Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/S5dbY9E-N4Y2yFnJc6T4TCK37Ws.roa
File: S5dbY9E-N4Y2yFnJc6T4TCK37Ws.roa (raw, json)
Hash identifier: x/7PUvCqBAiw/HEj1TIUbgW3bduGiMRl41d30U7dTTw=
Subject key identifier: 4B:97:5B:63:D1:3E:37:86:36:C8:59:C9:73:A4:F8:4C:22:B7:ED:6B
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B5665C4E3EACD4E4DCD9B17D7E1B6
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/S5dbY9E-N4Y2yFnJc6T4TCK37Ws.roa
Signing time: Sun 01 Jan 2023 18:15:03 +0000
ROA not before: Sun 01 Jan 2023 18:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211804
IP address blocks: 45.8.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 08:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:56:65:c4:e3:ea:cd:4e:4d:cd:9b:17:d7:e1:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b975b63d13e378636c859c973a4f84c22b7ed6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:31:96:a6:3a:23:0f:c0:6c:96:4c:84:4b:4f:
9f:89:2f:b5:f5:84:79:e3:6f:23:52:5b:fa:d6:4a:
a2:6a:e8:b8:1c:1f:be:13:a0:85:20:dc:06:c8:d5:
c4:67:b8:b6:83:6c:ef:4a:5f:8e:e8:9d:4f:a4:96:
ba:ed:d2:d6:86:a6:4b:41:a1:0e:fc:bf:ae:5e:13:
34:fd:f4:19:4c:b8:bf:84:0c:4b:bd:e8:09:a7:61:
d1:c7:da:b6:09:03:57:bc:28:3e:f3:e4:80:26:da:
44:b9:69:05:c5:bb:c8:74:a2:a3:33:b4:8f:49:f1:
db:0f:c3:4c:cd:55:c8:61:e6:27:57:1f:65:18:4f:
a3:0a:7b:62:8b:34:07:88:4f:62:4c:ee:14:ee:27:
bc:77:15:0e:8c:58:ba:e7:dc:cc:d8:a1:c0:44:3f:
3a:dd:eb:c0:56:b2:f8:67:1c:a2:eb:54:9e:67:6f:
66:e7:32:91:d2:b9:93:24:f6:3b:6b:a2:e6:7b:9a:
9d:72:7e:80:49:8b:10:46:f4:61:20:09:52:0a:4f:
c6:44:52:ff:7a:d4:99:87:1a:be:69:a9:fc:8b:af:
08:e4:98:b3:15:0e:39:0a:3d:87:e2:09:00:17:e0:
8c:f4:7b:12:8f:d8:2b:04:24:6a:da:ca:62:af:c9:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:97:5B:63:D1:3E:37:86:36:C8:59:C9:73:A4:F8:4C:22:B7:ED:6B
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/S5dbY9E-N4Y2yFnJc6T4TCK37Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.191.0/24
Signature Algorithm: sha256WithRSAEncryption
96:35:b2:ca:7a:d5:89:f5:73:ce:ab:10:ea:27:ae:7c:d3:e4:
21:6a:99:15:d1:50:89:3b:90:9e:a2:fb:fa:c7:35:b2:34:36:
34:1c:d5:12:1f:78:32:0d:16:89:e7:bb:0b:b9:59:a8:1b:43:
db:a4:c1:ee:b7:32:0e:c2:cb:7e:91:cd:4a:76:92:9c:d8:d0:
2a:30:00:30:4e:b8:25:21:56:ab:5e:2c:59:3b:a8:21:a5:26:
1a:d3:ad:aa:20:16:be:07:a1:77:ac:75:a1:69:c7:5b:cf:02:
e5:cb:72:dc:6b:54:17:35:f6:e2:1e:83:0d:77:36:1c:17:cb:
51:f3:49:7e:3b:3e:96:c6:0f:ea:c1:56:fb:88:18:44:ff:16:
f5:41:d0:bc:42:d8:e8:fb:7a:1c:9f:ae:51:73:e5:c1:1a:ed:
ed:a2:41:eb:26:a4:4e:13:2d:cd:71:30:88:3f:8a:c6:92:c3:
67:77:57:be:e3:62:29:5b:f3:98:f7:32:2d:ce:2e:33:e1:34:
10:0d:b3:32:b9:ac:46:61:e0:68:d2:24:92:8d:c8:8b:03:10:
13:00:5c:6f:50:77:70:f6:fb:43:c1:56:94:20:3b:2b:18:2e:
ea:10:b3:3f:b7:48:fd:63:5f:f7:1c:15:6a:f7:15:3d:06:55:
87:ea:6a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org