Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-hkiL55Ml0CChWItH-umMEsHJJY.roa
File: 1-hkiL55Ml0CChWItH-umMEsHJJY.roa (raw, json)
Hash identifier: 44psC8CUKStFs8fybk2q1YM+0XjRA7mIvVKyj7uJ9n4=
Subject key identifier: FA:19:22:2F:9E:4C:97:40:82:85:62:2D:1F:EB:A6:30:4B:07:24:96
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C1AA6B435448B348B975C579084DC3261
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-hkiL55Ml0CChWItH-umMEsHJJY.roa
Signing time: Wed 29 Nov 2023 10:36:21 +0000
ROA not before: Wed 29 Nov 2023 10:36:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 45.8.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:a6:b4:35:44:8b:34:8b:97:5c:57:90:84:dc:32:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 29 10:36:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa19222f9e4c97408285622d1feba6304b072496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c2:7d:ea:52:91:f3:39:37:40:c0:b8:fe:12:
a9:a0:c2:37:71:db:32:65:72:90:d2:28:2f:07:92:
a8:cf:1b:72:a5:ab:4c:9b:a1:d3:70:b3:c1:48:90:
a1:59:3c:10:4b:a3:ef:88:00:83:32:28:06:c2:bb:
26:ca:30:8d:33:57:60:31:60:6d:91:2e:ea:f9:84:
ea:c9:a6:83:76:b1:e5:e9:ce:cb:5e:28:cf:aa:79:
7e:ff:14:6d:e8:4f:aa:1b:75:4a:a0:14:2f:1e:42:
fb:6f:8c:13:27:b9:1b:6c:ac:c4:92:2e:42:33:5a:
62:96:22:26:1d:70:fc:c2:aa:73:da:98:04:8d:62:
4f:9b:49:96:3c:ed:10:8a:eb:31:aa:28:40:2e:62:
8e:06:fd:2c:ef:5e:85:cc:fe:58:01:92:fd:13:f5:
18:38:94:d1:7b:06:96:52:ca:9b:b3:3b:dc:65:69:
74:ad:67:d9:f3:7e:85:1e:12:01:d6:79:80:c8:52:
02:89:ea:f3:88:59:4a:a6:4f:83:60:76:83:e3:e2:
31:3d:cc:da:1c:d4:32:64:96:da:25:22:5f:59:df:
03:95:fb:9c:2d:57:90:67:dd:9a:42:5e:ef:23:04:
6e:df:97:ab:4c:a2:16:a2:da:04:aa:1f:8e:2c:ee:
d2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:19:22:2F:9E:4C:97:40:82:85:62:2D:1F:EB:A6:30:4B:07:24:96
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-hkiL55Ml0CChWItH-umMEsHJJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.23.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d7:75:25:39:80:e2:b6:c4:46:58:c4:3a:46:c4:ac:44:1b:
27:66:bc:b1:49:8a:d6:24:d6:ed:4b:c4:ab:13:7d:5a:a8:05:
d3:84:f8:a3:61:3d:6f:fb:ab:18:09:f9:dc:2c:e2:29:36:0a:
f8:03:e3:db:46:fa:c7:35:26:53:80:b0:72:0e:80:82:65:68:
c5:8d:fe:4e:f5:98:b0:4a:fa:73:da:8d:31:b5:61:08:12:f1:
6b:81:0b:e3:2f:c6:e1:ae:a5:ce:87:7b:f4:6c:c6:88:86:34:
45:d8:e1:ca:be:f2:21:8f:4b:46:18:43:4b:e3:ad:13:70:2f:
ed:31:f7:4f:1e:24:1f:a5:b7:0b:38:60:aa:2f:33:17:53:58:
67:df:8b:4a:f8:84:53:94:4b:6a:0e:3c:2f:e9:00:44:86:73:
9c:dc:79:ca:49:8c:e1:4d:bf:ca:79:99:fb:6d:44:2c:3d:f2:
d8:fe:d3:14:2e:cf:5a:66:a1:2e:3a:20:af:0d:3a:c5:f1:22:
88:d5:9f:aa:89:94:fd:bd:c2:ef:e6:27:23:92:0b:e1:aa:88:
1d:d9:d6:74:17:7b:ea:c9:85:c7:ed:0c:94:4a:51:f4:6b:fe:
0a:68:7c:5c:a9:27:d5:97:ec:7e:05:70:79:2f:00:d1:de:36:
3d:49:4e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org