Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tUu1PZ7t8HAXO2MgiPRssaiGGtI.roa
File: tUu1PZ7t8HAXO2MgiPRssaiGGtI.roa (raw, json)
Hash identifier: mnGA6YjUGxI146Jvc0RtEOzmqf/ZDOPbIdh6tr8gP2k=
Subject key identifier: B5:4B:B5:3D:9E:ED:F0:70:17:3B:63:20:88:F4:6C:B1:A8:86:1A:D2
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B52CC4B31EFE064FC940599A36A3B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tUu1PZ7t8HAXO2MgiPRssaiGGtI.roa
Signing time: Sun 01 Jan 2023 18:15:02 +0000
ROA not before: Sun 01 Jan 2023 18:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210636
IP address blocks: 45.8.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 May 2023 11:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:52:cc:4b:31:ef:e0:64:fc:94:05:99:a3:6a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b54bb53d9eedf070173b632088f46cb1a8861ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:67:0d:3e:20:ba:dd:cc:8e:8c:39:dc:a5:77:
e8:d6:2c:5c:2f:66:3a:d6:12:4d:01:79:1c:60:c8:
f0:0e:57:47:01:3d:af:57:97:16:46:7e:ae:79:2a:
6a:74:9b:25:1f:40:29:4c:1d:34:21:9c:b0:81:bb:
0a:2a:71:44:4a:6d:da:80:69:be:f8:7b:ed:d8:67:
b3:84:9f:bb:6c:0b:0f:27:9c:95:a9:4d:49:f3:5f:
b6:4c:c4:3f:81:d3:6f:ac:a4:75:4c:b3:9e:53:4e:
6a:41:81:c9:e8:7a:38:c8:a4:a4:6a:81:ad:c2:0c:
54:d3:81:45:1d:32:0b:c2:7a:c0:ff:2b:71:cf:f3:
bc:82:ad:c7:bf:2f:d3:e6:84:03:e9:51:72:23:8b:
fe:04:00:5b:9a:61:d4:9d:b4:b3:3a:28:eb:b1:b6:
8c:9f:5b:6b:54:6a:b0:6a:8e:43:99:c1:df:b3:06:
99:3d:91:2f:25:e1:65:ca:91:04:fc:0e:69:92:3d:
9e:92:a8:51:c2:e7:6f:46:8b:30:9c:73:4c:4f:a0:
65:39:01:8e:8a:4c:94:6f:36:9d:2f:2c:30:2a:60:
27:57:5b:a4:78:1e:ff:ac:73:d8:c3:92:54:43:8f:
a6:8c:bd:54:b7:ff:e3:e6:3a:92:61:bd:ab:20:2a:
a6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4B:B5:3D:9E:ED:F0:70:17:3B:63:20:88:F4:6C:B1:A8:86:1A:D2
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tUu1PZ7t8HAXO2MgiPRssaiGGtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.186.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:4d:42:73:13:1b:c5:7d:59:82:60:67:45:6f:32:53:1b:4b:
d6:4a:03:32:11:1a:a1:a3:66:cb:97:e3:fc:26:57:f0:eb:f6:
27:3a:af:fe:74:8a:c1:ea:d4:8c:f4:49:ea:99:14:33:88:5e:
c0:6d:3a:99:56:78:cc:77:3d:28:f6:4e:a2:6f:5c:b5:c1:df:
98:ce:2f:7c:91:66:cc:e2:91:55:dc:2e:f3:ec:5a:b0:2c:7c:
d1:73:1b:69:cc:01:e3:2a:f1:38:28:fd:9a:68:0c:97:69:84:
0d:5a:fb:6b:4e:93:87:22:76:56:46:2c:9d:4d:27:c5:57:f3:
ef:17:71:dc:b9:69:86:39:06:f1:d2:0b:5f:30:20:b3:2e:3b:
4c:e2:7e:68:b8:91:d6:e9:dd:4a:df:a5:eb:bf:ce:a1:a8:c4:
8a:3f:9c:4f:b8:70:78:bd:c9:6b:3e:d1:b9:53:55:7a:ca:2e:
34:4d:2e:61:18:b9:4d:70:40:08:c5:25:63:ea:3a:bf:ed:3d:
f1:f2:67:a4:d9:c8:fb:a7:8f:7b:d3:9d:36:58:d9:8b:da:65:
5e:f0:83:e9:cc:6e:75:89:77:c7:1d:01:ef:0c:85:a0:dd:fb:
37:d3:18:78:07:e2:77:6c:93:80:17:a1:e6:e7:e5:eb:02:03:
f8:4d:16:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org