Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ca62a1-4c72-481b-9f25-eec490d506f7/1/GVrLLVWfWUt4EuSD6a3JeDf_oMk.roa
File: GVrLLVWfWUt4EuSD6a3JeDf_oMk.roa (raw, json)
Hash identifier: 6xwhSkDSn7RH6rXCJoLmQswLJ1ilTBky+MqKUp/WQuQ=
Subject key identifier: 19:5A:CB:2D:55:9F:59:4B:78:12:E4:83:E9:AD:C9:78:37:FF:A0:C9
Certificate issuer: /CN=abe2353d9bd5b8c5b58cc71021324bb90dd2dd91
Certificate serial: 01856E38BEFCADDD84E7813F92D23F8464B0
Authority key identifier: AB:E2:35:3D:9B:D5:B8:C5:B5:8C:C7:10:21:32:4B:B9:0D:D2:DD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q-I1PZvVuMW1jMcQITJLuQ3S3ZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ca62a1-4c72-481b-9f25-eec490d506f7/1/GVrLLVWfWUt4EuSD6a3JeDf_oMk.roa
Signing time: Sun 01 Jan 2023 16:44:50 +0000
ROA not before: Sun 01 Jan 2023 16:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208234
IP address blocks: 45.145.61.0/24 maxlen: 24
45.145.62.0/24 maxlen: 24
45.145.63.0/24 maxlen: 24
45.145.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:be:fc:ad:dd:84:e7:81:3f:92:d2:3f:84:64:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abe2353d9bd5b8c5b58cc71021324bb90dd2dd91
Validity
Not Before: Jan 1 16:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=195acb2d559f594b7812e483e9adc97837ffa0c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:91:87:33:fd:e2:d6:bf:6d:b5:ec:84:83:
da:32:43:5d:fa:c3:de:04:e6:d3:72:9c:fd:3f:3d:
70:0b:1e:05:5b:68:6f:85:2d:22:68:ef:01:95:13:
99:d0:10:01:07:04:f0:17:08:29:9f:7b:76:1b:fd:
bf:aa:03:3b:b3:1e:1f:90:dc:b0:a0:f0:76:4c:52:
d6:84:93:4e:8f:81:97:ce:9d:96:f7:b3:19:f1:74:
0c:27:3d:50:fd:38:66:46:bc:e3:a1:7e:27:75:84:
70:4b:c8:95:f3:9f:49:c6:fe:67:1b:8a:7d:8e:cd:
92:26:80:4e:84:73:fd:08:bb:e3:9e:4f:0b:02:37:
60:bb:d8:17:10:d2:2a:1b:a2:ff:55:51:de:ad:a8:
3d:ec:e4:1d:2d:62:31:8c:02:26:4f:02:96:f7:09:
d5:4b:e7:b6:4b:44:da:01:fa:b9:e2:07:c0:71:b1:
7f:5a:a9:0c:7b:30:b5:13:49:cc:bb:07:90:eb:62:
5a:65:28:21:f5:5f:70:ca:0f:51:d0:74:2d:fd:83:
cc:30:8d:94:17:22:f5:47:83:b9:7e:f9:e2:62:c7:
4f:88:00:5a:59:74:35:75:d3:a0:76:5f:91:f6:b4:
89:37:59:8c:ee:1e:69:26:31:0b:15:25:28:69:cd:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5A:CB:2D:55:9F:59:4B:78:12:E4:83:E9:AD:C9:78:37:FF:A0:C9
X509v3 Authority Key Identifier:
keyid:AB:E2:35:3D:9B:D5:B8:C5:B5:8C:C7:10:21:32:4B:B9:0D:D2:DD:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q-I1PZvVuMW1jMcQITJLuQ3S3ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ca62a1-4c72-481b-9f25-eec490d506f7/1/GVrLLVWfWUt4EuSD6a3JeDf_oMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ca62a1-4c72-481b-9f25-eec490d506f7/1/q-I1PZvVuMW1jMcQITJLuQ3S3ZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.60.0/22
Signature Algorithm: sha256WithRSAEncryption
69:f0:96:3f:88:c5:d6:0c:e5:bd:dd:a2:81:68:06:bf:26:fd:
5f:6d:c9:64:df:83:07:34:90:f0:e1:9b:ce:49:71:ea:46:de:
e1:95:70:0d:d5:3d:d2:58:6b:45:7d:dc:80:10:69:de:d7:c6:
64:f0:c8:3c:49:58:ed:dc:69:94:4e:f7:d8:aa:64:22:d6:97:
a2:8d:27:19:f1:bb:2a:b3:97:10:ee:3c:82:85:88:31:04:54:
ca:9a:80:50:25:fd:a3:54:02:e6:cd:3f:42:26:bb:a5:71:77:
07:e1:58:0a:d4:da:ab:bc:88:7c:b5:ce:48:9c:ae:ad:c4:47:
48:63:9d:aa:c5:f3:5e:2b:93:df:e0:8a:fa:95:bf:33:80:26:
2a:8d:04:fe:9b:42:0d:2d:a8:c0:30:30:f9:a8:d7:d9:9b:b4:
48:05:3b:dd:92:b8:65:b7:be:32:da:5b:67:2d:87:b2:a5:9a:
ae:fc:f4:c8:36:c1:5b:b3:97:0e:f6:b3:3d:39:d3:94:1a:a5:
30:5b:0c:8b:25:77:cc:61:89:5e:e0:74:ec:3e:24:69:85:61:
29:6b:81:03:d6:7b:b5:0d:91:c2:4c:30:64:7b:dd:07:52:ee:
b8:0c:9a:ce:12:a6:4a:c6:c1:57:a4:c4:8c:09:31:e1:02:9f:
9a:16:cf:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:11 2024 by rpki-client on console-ams.rpki-client.org