Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/R4yJalhcwITkE986QVMlaXVjoVw.roa
File: R4yJalhcwITkE986QVMlaXVjoVw.roa (raw, json)
Hash identifier: WVikrsXJ/aKXgme/WTAoyjzfyioLtXHThesjHzZpN+Y=
Subject key identifier: 47:8C:89:6A:58:5C:C0:84:E4:13:DF:3A:41:53:25:69:75:63:A1:5C
Certificate issuer: /CN=6c592536ce06fdaa5ac2ee48117cf57aa3b4c8d0
Certificate serial: 018C1AC892D1834BA681D35AD9010DF253A0
Authority key identifier: 6C:59:25:36:CE:06:FD:AA:5A:C2:EE:48:11:7C:F5:7A:A3:B4:C8:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFklNs4G_apawu5IEXz1eqO0yNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/R4yJalhcwITkE986QVMlaXVjoVw.roa
Signing time: Wed 29 Nov 2023 11:13:21 +0000
ROA not before: Wed 29 Nov 2023 11:13:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198575
IP address blocks: 45.85.44.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 28 Dec 2023 16:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:c8:92:d1:83:4b:a6:81:d3:5a:d9:01:0d:f2:53:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c592536ce06fdaa5ac2ee48117cf57aa3b4c8d0
Validity
Not Before: Nov 29 11:13:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=478c896a585cc084e413df3a415325697563a15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2b:9e:60:b5:be:0a:2b:08:f0:bd:99:58:ec:
9f:0d:58:6c:12:ed:f5:f9:38:19:24:8f:49:5d:cc:
6c:10:3f:09:00:c3:ce:e9:23:3a:c5:59:1f:f9:11:
e1:5a:9d:ac:12:24:61:1d:0a:b0:cb:14:67:0e:11:
52:92:43:b5:73:24:c4:6a:70:9e:08:16:59:6f:4b:
93:24:f4:b0:c4:b3:94:71:4b:d4:ee:c3:f2:e5:d9:
ff:28:ee:49:40:d6:30:50:79:27:c6:37:46:59:dd:
b4:55:8b:38:83:19:cf:33:32:d3:41:10:4d:8f:b4:
8e:ad:0d:3e:ef:fd:19:51:fa:d3:9a:4a:10:57:ae:
c7:0a:d6:b3:ff:5e:4e:85:00:03:4d:87:e5:a2:b6:
e4:c8:86:d3:73:27:09:3b:ce:fa:c1:0f:78:2e:30:
d9:19:cc:c3:2f:3d:a4:c8:00:30:79:d9:df:d3:d2:
d6:a4:cc:a1:f5:9b:89:80:de:0b:a1:e7:ff:0e:60:
23:a4:1f:ef:dc:8b:a8:f1:91:29:e8:b3:99:f7:8b:
b0:dc:e4:21:6b:e9:1f:30:13:80:d8:85:07:26:ea:
c9:9c:f7:25:b1:1f:9f:6b:71:a2:16:ff:a3:92:88:
2a:be:93:3f:07:5b:77:41:c4:fd:99:95:eb:64:3b:
44:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8C:89:6A:58:5C:C0:84:E4:13:DF:3A:41:53:25:69:75:63:A1:5C
X509v3 Authority Key Identifier:
keyid:6C:59:25:36:CE:06:FD:AA:5A:C2:EE:48:11:7C:F5:7A:A3:B4:C8:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFklNs4G_apawu5IEXz1eqO0yNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/R4yJalhcwITkE986QVMlaXVjoVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/bFklNs4G_apawu5IEXz1eqO0yNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.44.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:a8:61:0e:82:fc:6c:fe:fb:53:c2:67:2a:0b:0b:9a:96:7b:
ff:62:2f:de:07:13:d0:0f:5a:86:0b:8c:65:4e:48:f1:af:a3:
2f:c9:90:f3:b4:c2:61:4c:1d:49:3d:2a:25:29:ad:d9:5e:9c:
01:e7:f5:7c:10:39:13:12:82:b0:66:b2:51:88:d9:59:cd:37:
9b:65:08:66:fc:c1:c1:4d:82:1b:a2:66:bd:d3:78:ea:58:7b:
a5:47:88:8f:37:1b:65:ab:de:7e:98:e8:ab:c2:0b:74:b3:24:
d1:44:d0:4d:c8:10:40:b4:58:23:df:64:ff:d3:26:22:6f:16:
b5:98:b4:c2:cc:5e:5e:6f:ce:3c:39:46:60:1d:c9:8c:49:a3:
e5:c3:0d:18:6e:7f:f5:e5:2d:b1:65:95:ac:1f:66:03:10:1f:
08:c5:64:01:2d:d1:7e:c6:b0:af:3b:bb:f5:d6:a7:5e:4a:1e:
6f:77:10:30:3c:85:22:56:28:8b:f8:91:6d:13:14:f9:f1:e7:
c3:4c:fb:11:4d:14:5d:cd:85:43:8a:4d:8b:2c:12:9c:b6:8a:
6a:18:d6:cf:60:84:1a:0f:7c:6a:15:8f:8e:29:9e:35:c8:4e:
9d:1e:52:2e:3e:21:38:b6:1a:b0:7a:14:62:bb:2d:10:d5:98:
7a:9e:eb:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:29 2024 by rpki-client on console-fra.rpki-client.org