62:64:23:2d:81:47:ad:
42:ee:47:c9:cc:a4:35:d3:7c:3b:e2:18:54:33:ed:
da:6e:0c:e2:3c:25:62:c4:c3:aa:22:d2:96:91:30:
90:4d:15:9d:2b:18:96:64:e3:5b:db:30:3d:38:6f:
37:8c:3d:f0:49:4f:23:6a:28:95:28:7d:62:49:c7:
d1:c2:c8:e2:3e:44:17:a2:bd:5a:1c:20:29:c8:20:
47:06:d7:d3:10:41:2d:77:62:64:b0:33:6e:95:93:
ea:49:fd:de:41:d2:33:fc:33:89:18:e0:89:e7:a0:
6b:a3:f2:4f:fe:bf:fc:9c:3e:df:5e:35:84:9a:ec:
e1:34:50:87:1c:a8:7f:6a:15:d8:e6:bd:03:0e:47:
ee:52:7a:c0:2e:b8:db:c2:1c:80:98:66:2b:ff:79:
e5:1c:05:6e:9a:00:d2:e8:81:8d:05:95:fa:35:73:
fc:ad:42:09:2b:d5:15:8a:ba:f8:c3:5f:a4:49:8f:
29:b5:17:07:50:6c:ff:db:e5:c7:3f:78:ba:23:35:
11:7e:35:dd:c5:e6:35:9e:cc:81:49:5d:db:16:84:
62:96:7c:eb:af:1c:42:f9:03:fa:5f:88:64:0d:5a:
8a:03:8d:2d:d4:71:cc:9e:c3:57:23:05:1c:f0:b8:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:26:F0:52:B9:73:C4:64:9B:9D:38:83:9A:1D:99:5E:8D:9B:37:C9
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/LSbwUrlzxGSbnTiDmh2ZXo2bN8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.116.0/24
IPv6:
2a0d:f407:1032::/48
Signature Algorithm: sha256WithRSAEncryption
5b:5a:ad:18:cf:cc:fa:c4:52:c4:50:94:3b:18:bb:7f:37:63:
f7:d4:79:0e:f7:99:5e:12:fa:1e:a8:26:89:73:c0:c9:5b:a7:
c2:33:ae:be:68:8b:00:74:ab:c7:e6:d5:3c:1e:3e:ba:3f:c7:
cf:e5:49:49:55:03:08:a9:10:4a:a8:06:65:a5:84:bd:c2:b9:
44:38:61:1f:8e:69:d4:32:7f:e9:da:3c:ce:28:45:41:90:50:
3d:04:20:bc:d0:4a:69:b1:21:3d:c3:bc:89:a1:ca:35:65:00:
8b:84:43:db:4f:24:77:44:b7:c1:b9:cf:c6:9c:c5:f3:9a:f3:
22:80:c6:1c:65:ce:bc:aa:b4:c2:7c:f5:86:c1:5f:d6:56:b0:
8f:99:e4:4d:d0:11:42:e8:63:02:14:b2:e8:2c:99:13:76:e1:
7d:e5:d2:4b:01:75:c6:00:e7:be:37:4f:55:e6:26:cc:98:2c:
ab:95:be:04:11:b1:1b:37:50:d2:a9:54:2b:04:c5:99:05:59:
cd:58:db:6a:69:77:5c:20:db:fb:a8:b0:f3:0f:2e:9b:70:61:
69:bb:c7:8b:3c:29:6f:b9:81:45:47:ec:68:43:7c:5c:61:d0:
99:59:63:27:22:69:78:13:cd:1f:c8:f7:cd:c8:91:03:b9:6d:
17:d2:ae:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org