Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2FV8buTIfRCW7eGVf1YPOAtzg.roa
File: dg2FV8buTIfRCW7eGVf1YPOAtzg.roa (raw, json)
Hash identifier: XwStVXBJIOYyrr1FfH+TOuJppqgVxGQiUu2PknnIkuE=
Subject key identifier: 76:0D:85:57:C6:EE:4C:87:D1:09:6E:DE:19:57:F5:60:F3:80:B7:38
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018F4D9E153E56DD8D2626C5DE75CC03F094
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2FV8buTIfRCW7eGVf1YPOAtzg.roa
Signing time: Mon 06 May 2024 11:15:56 +0000
ROA not before: Mon 06 May 2024 11:15:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.89.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 09:40:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4d:9e:15:3e:56:dd:8d:26:26:c5:de:75:cc:03:f0:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 6 11:15:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=760d8557c6ee4c87d1096ede1957f560f380b738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3f:f8:7d:1b:dc:22:07:19:72:3b:c7:b1:a4:
e3:b0:52:81:23:dc:04:4d:db:0f:1f:49:78:52:96:
ca:51:56:25:19:9d:ca:fa:96:fb:04:e7:d0:80:9c:
42:de:84:2b:b4:74:43:be:ac:86:dd:c8:18:84:ee:
47:c4:af:ef:77:ef:9d:50:3d:10:ef:04:e7:c1:2a:
c0:77:b2:62:26:ec:93:e6:27:c9:39:37:36:e2:12:
91:54:4d:a2:f0:6e:e2:04:91:fb:13:26:bc:11:39:
cb:31:87:c8:2e:56:d5:85:43:35:fe:0c:a1:66:7f:
71:3f:e9:96:e2:8b:e7:15:02:5b:f9:4d:e9:e4:39:
16:74:e6:27:1b:8b:b4:57:60:97:05:fc:e6:37:8a:
c8:83:95:ed:e7:5c:42:37:48:a8:e7:6e:34:7a:41:
d4:a7:16:2b:87:11:b8:dd:38:c1:f7:8c:02:95:89:
c3:76:7d:f9:6c:5e:d6:27:05:da:40:15:c7:bf:11:
9d:ca:e3:5c:fd:44:47:89:16:97:68:88:4a:9a:42:
59:7f:d4:33:d5:92:b9:4a:b9:b0:19:63:d0:82:e4:
3a:dc:dd:c6:2c:13:a1:13:05:ab:bd:7c:f0:55:d0:
57:a6:e0:c7:2a:a6:df:09:50:25:4f:0f:d4:6e:13:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0D:85:57:C6:EE:4C:87:D1:09:6E:DE:19:57:F5:60:F3:80:B7:38
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2FV8buTIfRCW7eGVf1YPOAtzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.99.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:75:df:39:74:37:c5:16:d1:1d:72:e4:40:3d:a9:8e:b5:00:
d2:22:b3:65:dd:f9:51:20:20:be:c6:7f:c3:e8:31:4e:a7:e5:
7d:4f:25:0a:9a:68:72:35:47:bb:7e:7d:8b:06:40:95:fc:8d:
1a:09:fc:57:39:a5:23:41:4b:cc:34:7f:57:dd:2e:01:2d:d9:
54:ca:6a:0a:15:aa:79:f4:99:d9:b6:7a:b3:58:1c:14:33:6b:
fe:29:6f:8a:31:ca:c7:72:da:a5:b3:73:89:83:b1:ee:44:d3:
41:f4:a9:84:a5:b4:01:e6:26:29:da:fc:6c:3a:84:73:67:f7:
9d:36:24:fb:95:60:2d:1a:8e:04:3c:e9:b1:67:59:76:cd:b0:
52:50:8d:91:54:9e:7d:c5:5f:4a:51:68:10:14:d1:61:e4:71:
7d:90:0c:85:08:1c:47:5a:27:9c:c8:1f:9b:97:0f:0d:f1:5e:
fc:54:50:72:a7:5b:8b:43:69:a5:24:b3:a2:90:4b:eb:bc:88:
f9:22:a5:ec:82:e3:64:36:4c:f2:05:78:ab:62:a2:c2:38:1a:
8b:f5:79:a4:2e:32:68:6e:34:72:5b:30:be:85:4a:b3:12:c9:
29:15:7f:02:b6:63:22:6d:10:e1:e2:74:a6:83:ff:e6:80:c9:
29:61:73:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:08 2025 by rpki-client