Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/1v_rYDj8XU-YNJz6OCabtBXc-Cw.roa
File: 1v_rYDj8XU-YNJz6OCabtBXc-Cw.roa (raw, json)
Hash identifier: o8OWBxTATOtcR27XEMR2U6pfmBqwXt7OaUy0CBEAUt0=
Subject key identifier: D6:FF:EB:60:38:FC:5D:4F:98:34:9C:FA:38:26:9B:B4:15:DC:F8:2C
Certificate issuer: /CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Certificate serial: 01856E8B3E40B3FDD01457932D42CE13D66A
Authority key identifier: 86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/1v_rYDj8XU-YNJz6OCabtBXc-Cw.roa
Signing time: Sun 01 Jan 2023 18:14:57 +0000
ROA not before: Sun 01 Jan 2023 18:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206515
IP address blocks: 45.82.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:3e:40:b3:fd:d0:14:57:93:2d:42:ce:13:d6:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Validity
Not Before: Jan 1 18:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6ffeb6038fc5d4f98349cfa38269bb415dcf82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:06:49:2d:22:2d:21:01:dd:14:18:d0:62:
8b:b5:21:31:67:be:ab:4f:e4:b7:c4:e3:a8:37:4b:
00:5b:0e:ae:89:47:65:bd:5e:5c:db:d6:c5:36:4d:
ea:de:d6:62:9e:7f:a9:06:c8:43:c6:11:60:90:81:
a4:cb:fc:c2:ba:80:b0:2d:54:1a:e7:52:fd:ba:cf:
b5:fd:d0:d4:03:85:e3:3e:92:da:12:cf:6b:f3:73:
f6:11:d7:5a:75:20:e4:14:74:63:75:93:b9:a0:e4:
89:60:8f:72:ee:09:89:dc:61:30:c1:a2:eb:d7:29:
12:03:c7:a1:8c:2e:c1:ed:45:af:c6:b5:8e:06:a6:
8d:e3:2b:eb:4e:ae:4a:db:a0:cd:aa:06:56:3f:f9:
40:96:62:e9:a2:3f:07:6f:b0:7a:4c:97:cf:73:40:
57:60:df:bd:71:d8:b5:a8:81:66:e2:56:3a:48:b0:
1f:b7:22:ee:73:4f:57:64:4c:4d:3f:6d:d3:37:b3:
bb:b9:ee:3d:ed:ad:f0:8f:4e:10:83:d0:11:4a:2c:
9d:e8:db:40:5d:2c:d0:8a:49:69:d7:03:69:f0:3d:
e6:f9:02:c7:69:7e:2d:cd:ad:04:7a:cb:6b:e2:b8:
53:1e:fa:26:be:12:66:a2:8d:82:68:7f:f1:cc:9f:
27:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FF:EB:60:38:FC:5D:4F:98:34:9C:FA:38:26:9B:B4:15:DC:F8:2C
X509v3 Authority Key Identifier:
keyid:86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/1v_rYDj8XU-YNJz6OCabtBXc-Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/hvpWTPl1d8B2M7pOZA6njHb8F90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.217.0/24
Signature Algorithm: sha256WithRSAEncryption
90:d7:a7:74:43:ae:5e:5e:69:cd:4c:67:56:9f:a7:50:48:68:
07:88:6b:5a:d2:45:4c:04:d8:41:6a:70:12:fc:63:8e:fc:79:
0a:77:8e:ac:16:e9:96:51:8d:d8:80:0e:97:e3:e7:e8:31:91:
eb:85:01:1e:99:b0:eb:1a:54:93:f6:10:f8:b6:74:90:77:9c:
78:9c:2a:e1:1c:62:ad:1a:2a:cb:0b:f8:19:f0:3f:91:f9:26:
c6:e5:03:c3:9b:b6:0d:b1:88:06:42:58:d8:4a:3e:5d:5b:b9:
97:c1:65:2f:ea:90:ca:b9:41:88:3d:d2:f5:7e:00:cc:25:ff:
a5:f1:2e:31:ac:3b:ea:b1:63:2a:5c:9f:b8:1b:b9:58:71:f9:
cf:9c:b8:4f:7d:96:f7:e8:ae:ec:0a:1e:a2:fa:00:a4:33:53:
f7:ba:7b:f9:3a:ab:01:6c:b2:71:01:dd:c7:f8:ba:21:3b:0c:
f3:ea:1f:b7:8c:f7:e7:56:6b:ac:db:3f:28:d7:b9:aa:61:71:
1b:02:0f:8f:5e:5f:86:6b:c1:ec:2c:e8:9d:41:19:93:1f:4d:
61:df:06:93:40:56:b3:63:60:01:fb:b5:c8:57:1f:44:4f:d3:
79:ba:76:d7:5b:5b:87:13:50:96:32:ad:57:89:5e:08:be:f5:
d1:6b:96:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:26 2024 by rpki-client on console-fra.rpki-client.org