Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/dT2vPFPqPWqntEDY8Jy1d7E9rxA.roa
File: dT2vPFPqPWqntEDY8Jy1d7E9rxA.roa (raw, json)
Hash identifier: elM648i1azot5FeutktU3qTiGNRK+MBTHd7Qbi9XhFQ=
Subject key identifier: 75:3D:AF:3C:53:EA:3D:6A:A7:B4:40:D8:F0:9C:B5:77:B1:3D:AF:10
Certificate issuer: /CN=8bd4bcbf35db7fe2ef663522a5a3a3979a4f1ff8
Certificate serial: 018572033CDC984DB33F1752B4CE2ABCF969
Authority key identifier: 8B:D4:BC:BF:35:DB:7F:E2:EF:66:35:22:A5:A3:A3:97:9A:4F:1F:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9S8vzXbf-LvZjUipaOjl5pPH_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/dT2vPFPqPWqntEDY8Jy1d7E9rxA.roa
Signing time: Mon 02 Jan 2023 10:24:52 +0000
ROA not before: Mon 02 Jan 2023 10:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208591
IP address blocks: 45.84.208.0/22 maxlen: 24
2a0e:a180::/29 maxlen: 31
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:3c:dc:98:4d:b3:3f:17:52:b4:ce:2a:bc:f9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd4bcbf35db7fe2ef663522a5a3a3979a4f1ff8
Validity
Not Before: Jan 2 10:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=753daf3c53ea3d6aa7b440d8f09cb577b13daf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e8:14:12:3f:78:9b:b3:40:b0:c6:e9:3c:5f:
94:8e:ef:42:a0:a6:4b:7b:82:a4:14:8e:77:34:f7:
5a:a0:02:93:f3:06:17:93:17:9f:ce:8f:bd:ab:70:
1f:b8:51:0c:f9:1e:fe:26:6d:cd:d3:b0:62:f8:95:
b7:fc:65:c2:57:6b:52:93:21:2f:69:61:0a:21:ac:
9a:95:de:7f:b9:5d:31:52:60:b0:b6:65:b1:4d:b8:
54:03:e3:12:d8:4c:67:8d:b4:5c:72:10:77:c0:fd:
71:82:b6:c6:2a:25:02:2a:6b:8f:61:53:54:fc:a4:
bd:28:31:0b:77:83:be:49:1f:b4:c8:40:11:12:c1:
b9:41:c4:e2:72:53:64:58:5c:4f:67:9b:56:45:e1:
d0:12:d8:ee:3f:03:32:69:31:45:8a:62:86:14:a4:
e0:da:25:8b:69:b0:3d:13:c8:bc:11:14:f6:78:55:
a2:c0:8f:f2:bc:b5:17:66:72:a7:3e:7b:14:02:d9:
e5:78:2e:82:8b:6b:82:11:b8:0b:83:44:3a:a0:18:
81:ea:a2:69:c9:d9:29:f3:b5:11:1d:42:3a:8e:f7:
82:9c:b9:86:04:aa:ad:2c:76:73:98:dd:69:73:b6:
00:4d:1f:c0:bf:ce:34:23:36:72:f8:d8:b9:1a:5f:
b2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3D:AF:3C:53:EA:3D:6A:A7:B4:40:D8:F0:9C:B5:77:B1:3D:AF:10
X509v3 Authority Key Identifier:
keyid:8B:D4:BC:BF:35:DB:7F:E2:EF:66:35:22:A5:A3:A3:97:9A:4F:1F:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9S8vzXbf-LvZjUipaOjl5pPH_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/dT2vPFPqPWqntEDY8Jy1d7E9rxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a14272-2794-4f38-9640-478ed7f8d05e/1/i9S8vzXbf-LvZjUipaOjl5pPH_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.208.0/22
IPv6:
2a0e:a180::/29
Signature Algorithm: sha256WithRSAEncryption
a7:13:26:ec:33:94:55:1a:d1:b7:69:0e:d6:fc:da:61:21:53:
4d:0f:f5:40:23:05:63:1b:e3:68:2c:14:0b:a8:c9:d6:3c:2f:
45:b8:69:55:99:4d:6a:12:33:7d:b5:c6:d0:c0:01:3f:0c:a1:
c2:f2:31:66:07:c5:fc:15:01:b7:fd:db:aa:6c:d3:75:97:39:
e2:3b:7c:b8:d6:7e:1b:a2:38:95:50:41:53:d2:ec:ed:3d:8b:
7c:45:31:0d:55:12:22:2a:f2:7d:0a:08:8f:73:e6:43:0c:5e:
34:70:5c:6d:6c:bd:05:ba:a2:52:a7:4e:0a:11:e9:a0:29:1b:
29:07:57:56:f7:1b:f9:87:72:74:e9:12:96:f8:23:33:af:df:
25:6c:50:e8:3f:5b:de:af:bc:db:3e:7d:b5:01:36:1e:f4:7c:
7c:c4:c4:9d:36:83:9e:4a:27:7a:bf:91:19:4b:7e:55:91:e5:
62:b2:88:ff:16:f3:13:e6:fd:bf:e3:fd:67:a9:16:18:9e:b0:
9b:b8:d1:94:e3:3b:18:ec:d8:36:d5:10:0d:f2:66:17:2c:97:
df:8f:a6:4e:74:62:c2:07:7a:ab:70:5f:77:21:37:ab:92:30:
52:f1:82:13:e0:f1:c6:68:ef:33:69:75:c2:55:36:20:91:cc:
c9:0a:b8:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:51 2024 by rpki-client on console-ams.rpki-client.org