Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Ul06OcBUZT8RIHMl0d8mXhXe6gk.roa
File: Ul06OcBUZT8RIHMl0d8mXhXe6gk.roa (raw, json)
Hash identifier: 8NYrrrKAIKuzapMH317lSkFaUUg6b617Nsg+HFp2E50=
Subject key identifier: 52:5D:3A:39:C0:54:65:3F:11:20:73:25:D1:DF:26:5E:15:DE:EA:09
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B59E58E92598E9E9177ED95787595
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Ul06OcBUZT8RIHMl0d8mXhXe6gk.roa
Signing time: Sun 01 Jan 2023 18:15:04 +0000
ROA not before: Sun 01 Jan 2023 18:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400529
IP address blocks: 45.8.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:59:e5:8e:92:59:8e:9e:91:77:ed:95:78:75:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=525d3a39c054653f11207325d1df265e15deea09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b9:29:2f:0e:7c:97:d4:cd:ab:38:fe:62:19:
2e:64:89:76:c9:ae:94:94:e2:f4:30:d5:42:0b:23:
7a:d4:38:51:f9:9f:99:ff:49:db:a4:63:df:c5:a0:
a1:e1:ea:07:ae:4a:06:97:77:8f:0f:ae:ca:32:13:
4f:bb:94:39:43:46:33:f5:cf:80:15:d9:05:f5:5f:
5a:92:cd:f5:ac:69:9f:61:18:65:c9:3a:31:34:2c:
09:74:38:b5:06:64:c5:3c:c7:de:51:db:74:ee:8f:
70:09:14:8a:03:d0:f1:23:c7:e3:64:de:66:25:a6:
0c:ee:6b:5d:c0:6a:b2:4c:4e:21:15:57:c7:f7:f9:
57:95:7a:6f:cf:fd:64:95:69:4a:ec:b7:53:2e:29:
91:f8:b4:75:e1:18:9d:70:66:a2:49:74:1d:f4:91:
73:f7:59:98:e4:3b:3f:3c:36:02:cb:d3:39:36:eb:
cb:79:93:65:e6:52:66:91:aa:57:c7:54:07:41:cf:
ab:87:10:ee:4a:b3:c7:ee:7c:3f:1e:c2:83:b3:95:
8a:98:5f:63:b2:a1:f0:72:43:8d:aa:e0:3c:65:6f:
dd:69:dc:e9:da:92:a0:a1:41:56:de:80:9e:09:27:
94:d3:90:38:3c:df:cd:b8:fb:dc:d7:c7:61:bd:81:
0f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5D:3A:39:C0:54:65:3F:11:20:73:25:D1:DF:26:5E:15:DE:EA:09
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Ul06OcBUZT8RIHMl0d8mXhXe6gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
60:68:95:2f:f2:30:5a:8c:fe:4e:21:17:a9:d7:0f:70:fa:8a:
43:da:c3:e6:04:be:da:0e:60:6d:f3:e6:13:d7:59:07:60:65:
c8:3d:fb:52:29:b4:26:e0:ba:62:e3:e4:dd:f1:ed:c1:62:2e:
21:64:6a:db:d0:49:f9:48:de:8b:b0:e2:d4:37:6c:3b:5f:f3:
c5:f2:44:5c:9a:a3:2c:a2:4c:32:fe:5b:37:25:dc:20:91:73:
87:4b:77:26:c3:4c:98:9d:a3:16:a9:96:cf:d7:88:c7:c7:d4:
9f:1b:eb:b7:89:9c:31:25:9e:33:2d:67:48:82:c5:c5:48:67:
d9:a0:36:e7:2e:4f:7c:1e:11:19:79:a1:6b:4a:82:bf:0e:04:
b0:d1:bc:af:8c:96:22:b2:b9:50:3e:d8:f8:91:d7:f8:e7:cd:
ce:e0:7a:7d:1c:10:25:56:44:7c:73:89:89:ea:35:a0:38:35:
06:2e:8f:74:c0:bb:1f:fb:f5:6f:a0:73:98:72:13:96:29:82:
ee:74:8f:7e:5c:6a:8c:9b:65:9e:3a:4a:27:95:11:3a:ab:4f:
f9:00:be:5e:49:69:38:e3:95:37:b5:6f:17:0c:22:9a:fb:e0:
89:e9:f6:41:7f:39:26:57:0b:5c:06:42:03:3a:86:f5:7d:ca:
79:93:0b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org