Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/hJ4rnWZTyFn5o7u6MPucfRGQOzc.roa
File: hJ4rnWZTyFn5o7u6MPucfRGQOzc.roa (raw, json)
Hash identifier: WJpE7CSW08A2nSnDmWCmqyNwHxNY0q52Ngq4XvbkheQ=
Subject key identifier: 84:9E:2B:9D:66:53:C8:59:F9:A3:BB:BA:30:FB:9C:7D:11:90:3B:37
Certificate issuer: /CN=6c592536ce06fdaa5ac2ee48117cf57aa3b4c8d0
Certificate serial: 018C1AC8933F76F62C5B1FC874745CE6CF61
Authority key identifier: 6C:59:25:36:CE:06:FD:AA:5A:C2:EE:48:11:7C:F5:7A:A3:B4:C8:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFklNs4G_apawu5IEXz1eqO0yNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/hJ4rnWZTyFn5o7u6MPucfRGQOzc.roa
Signing time: Wed 29 Nov 2023 11:13:21 +0000
ROA not before: Wed 29 Nov 2023 11:13:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200245
IP address blocks: 45.85.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:c8:93:3f:76:f6:2c:5b:1f:c8:74:74:5c:e6:cf:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c592536ce06fdaa5ac2ee48117cf57aa3b4c8d0
Validity
Not Before: Nov 29 11:13:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=849e2b9d6653c859f9a3bbba30fb9c7d11903b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:60:d7:e3:4c:69:0b:ff:35:21:76:1d:ae:
c4:13:df:e2:ca:d5:25:a9:0b:99:ce:d3:45:5d:f3:
45:5c:b3:6e:d4:23:6f:cc:30:01:61:37:fc:51:7d:
e8:1e:7c:02:0c:36:27:40:29:45:c0:5c:ea:bf:d3:
29:16:e2:a1:cb:51:02:d9:f8:79:d4:f3:ec:ce:2f:
74:e9:22:c1:48:7d:90:c2:5d:30:3a:49:b2:f9:87:
88:67:e5:7b:df:1f:d5:ee:c3:65:48:b3:a2:ed:08:
7c:6d:64:ba:e4:be:ac:ec:3e:7b:75:c7:e5:7a:e5:
52:32:da:30:c6:c8:91:1c:12:3c:c2:78:ad:61:05:
53:6d:fd:c5:b3:81:56:d2:a4:29:6f:61:bf:cc:06:
48:4c:bf:af:96:91:fa:fe:fc:68:ed:ef:4d:c2:f7:
7f:ef:b2:89:12:ba:c2:1b:4f:d6:1f:0e:c5:9e:c2:
61:f3:c6:37:38:f3:9b:e1:e3:8e:a4:29:d1:c9:f3:
48:81:31:36:ec:7b:f3:99:c3:ba:93:cb:63:7e:4f:
a6:12:2a:60:6f:c7:a4:26:09:ea:81:68:9d:7c:8d:
86:b1:94:6d:77:d4:c9:2e:d7:ef:12:69:d5:64:29:
f1:65:67:5b:f6:6b:cf:2f:e8:d2:4e:b5:fc:c9:16:
a0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9E:2B:9D:66:53:C8:59:F9:A3:BB:BA:30:FB:9C:7D:11:90:3B:37
X509v3 Authority Key Identifier:
keyid:6C:59:25:36:CE:06:FD:AA:5A:C2:EE:48:11:7C:F5:7A:A3:B4:C8:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFklNs4G_apawu5IEXz1eqO0yNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/hJ4rnWZTyFn5o7u6MPucfRGQOzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a11f4-e57f-4117-93ab-0a2ec5a23b98/1/bFklNs4G_apawu5IEXz1eqO0yNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.44.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:92:be:0a:3b:32:70:56:2c:6f:b2:c6:16:23:08:3a:7d:39:
30:68:71:d8:a2:0c:5f:e0:3e:f1:a9:03:2b:c7:f6:0e:71:d1:
82:bc:dd:80:67:a2:56:8c:93:0a:75:02:f1:80:3e:76:65:ec:
5d:e1:f6:a1:04:5e:04:1f:8e:dd:33:2d:88:c6:22:b9:c5:0c:
0e:97:40:25:93:34:0b:9b:15:63:af:54:68:87:48:63:68:03:
eb:53:74:eb:81:4c:17:35:2b:bb:02:7a:54:75:ea:c4:91:87:
19:10:5c:14:c5:ea:6a:9c:85:bd:e1:83:00:ee:44:5c:6e:ef:
73:fa:c3:c4:fd:dd:b8:9b:95:b2:32:ae:90:db:6e:fc:44:b4:
1b:04:c9:46:19:dc:d5:b0:61:dc:95:4f:24:03:73:f8:0a:37:
68:42:1c:e2:da:c1:88:ae:2b:f2:95:48:ef:32:b6:0e:50:39:
30:9b:ed:e7:1e:e2:43:58:b8:f2:5f:69:f3:92:d6:5d:3b:1d:
84:75:dc:3d:ad:c8:0c:bc:47:43:21:7e:07:79:26:0b:3f:41:
aa:23:fe:4c:0e:5f:8b:9e:41:d4:68:48:d4:37:ba:76:34:95:
d4:09:ef:67:27:4c:40:7d:b6:44:f1:fd:2f:c8:94:85:92:fa:
ae:87:89:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 07:59:22 2023 by rpki-client on console-fra.rpki-client.org