Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2yoPrIXZPY5FsY89mscuPhuHz6U.roa
File: 2yoPrIXZPY5FsY89mscuPhuHz6U.roa (raw, json)
Hash identifier: 5H5SMlqsdWVovkh+GuCGguRtcKmyPqtbFK7W9eOLgaY=
Subject key identifier: DB:2A:0F:AC:85:D9:3D:8E:45:B1:8F:3D:9A:C7:2E:3E:1B:87:CF:A5
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B58A9017D2521E5317FB353467C91
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2yoPrIXZPY5FsY89mscuPhuHz6U.roa
Signing time: Sun 01 Jan 2023 18:15:03 +0000
ROA not before: Sun 01 Jan 2023 18:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 45.8.206.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:58:a9:01:7d:25:21:e5:31:7f:b3:53:46:7c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db2a0fac85d93d8e45b18f3d9ac72e3e1b87cfa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:ca:91:ba:fd:6d:6c:d9:32:0b:2c:7b:32:
7b:ce:54:57:56:24:7d:82:ee:41:67:53:12:c0:4d:
80:0f:d0:78:f9:a7:e3:d4:8d:38:f2:55:4a:0c:80:
00:c3:74:ab:5c:e9:04:d6:b5:1f:67:3e:37:0e:ed:
68:67:25:3e:1a:24:d3:7e:9e:46:bc:a6:1d:f7:93:
ba:e2:66:e6:17:7a:41:20:b7:c4:54:42:1a:6d:c9:
2c:cf:11:48:0c:ca:14:e9:b4:b7:38:bc:3f:c7:b6:
c9:fa:51:e7:31:32:e7:94:43:9a:cc:28:59:7d:be:
29:a3:cd:3a:fa:f4:b6:45:13:3c:5b:49:08:c0:6f:
60:f1:92:e7:6c:ec:e2:95:4e:63:0b:ad:3f:b6:d0:
4d:c5:cc:97:47:e5:1a:05:f3:4b:8c:b3:dd:3b:77:
66:32:e9:03:b3:75:0e:ef:4c:b4:e5:e7:6a:33:d3:
66:65:6d:27:61:10:4e:80:2e:c0:66:81:9b:fb:47:
2d:76:a4:f4:1a:11:f9:cd:d2:37:8b:04:c4:b1:03:
23:e3:6f:7e:57:32:89:3f:25:f2:0f:41:7f:b0:a4:
16:9e:4b:77:f2:ae:e3:f2:35:24:d8:fd:1a:21:82:
db:55:ed:b9:46:53:94:2c:dd:66:da:fd:f1:f9:c3:
ca:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2A:0F:AC:85:D9:3D:8E:45:B1:8F:3D:9A:C7:2E:3E:1B:87:CF:A5
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2yoPrIXZPY5FsY89mscuPhuHz6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5c:b6:ba:6a:bf:8f:20:7c:58:cb:6f:b3:24:24:31:d5:49:
73:cd:c8:36:e5:53:39:a2:ae:8c:50:c6:9c:8b:00:47:73:d9:
b3:83:51:d6:00:9c:c0:9d:a6:65:e1:ab:9c:d1:bd:24:fa:e0:
2d:8f:59:39:c1:90:80:26:d1:f4:56:13:df:c2:e9:d4:63:3f:
1c:1a:6e:da:24:81:e8:21:09:53:87:d9:82:17:13:a4:20:e8:
ca:89:61:11:69:21:82:a5:15:0a:60:8d:68:27:6e:21:dd:ad:
7a:76:da:17:62:0d:59:74:3d:de:0e:89:72:07:ea:7a:f6:c0:
ed:ba:57:06:a1:d1:1d:0f:e4:ac:12:77:8b:63:c4:90:d7:ca:
0d:0f:de:26:27:7d:d6:66:21:49:4e:3d:03:99:cb:a1:cb:df:
f5:8d:6f:53:7a:34:cf:d3:dc:66:c9:f3:31:24:6e:ae:96:75:
c6:39:d8:94:60:23:1a:cd:a1:d8:dc:e0:0a:3a:f5:f6:4c:50:
ea:df:a0:c5:dd:6b:86:88:d2:cf:29:21:2d:71:a8:4a:29:c4:
d5:8b:35:08:77:ed:36:73:bc:d2:12:0f:bd:49:a8:2a:9e:38:
93:af:ab:52:23:71:7c:1f:17:bf:e5:70:ec:4a:4b:f6:c1:38:
9e:09:57:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org