Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LdoKRw9wl84pCAkWxgGGGoMkAuA.roa
File: LdoKRw9wl84pCAkWxgGGGoMkAuA.roa (raw, json)
Hash identifier: +NjeSzvHdZBhJCE7bkbIXxZ4+4FZfDKjWk2gNRcJq/g=
Subject key identifier: 2D:DA:0A:47:0F:70:97:CE:29:08:09:16:C6:01:86:1A:83:24:02:E0
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018C20CF3C956C474D13E5ED80D07696E764
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LdoKRw9wl84pCAkWxgGGGoMkAuA.roa
Signing time: Thu 30 Nov 2023 15:18:21 +0000
ROA not before: Thu 30 Nov 2023 15:18:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139989
IP address blocks: 45.8.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:cf:3c:95:6c:47:4d:13:e5:ed:80:d0:76:96:e7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 30 15:18:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dda0a470f7097ce29080916c601861a832402e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:42:1d:bd:ae:a9:60:24:12:74:a6:34:a3:3e:
7d:db:39:5d:8a:80:46:61:76:00:c4:7f:cd:93:fe:
9e:bd:e3:74:a3:1b:65:45:94:66:63:95:d3:7b:39:
14:ee:fb:82:e9:d4:8a:d0:c4:fc:9e:be:56:f2:d4:
3a:a0:7e:31:77:42:aa:04:ba:6c:2f:cd:ce:30:d2:
b9:2d:ca:12:0b:04:f6:20:66:5d:72:c5:28:87:ac:
e1:98:68:59:be:71:7d:db:9b:8f:9c:fc:ae:10:98:
e7:bb:7c:e3:63:c2:e7:48:00:90:1d:6b:ab:61:f2:
7f:be:3c:dc:22:a9:bd:85:19:4a:da:37:9a:53:5d:
b2:2e:40:17:12:96:bb:d8:66:e8:93:37:fa:6b:c9:
aa:b8:d2:73:a6:59:d9:f0:23:9c:86:f0:1a:a6:c9:
be:8d:0a:2a:8d:02:a1:04:40:da:23:b0:e6:a2:68:
27:19:05:09:82:3a:fe:25:f1:a2:c4:c5:49:a6:6b:
55:b5:c1:4f:fb:c2:f7:b6:8b:35:e7:10:0b:19:40:
b6:01:c2:34:33:f8:1c:54:50:16:41:54:fd:d4:9f:
3d:63:95:e7:30:9b:78:4d:c6:93:5f:ce:f9:83:d3:
fa:bb:ed:9f:b6:23:77:bb:dc:46:35:e6:d4:4d:54:
c1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DA:0A:47:0F:70:97:CE:29:08:09:16:C6:01:86:1A:83:24:02:E0
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LdoKRw9wl84pCAkWxgGGGoMkAuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.185.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9f:d6:22:ca:d8:c7:e6:15:8b:00:9e:3c:e0:72:2e:8b:ea:
0b:b8:0f:fd:d5:9a:40:56:03:13:d1:8b:49:b9:dc:ef:76:1b:
75:1d:65:6a:e2:11:5e:ff:a7:01:f7:1b:64:b2:40:26:83:95:
73:18:66:b2:fd:f9:2f:ea:0d:12:cc:cd:17:fe:c4:81:f5:f5:
bb:52:4c:52:fc:d4:10:7e:22:d4:1a:0a:b9:63:af:c7:ba:96:
a9:31:8a:2c:03:ff:06:fd:33:9f:40:c5:90:d5:a9:28:8b:4a:
3a:4d:ed:42:76:b7:4c:8d:6b:00:74:1e:fc:22:af:47:58:5f:
9e:da:46:db:8f:41:45:16:87:16:23:16:48:17:c4:c7:76:d8:
84:7d:c2:8f:3d:5f:c3:0f:3e:15:8a:94:2d:5c:ee:31:8f:80:
fe:17:22:16:89:8a:c5:85:c4:e7:37:39:b6:c3:f7:5e:2c:04:
ef:c6:64:6f:26:69:82:b1:a9:71:84:0c:a9:eb:e0:fa:94:32:
b6:4b:ff:8a:66:52:65:97:ce:b4:fc:bf:54:c5:c0:1f:ce:4e:
65:08:43:78:97:3f:73:af:21:78:bd:94:53:ff:52:1f:1d:a0:
e3:67:90:ad:93:2e:18:3b:7a:f2:05:7d:f1:c2:80:da:27:c5:
0d:c7:f3:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org