Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTm4RnEI_-N_dVPigPG4RusQi8E.roa
File: hTm4RnEI_-N_dVPigPG4RusQi8E.roa (raw, json)
Hash identifier: s+YGgDX/J4BByvi3CpUwyUtlsS4smo9UnwYGKBBnxLM=
Subject key identifier: 85:39:B8:46:71:08:FF:E3:7F:75:53:E2:80:F1:B8:46:EB:10:8B:C1
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185C56CE532A73F80679B7FC34C78B01DFF
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTm4RnEI_-N_dVPigPG4RusQi8E.roa
Signing time: Wed 18 Jan 2023 15:08:46 +0000
ROA not before: Wed 18 Jan 2023 15:08:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204603
IP address blocks: 45.9.74.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c5:6c:e5:32:a7:3f:80:67:9b:7f:c3:4c:78:b0:1d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 18 15:08:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8539b8467108ffe37f7553e280f1b846eb108bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:80:ff:ba:99:6d:11:00:1a:94:cc:b6:82:3a:
ba:81:47:0f:37:0e:12:fc:6f:c8:9c:4e:a9:af:f6:
84:58:be:73:55:87:7b:a4:e3:3d:0a:e3:73:df:21:
64:ac:49:b1:9b:49:10:9c:84:f9:bd:f0:3c:8c:2f:
df:fb:f6:c4:ae:4f:c8:d1:f1:3c:f6:ad:0d:44:1a:
5e:b5:db:dd:16:e0:48:fa:67:83:55:3d:e5:b2:01:
92:cb:9c:cf:74:8b:21:2a:e0:7d:02:39:b2:08:b9:
9b:c8:c0:b2:8f:b7:9c:8d:6e:4c:a2:71:43:6f:06:
e9:2f:37:94:99:95:a6:c8:e5:89:af:e8:54:89:04:
b4:29:0a:31:e5:e1:14:7b:b8:87:01:67:90:fe:37:
0e:c1:1c:ee:80:1c:7b:9a:68:fc:b1:60:e5:67:98:
11:e5:c9:f1:3a:39:ca:10:ee:4f:4d:71:aa:1b:d1:
a5:3f:01:f6:f8:a1:a4:1c:a9:11:5a:30:0a:11:7c:
08:27:00:ff:13:e6:0d:72:5b:9e:30:26:c4:5e:87:
2f:2c:cc:b0:a3:3f:1a:dc:91:4b:ee:d5:3c:d8:c1:
bf:21:22:ca:09:36:78:54:85:41:e8:b9:df:5f:86:
47:7b:79:37:40:1a:3f:a5:ae:24:6e:cd:f0:fc:9d:
21:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:39:B8:46:71:08:FF:E3:7F:75:53:E2:80:F1:B8:46:EB:10:8B:C1
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTm4RnEI_-N_dVPigPG4RusQi8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.74.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a4:c9:04:89:a5:6f:7e:eb:9b:24:89:7d:02:42:cf:6a:8f:
4e:ff:63:bd:b8:93:3b:a1:5b:43:70:0b:91:1f:9c:18:ef:06:
a9:e9:c8:50:cd:95:7e:1f:d5:38:04:91:b9:87:30:4f:3e:5b:
ac:68:fb:32:69:21:9a:9f:a9:24:c6:f8:8e:b2:60:c3:22:f1:
de:a9:aa:d0:94:80:81:84:0a:86:87:55:49:28:8b:06:a1:28:
f8:f1:3d:33:99:c8:e6:14:3f:0d:45:0f:09:94:01:eb:f5:cd:
58:3b:87:42:b2:95:d4:30:03:ad:88:22:c0:b3:7c:c5:8f:33:
cc:cc:55:65:86:56:cd:57:7c:ac:19:d6:1f:57:f4:0d:ca:3e:
fc:9a:14:b4:14:02:77:64:60:39:f4:de:74:af:e3:85:ed:7d:
83:6d:c1:02:a1:21:9d:f1:35:88:cb:5d:7c:47:11:2c:95:1d:
c8:d2:fa:4b:3d:82:2e:d4:8b:1e:c9:ad:33:6b:6d:5c:b0:6f:
16:59:49:63:f7:d0:61:9d:7d:f6:67:fe:ba:a5:3d:cd:b5:d7:
69:cc:c7:a1:1f:b3:4c:83:7f:31:53:28:8d:09:7e:c4:4e:10:
ad:bf:b9:09:43:31:2a:e1:ce:1d:87:8e:25:d8:03:81:de:33:
6b:32:bd:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 11 10:35:10 2023 by rpki-client on console-ams.rpki-client.org