Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_dhKWwTeL222ZoVDW83amH-Q9Ok.roa
File: _dhKWwTeL222ZoVDW83amH-Q9Ok.roa (raw, json)
Hash identifier: tWjpQsNK3dSj1r2zf9eRYjLQmtBBaQifid51oPf742Y=
Subject key identifier: FD:D8:4A:5B:04:DE:2F:6D:B6:66:85:43:5B:CD:DA:98:7F:90:F4:E9
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 018570FB9410C8E874B58309D2303D7BB862
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_dhKWwTeL222ZoVDW83amH-Q9Ok.roa
Signing time: Mon 02 Jan 2023 05:36:53 +0000
ROA not before: Mon 02 Jan 2023 05:36:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52202
IP address blocks: 45.86.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:94:10:c8:e8:74:b5:83:09:d2:30:3d:7b:b8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Jan 2 05:36:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd84a5b04de2f6db66685435bcdda987f90f4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7c:d3:4d:1b:aa:4a:f9:e8:a9:27:b2:2f:76:
aa:49:f5:94:27:bf:51:bb:95:24:89:a3:77:83:fa:
20:e2:1c:41:42:28:aa:b5:08:e8:c2:44:99:32:64:
63:e1:21:3b:f9:e0:b7:1f:cf:a4:b4:ce:29:cc:b1:
af:27:a1:b1:8d:06:89:f9:ab:5f:f8:80:fc:03:39:
dc:5f:8e:96:66:9c:27:2b:42:82:1b:74:c1:25:57:
ba:94:ac:62:04:a6:58:d9:10:96:8b:35:03:79:51:
84:67:81:0e:83:07:a6:00:cf:6c:e9:62:cc:8d:fe:
b7:ce:cd:77:d7:e6:de:d4:da:09:88:b2:f1:91:1b:
39:f5:73:e8:9c:31:16:8e:f1:12:e8:7f:a6:ef:57:
2a:87:1e:e4:83:da:1b:7c:6c:69:bd:a6:61:5b:47:
ae:1f:1c:02:94:49:b4:5e:5c:f5:68:0b:34:40:e8:
ad:28:b3:ee:ed:b6:e3:96:66:bd:32:04:61:ae:63:
9d:5f:ca:27:93:42:10:a0:8f:ba:d0:7c:bd:72:3d:
85:71:34:74:eb:7c:4d:44:45:0e:7b:7a:f4:25:22:
f4:b8:af:8a:3f:74:53:d3:a0:f8:8a:56:10:6a:42:
8c:39:7c:88:b4:39:ac:ed:1d:1d:8f:5d:98:20:dc:
64:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D8:4A:5B:04:DE:2F:6D:B6:66:85:43:5B:CD:DA:98:7F:90:F4:E9
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_dhKWwTeL222ZoVDW83amH-Q9Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.241.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:5d:4d:b3:a7:9f:6f:5d:37:76:57:7b:89:1b:84:dd:a2:42:
41:36:36:99:e2:c1:f3:4a:77:86:b6:b1:2c:f0:99:4b:2c:e8:
7f:d7:ba:bc:e9:61:1d:94:f4:5a:e4:82:8b:91:68:ed:b1:f4:
19:02:7e:44:b0:07:75:47:fa:8f:57:f4:82:93:f2:0b:e6:39:
5a:ec:af:61:68:06:b3:af:06:5b:de:96:c1:1f:c6:15:35:0e:
cf:06:c5:b7:e7:c3:8b:77:ee:ee:b7:42:83:66:44:86:51:23:
c0:b9:90:7c:96:d2:a4:9b:3f:36:30:a2:26:a8:59:38:93:e7:
9b:bd:6c:ac:14:9a:de:bb:5f:c4:00:44:4d:1d:ca:f8:c4:18:
b6:d1:47:ef:82:3d:d5:3c:fa:39:76:6b:c8:ed:60:f0:ae:df:
06:d9:69:b3:8b:b5:42:d0:c6:e1:52:d8:07:ce:69:41:ce:6c:
92:b9:17:c0:ec:a9:d2:52:08:6c:0d:83:1a:3d:42:29:20:db:
96:8c:fb:82:e7:ed:27:e9:4a:45:b6:5c:94:33:a9:9d:8c:a8:
a4:39:c9:8f:bf:b7:79:39:70:c1:88:c0:32:45:06:fd:c9:fd:
b8:77:b6:10:01:54:60:e8:bb:fd:19:50:0b:5e:3b:12:96:26:
cf:d2:11:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:12 2024 by rpki-client on console-ams.rpki-client.org