Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/u9-iDp5sl16rSxv-CeKyqlXCp38.roa
File: u9-iDp5sl16rSxv-CeKyqlXCp38.roa (raw, json)
Hash identifier: ExnMWGpKYCVhH7xFHCgrIGQyudM3wh8kXXiMkVO+APo=
Subject key identifier: BB:DF:A2:0E:9E:6C:97:5E:AB:4B:1B:FE:09:E2:B2:AA:55:C2:A7:7F
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 01856CF87DA86E1DDC61158C3BCFD3C63D21
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/u9-iDp5sl16rSxv-CeKyqlXCp38.roa
Signing time: Sun 01 Jan 2023 10:55:02 +0000
ROA not before: Sun 01 Jan 2023 10:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41019
IP address blocks: 45.84.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7d:a8:6e:1d:dc:61:15:8c:3b:cf:d3:c6:3d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Jan 1 10:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbdfa20e9e6c975eab4b1bfe09e2b2aa55c2a77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:3e:03:7b:b7:c0:d8:e5:e8:0f:fd:1a:3b:
d4:5f:59:8e:53:7d:c4:50:af:29:fd:e7:24:d4:ce:
50:fc:70:6e:95:8e:2c:08:98:75:33:ab:0b:07:d0:
f8:ec:d4:fd:75:42:c9:31:7c:64:6c:ab:b3:92:43:
32:2c:c0:70:e0:6d:33:f3:b2:46:f8:df:1a:18:09:
8e:2b:2c:2f:4c:65:5b:63:41:a3:e8:71:1f:bf:14:
b7:76:74:47:b4:16:9b:49:51:8d:6d:af:0e:ce:64:
69:70:48:cb:3b:a4:e4:9c:89:a8:20:0f:fe:93:e5:
a9:c0:b6:43:44:3a:08:db:60:27:1d:6c:0b:81:4b:
75:b3:f6:00:47:01:ba:3d:52:fe:73:58:ba:a1:13:
d1:39:c2:bb:c1:29:cb:f0:5a:a3:74:2f:4c:d8:ae:
9a:39:33:a9:39:75:ef:0f:30:67:b2:fd:fc:77:4f:
4b:5d:b2:39:76:46:3d:4c:ff:e1:70:f1:96:82:3c:
da:40:9e:7f:8d:7d:e4:77:e9:8a:28:8c:c7:05:36:
c1:ee:39:48:99:9c:54:4c:f1:24:d3:df:31:c4:52:
57:0a:4a:d2:01:7a:32:bd:66:5f:85:e0:83:94:58:
94:51:fc:b1:3f:f2:2c:9f:f5:bf:56:62:ac:1c:a1:
60:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DF:A2:0E:9E:6C:97:5E:AB:4B:1B:FE:09:E2:B2:AA:55:C2:A7:7F
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/u9-iDp5sl16rSxv-CeKyqlXCp38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.184.0/22
Signature Algorithm: sha256WithRSAEncryption
80:ec:bc:b8:62:b6:ed:4c:6b:0d:bd:a0:e6:1e:e3:6d:c5:d9:
fe:55:5c:3f:d3:dd:c3:06:85:b5:f5:a9:9c:33:77:db:44:bb:
2d:5b:c2:38:e2:ee:bf:da:18:a0:42:31:63:86:cb:2a:ae:94:
56:6d:0a:8a:b1:4e:4c:40:42:6b:7f:0e:00:b2:4a:db:89:ad:
0e:b2:3f:37:44:63:38:77:41:93:7e:b3:15:c2:fa:95:d7:a2:
20:87:6a:0f:e1:fe:a6:81:f2:db:ee:2c:f4:c8:5c:0e:3f:65:
d7:e7:fe:9b:6d:90:56:be:62:28:63:c0:49:0b:73:bb:89:1c:
d7:4a:8b:28:7b:9b:46:a8:9d:8f:29:bb:ac:3b:e8:3c:23:ee:
bf:00:d5:5f:0e:4f:1a:44:ae:ba:e1:72:d6:41:a2:2c:76:67:
73:dd:27:07:6e:2f:b0:68:b0:74:7b:84:ac:7f:c8:b2:f9:a8:
78:31:9c:71:51:fa:98:6d:ec:e9:58:92:92:53:5e:9e:97:a9:
55:7d:95:44:75:16:80:80:b1:eb:2a:5c:47:6a:2a:20:34:d4:
97:55:e1:08:9b:fa:89:ba:04:73:10:e4:a2:ba:c8:66:ae:90:
ba:d1:ad:74:0a:63:68:40:ee:e0:16:49:e0:07:65:3a:4c:70:
71:b8:7a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:41 2024 by rpki-client on console-fra.rpki-client.org