Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dd3Yd74lhxE84_7wenEKq0tRyIU.roa
File: Dd3Yd74lhxE84_7wenEKq0tRyIU.roa (raw, json)
Hash identifier: az722sNjofJlmumMBngACY0cm5pEbHs9bJLCublGaus=
Subject key identifier: 0D:DD:D8:77:BE:25:87:11:3C:E3:FE:F0:7A:71:0A:AB:4B:51:C8:85
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018B5D4A5BB621A77631602C55B9A5559323
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dd3Yd74lhxE84_7wenEKq0tRyIU.roa
Signing time: Mon 23 Oct 2023 16:07:16 +0000
ROA not before: Mon 23 Oct 2023 16:07:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60949
IP address blocks: 45.8.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:4a:5b:b6:21:a7:76:31:60:2c:55:b9:a5:55:93:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 23 16:07:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dddd877be2587113ce3fef07a710aab4b51c885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:9d:85:1c:eb:94:8a:46:4c:b2:25:06:6e:
2e:b6:71:a7:1c:e1:8b:83:d9:74:69:46:ff:34:84:
db:82:66:f9:76:8e:db:80:ce:63:8e:82:86:28:8a:
6a:3f:9a:30:17:35:3b:2a:5d:aa:5e:1d:c1:38:fe:
27:74:06:e9:e2:13:09:1c:01:33:e7:58:cb:33:b8:
cd:c5:2b:1e:eb:f3:29:3c:08:4a:5e:21:31:1f:b7:
0e:cc:ce:31:d0:ce:14:7b:09:b3:2f:ea:51:f1:2c:
f3:8a:61:8c:29:76:09:6a:ca:82:a4:2c:11:6d:ad:
e6:e0:4e:19:2d:9d:0b:b9:90:4b:2b:0a:f8:52:24:
46:12:bf:12:26:e4:f0:01:ad:cd:67:f0:7b:5f:dc:
a3:40:00:fe:d4:04:2c:fc:75:2d:ff:8a:09:61:e3:
24:cd:d1:ab:a4:f8:a3:ab:7b:38:cb:7c:f0:7f:b0:
e0:52:f4:74:59:f1:9e:c6:11:4f:41:ef:ab:e7:d7:
a9:a2:b3:8d:57:9b:e5:af:c6:18:eb:8a:d8:b8:69:
57:4d:09:6d:f6:ac:f5:4f:ad:1a:e0:35:f8:44:a6:
de:a9:35:73:e5:65:99:75:4b:28:c3:e5:94:5a:e0:
08:7f:2c:e8:53:27:80:90:da:a6:8a:8e:0d:45:5f:
07:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DD:D8:77:BE:25:87:11:3C:E3:FE:F0:7A:71:0A:AB:4B:51:C8:85
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dd3Yd74lhxE84_7wenEKq0tRyIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.187.0/24
Signature Algorithm: sha256WithRSAEncryption
98:b3:97:eb:8f:c4:cc:d5:77:f4:81:e2:08:33:88:dc:3e:5a:
9b:e7:3d:9b:5e:00:ba:b8:e0:95:a5:73:46:a7:19:d9:fa:3c:
8a:1c:5f:77:46:15:7b:d9:39:37:96:36:c1:ec:82:b4:91:94:
3b:97:4d:b2:ad:a8:70:f4:fe:6b:a9:2a:e5:b5:75:4a:25:3c:
b5:a1:bd:4e:c5:14:69:c0:42:c0:50:5c:b9:bf:c8:94:a6:b8:
ff:55:07:04:4d:aa:5f:76:b7:ef:71:1e:28:25:a9:cc:52:f3:
27:75:63:39:14:c0:fa:61:fe:b3:10:ac:85:f4:28:ba:24:b2:
5c:51:3e:ce:e4:fe:29:c8:72:1d:73:56:c1:e7:89:cf:86:07:
0d:56:1c:2f:5e:2f:6a:e9:22:cf:1b:fe:bf:20:bb:2c:18:60:
14:01:9d:bf:e7:aa:cf:7b:49:49:91:f2:9d:d4:cb:ec:ea:1c:
56:bc:5c:a5:9e:cc:03:5f:8f:73:cb:e6:55:a1:d2:0e:11:9e:
9d:2d:9b:88:be:39:16:90:a5:52:e4:ef:7e:ee:81:1a:9a:04:
4b:91:37:bf:ff:c4:51:5d:61:31:86:f0:a1:92:04:a3:42:69:
21:8b:e3:95:d2:79:ca:4e:fa:6d:ac:5f:1a:1b:06:dd:f3:19:
62:fb:ea:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org