Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/4rKMrUr9XxyiYkg65lZQuPX9_0c.roa
File: 4rKMrUr9XxyiYkg65lZQuPX9_0c.roa (raw, json)
Hash identifier: BvIOaFKHLouaCNvENh/8QVhB6ncyDeKFKRRAU9y9HhE=
Subject key identifier: E2:B2:8C:AD:4A:FD:5F:1C:A2:62:48:3A:E6:56:50:B8:F5:FD:FF:47
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B56BFD189EF5C7AD766569EB1D94A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/4rKMrUr9XxyiYkg65lZQuPX9_0c.roa
Signing time: Sun 01 Jan 2023 18:15:03 +0000
ROA not before: Sun 01 Jan 2023 18:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 45.8.192.0/24 maxlen: 24
45.8.193.0/24 maxlen: 24
45.8.202.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:56:bf:d1:89:ef:5c:7a:d7:66:56:9e:b1:d9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2b28cad4afd5f1ca262483ae65650b8f5fdff47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:63:1e:05:56:2d:7e:39:63:35:a0:11:a6:
07:78:8c:58:a7:4e:e1:5c:2c:19:a2:6d:f2:a1:46:
c9:d4:dc:1f:88:ae:fb:57:10:8a:e2:97:38:c3:0e:
e7:29:2f:dd:cb:b9:60:52:66:6c:b2:18:d5:11:86:
72:19:2a:0b:ca:55:fc:18:c4:e5:fa:d3:c7:04:a3:
2e:6c:95:62:5a:10:f4:be:95:bc:48:31:c9:7d:12:
06:49:7e:3f:4e:ea:84:f7:13:2d:fe:3c:c9:2f:18:
e4:d2:70:2d:bd:c9:cd:64:d1:00:07:6c:c1:cc:03:
ed:89:65:fb:03:f5:a3:1f:01:69:53:94:f1:79:2c:
69:17:25:0b:7b:c9:5b:67:39:08:68:ac:9c:ef:95:
7d:93:21:b5:07:13:64:a6:3a:6b:ab:26:70:11:14:
2a:c5:5b:cf:dc:d2:73:d5:9c:b0:0d:d1:77:da:2e:
79:28:17:84:74:d4:1e:91:d8:9d:fd:b7:88:2e:5d:
26:4f:65:16:08:0e:cb:ed:7f:9a:46:f4:2a:30:9b:
e0:e0:29:9f:19:95:c0:d8:17:40:78:14:0c:df:90:
04:2a:28:60:bd:82:a7:95:3b:04:d4:92:30:19:f2:
93:76:cd:d3:a2:c9:85:fa:5d:f5:c5:46:cc:99:a8:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B2:8C:AD:4A:FD:5F:1C:A2:62:48:3A:E6:56:50:B8:F5:FD:FF:47
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/4rKMrUr9XxyiYkg65lZQuPX9_0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.192.0/23
45.8.202.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:9c:ec:ae:4c:43:49:73:21:48:4c:fa:d6:8e:84:2f:bc:b9:
1e:85:6f:53:3b:dc:ba:c4:c5:e7:c6:c0:bc:7c:81:33:fd:cf:
55:45:9b:85:a4:e1:39:dc:77:f7:67:e0:78:5d:2f:0a:65:fe:
8a:43:02:54:47:62:34:96:e1:36:fc:f7:e8:1f:58:70:ef:ec:
03:61:cc:b9:c0:96:0e:06:3d:e3:6e:c1:cd:74:dd:95:27:9a:
7e:23:87:93:0f:b4:bb:b3:9d:ab:42:6e:eb:29:3c:12:38:1f:
b6:c2:68:88:cd:6a:3a:65:eb:46:ec:23:ff:70:94:2f:69:d1:
eb:f0:f8:95:35:ac:83:3c:07:73:5b:29:0f:e7:aa:f3:90:f3:
7e:20:a8:71:60:dc:b8:0c:65:37:80:f0:e0:6a:68:ab:1e:f4:
ff:f3:72:9f:06:ea:cd:b6:91:84:10:a3:9e:83:0d:4a:09:12:
92:f1:e7:33:14:a3:45:d6:ec:aa:6b:6e:36:4e:36:69:c9:7f:
c2:7c:e7:e5:79:c8:00:c3:80:5f:64:1b:09:ce:cf:3b:7b:b5:
db:ea:35:e3:6d:05:d4:09:06:0c:80:50:63:dd:22:cb:87:22:
e2:36:89:11:9a:a8:36:fa:db:93:e0:99:51:3b:09:02:71:8d:
f0:c8:a9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org