Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kBVveKhvKir3oMrCVN2hcCkZrgs.roa
File: kBVveKhvKir3oMrCVN2hcCkZrgs.roa (raw, json)
Hash identifier: xCNjJ/SR3H1U7hgY7A7Vhs55wxiFOYHtDS6jvuJRJ3U=
Subject key identifier: 90:15:6F:78:A8:6F:2A:2A:F7:A0:CA:C2:54:DD:A1:70:29:19:AE:0B
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018AA7C65FC13FF6301A41AC3F0AFD9F6B6A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kBVveKhvKir3oMrCVN2hcCkZrgs.roa
Signing time: Mon 18 Sep 2023 10:11:50 +0000
ROA not before: Mon 18 Sep 2023 10:11:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.8.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 17:27:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:c6:5f:c1:3f:f6:30:1a:41:ac:3f:0a:fd:9f:6b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 18 10:11:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90156f78a86f2a2af7a0cac254dda1702919ae0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:73:9e:46:04:eb:54:f9:8e:52:36:e2:28:
b8:51:df:40:65:83:1c:9a:8c:2b:b3:a4:3a:8c:67:
d0:fe:fb:51:95:78:51:7f:9b:0f:0e:fc:61:ec:a6:
bf:34:e3:2b:65:44:4f:04:9e:c4:ab:27:9c:f1:c4:
dc:07:fc:da:c9:8e:29:33:bf:04:fc:4d:33:03:e3:
91:b5:9a:82:6a:79:01:65:f9:8e:13:2a:f9:ee:3b:
88:a3:ee:18:b0:18:23:c3:4a:37:cd:be:af:ce:f7:
cc:23:62:38:b8:33:99:97:2e:60:df:0b:fe:a3:9c:
b9:68:1b:3b:12:56:d7:b4:04:cf:18:d9:57:b1:9f:
52:9f:57:d8:41:79:51:55:08:95:94:bf:45:f8:0a:
a5:48:61:01:16:aa:b4:59:59:d7:0f:9f:7c:23:c9:
3c:57:29:18:9a:b4:c8:b4:de:52:6f:88:a5:4e:ac:
89:e8:60:8d:79:9b:1c:60:30:48:66:63:a4:c8:df:
f8:e2:12:e8:3c:41:66:1f:c4:76:f2:ae:62:67:31:
97:66:a0:b1:4a:b3:21:f2:4a:8d:95:8b:f6:ba:13:
fd:87:b1:23:61:18:01:00:c4:db:fa:60:91:3f:b8:
8d:22:24:08:01:02:fc:50:7a:1e:cc:71:82:31:11:
b9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:15:6F:78:A8:6F:2A:2A:F7:A0:CA:C2:54:DD:A1:70:29:19:AE:0B
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kBVveKhvKir3oMrCVN2hcCkZrgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.184.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d5:40:9d:7b:c2:34:38:28:16:b7:db:36:aa:fc:6f:f9:66:
c1:5a:7f:bf:9e:4e:4b:d7:b7:70:55:ac:7c:64:d3:f5:a2:8b:
c4:41:fc:c6:ef:49:86:de:26:0d:7e:be:60:d2:c3:ff:00:36:
24:7f:e1:ec:e3:e2:76:15:d8:9a:d2:75:3a:15:12:9e:2e:38:
43:d8:68:b7:77:54:26:3f:1b:db:cd:a8:43:a4:aa:7c:c4:1e:
f3:33:cf:cf:ca:71:10:85:89:af:f7:bc:41:4b:5f:d8:59:b8:
33:9c:ec:60:37:96:56:6d:d4:82:40:16:15:66:fe:64:e5:cc:
f6:f5:61:c9:97:5e:33:0a:0d:a3:01:6a:71:3a:bc:5c:81:0b:
b0:cb:73:1b:f2:5e:80:da:56:aa:8d:d9:69:e2:b6:dc:91:30:
ee:32:9b:d7:41:09:b6:48:2d:a4:20:48:a4:12:43:ef:36:9f:
01:72:5f:7d:e7:26:c2:6b:ef:94:45:79:1f:7a:32:41:49:71:
84:bc:97:d2:a1:8c:39:cd:a9:10:3d:9e:de:89:fe:8b:42:56:
b4:e1:62:7e:9b:79:25:0b:58:b2:29:21:57:9e:b8:b5:e5:b9:
1f:3d:5a:37:2f:4c:55:db:27:cb:1d:60:f4:f7:82:d2:f1:c2:
5a:6c:25:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org