Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/3ztWkOeuYgUXxaSRC2or0csOt1c.roa
File: 3ztWkOeuYgUXxaSRC2or0csOt1c.roa (raw, json)
Hash identifier: Azy7FeF4u2PYBHCDxryPIhf9MZtf22diO4RIvuyU1V4=
Subject key identifier: DF:3B:56:90:E7:AE:62:05:17:C5:A4:91:0B:6A:2B:D1:CB:0E:B7:57
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 0190937546A985BFB4167D4834AD14B913E1
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/3ztWkOeuYgUXxaSRC2or0csOt1c.roa
Signing time: Mon 08 Jul 2024 17:47:34 +0000
ROA not before: Mon 08 Jul 2024 17:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 45.84.112.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 08 Sep 2024 06:15:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:75:46:a9:85:bf:b4:16:7d:48:34:ad:14:b9:13:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jul 8 17:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df3b5690e7ae620517c5a4910b6a2bd1cb0eb757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:5a:70:fb:32:3e:cf:c9:60:f7:db:24:04:
e8:5b:df:fd:4c:d4:88:43:ac:3f:70:06:1a:f5:07:
8b:eb:7c:01:24:b2:06:ae:20:7c:bb:8b:67:60:9d:
f3:88:54:99:e4:3e:ac:6f:ff:7a:0f:20:d6:73:0b:
18:ce:fa:9b:5c:62:02:3d:13:c9:de:0c:33:d1:e0:
36:47:c2:d2:c9:1a:d8:ba:ba:cd:98:f6:5a:5a:96:
d6:49:63:1a:d5:42:26:53:cf:a0:42:4f:52:81:05:
56:75:20:3b:f3:6f:d2:f6:ed:72:94:6d:fa:4a:33:
95:9d:03:88:27:27:1e:f7:90:90:fd:04:92:1b:17:
30:fa:2a:cf:00:01:99:78:15:a5:d2:d1:08:ec:cb:
32:e3:70:f7:02:e7:43:7e:75:66:d7:5f:b2:d1:76:
ea:7e:75:ed:d8:1a:37:3b:cc:f6:ad:a1:86:76:09:
1e:aa:b3:be:7c:a6:e6:14:db:cb:1e:eb:a3:c3:f0:
a5:fe:36:0e:1d:a1:20:dc:b7:79:b7:ac:e8:b9:7a:
a3:af:b4:48:fa:99:d5:10:a6:cd:c3:12:65:0f:7b:
94:bd:64:a1:3a:1f:02:29:27:a7:4f:dc:a7:76:08:
db:72:a9:67:80:ad:f2:d3:63:33:a1:72:78:0a:d2:
54:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3B:56:90:E7:AE:62:05:17:C5:A4:91:0B:6A:2B:D1:CB:0E:B7:57
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/3ztWkOeuYgUXxaSRC2or0csOt1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.112.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:7f:0d:03:63:d1:c5:ff:05:3f:2c:96:ec:44:3f:79:c1:75:
7a:4a:db:c4:36:d3:c6:ca:4f:14:36:39:d9:cb:66:6e:26:74:
c8:57:16:43:0e:42:d7:3b:f1:ec:51:88:49:c8:70:fa:e0:80:
53:b3:84:b3:c4:31:28:c6:89:65:68:34:28:54:16:db:b2:e2:
67:19:07:f4:ad:9f:63:ec:95:04:ff:fe:3b:ea:86:38:8d:88:
fd:03:72:c4:aa:c9:62:dd:b4:73:91:84:b7:a5:e8:23:53:9b:
1e:c3:9a:48:77:9e:58:55:03:b2:7e:61:55:7c:2c:02:29:ed:
63:78:9d:0c:c7:72:cd:03:74:df:40:48:af:73:f1:6c:8d:90:
49:9c:79:c5:2c:0d:8b:2d:46:5b:b9:5f:3b:86:74:19:83:28:
c4:d7:aa:76:51:b8:35:f3:c9:99:1d:85:c3:24:3b:fe:75:bc:
d4:31:e6:ef:db:82:54:c1:5d:b3:73:b5:1c:e7:3b:de:e7:b1:
df:cc:9f:1d:23:97:1f:ed:2a:63:60:b0:37:5f:54:ff:36:75:
c1:50:51:03:e9:98:06:6e:4e:92:ee:65:ec:3d:a7:0f:6f:1f:
5b:57:ba:ca:5e:94:2b:50:ee:4d:58:89:28:37:3e:35:22:f3:
1d:55:8f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 07:48:40 2024 by rpki-client on console-ams.rpki-client.org