Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bJReKmadb4AgTROQHwBwDnTVZSw.roa
File: bJReKmadb4AgTROQHwBwDnTVZSw.roa (raw, json)
Hash identifier: VjApQaG1ITFjWV3rldokROzoiRs59+e7yowRkFbfezg=
Subject key identifier: 6C:94:5E:2A:66:9D:6F:80:20:4D:13:90:1F:00:70:0E:74:D5:65:2C
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018C7347FD9B7D638A045F36DB41A8A42AF4
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bJReKmadb4AgTROQHwBwDnTVZSw.roa
Signing time: Sat 16 Dec 2023 15:39:07 +0000
ROA not before: Sat 16 Dec 2023 15:39:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200181
IP address blocks: 45.8.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:47:fd:9b:7d:63:8a:04:5f:36:db:41:a8:a4:2a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 16 15:39:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c945e2a669d6f80204d13901f00700e74d5652c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1b:5f:49:eb:16:bf:db:73:4f:05:52:44:b1:
24:1c:24:95:c1:38:b9:9e:a9:e0:fa:0b:28:8b:26:
4d:66:57:99:34:6f:1f:f9:c4:a1:1d:db:74:6b:a3:
97:43:dc:b1:9a:26:52:61:3a:82:57:6e:df:10:a7:
d4:fc:af:d2:aa:68:a0:ee:52:3f:50:48:be:39:1f:
d0:d9:6a:63:e9:9f:4f:de:69:6e:aa:8f:aa:5f:88:
4d:a8:61:7c:6b:21:f1:31:8a:1d:a5:fc:28:a0:9c:
e6:0c:28:35:f5:12:bc:03:9e:34:10:30:36:f7:28:
47:e5:e8:a1:26:98:6c:80:c9:cb:e5:7f:29:c7:89:
12:9f:62:da:70:92:bc:c1:00:b5:e3:d6:00:8c:39:
e5:3f:6e:02:6a:d3:0b:e4:cf:d1:69:cd:c2:0b:1a:
88:e5:4b:52:73:d5:19:1c:43:92:a3:8d:9d:9a:27:
68:9b:9a:36:e4:55:82:53:a3:87:fc:f6:ba:3f:2e:
ac:b3:f8:cc:75:df:86:15:b3:97:95:fe:cc:54:e1:
a6:57:2f:77:ce:4d:be:7f:79:83:7a:ee:0c:36:9f:
d7:49:4b:85:f1:83:35:f2:c3:dd:fd:3d:52:9d:37:
19:c2:04:41:76:19:de:a1:43:54:f5:8c:29:95:72:
25:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:94:5E:2A:66:9D:6F:80:20:4D:13:90:1F:00:70:0E:74:D5:65:2C
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bJReKmadb4AgTROQHwBwDnTVZSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:6d:49:64:e0:c9:2f:18:71:a1:23:dd:c2:aa:af:33:a9:fb:
9e:9e:29:f3:23:e7:59:de:4b:d3:ec:34:61:08:ff:cd:d0:df:
44:5c:73:20:a9:3f:ac:b2:73:4e:21:06:3c:ca:86:10:54:54:
3d:90:32:4a:f9:80:e8:81:0c:e7:bf:34:34:55:e3:f2:f5:00:
3a:f8:09:a1:d1:ef:e2:13:9a:75:83:8b:42:d4:da:13:9a:35:
d7:2c:fa:97:0b:d3:30:42:58:b8:05:55:d1:a7:dd:bc:98:9e:
21:60:4c:34:5b:aa:61:4d:00:b5:90:a1:8b:79:e7:ef:6c:62:
01:3f:e4:58:2f:b1:a8:37:d3:b6:7b:a0:f4:dc:30:6f:45:4c:
60:b7:e5:ed:27:98:83:f8:56:9f:75:51:8e:68:68:c8:ef:9b:
b0:b8:fb:99:8a:77:4c:19:c4:99:fe:b5:e8:3b:c2:41:5d:76:
25:17:ba:07:dc:b6:6d:6e:75:23:36:4c:47:a7:1d:f9:60:23:
fb:6e:69:8e:b3:f2:2e:f7:91:48:77:82:fc:cb:6f:b1:4c:b2:
ff:ef:a1:aa:a4:97:19:21:9f:74:01:5c:be:a2:c5:62:b6:8b:
b9:d6:8e:06:60:31:63:5b:88:32:8f:f1:e8:39:9d:69:52:6c:
f7:77:e0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org