Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6fa7Nbmd5mQm1P_NA60qoIaI2Hk.roa
File: 6fa7Nbmd5mQm1P_NA60qoIaI2Hk.roa (raw, json)
Hash identifier: sw9AtXHynFrG07C5ievT8o6qckvNiigIuFTKGore+XU=
Subject key identifier: E9:F6:BB:35:B9:9D:E6:64:26:D4:FF:CD:03:AD:2A:A0:86:88:D8:79
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A4BA95B43EA93C69297DB860D7F39D83A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6fa7Nbmd5mQm1P_NA60qoIaI2Hk.roa
Signing time: Thu 31 Aug 2023 12:55:04 +0000
ROA not before: Thu 31 Aug 2023 12:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13627
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:a9:5b:43:ea:93:c6:92:97:db:86:0d:7f:39:d8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 31 12:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9f6bb35b99de66426d4ffcd03ad2aa08688d879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:5f:09:78:b1:d1:10:30:54:db:25:2f:48:
7f:07:30:66:c0:8c:17:6d:16:c1:69:f4:4a:a1:13:
f7:7b:29:5c:84:ed:43:54:95:7e:ff:bf:9b:7c:26:
03:63:92:92:26:a0:6a:48:6a:8d:c1:ed:6a:83:ba:
80:bd:4a:a4:ae:67:11:79:0f:d8:46:7d:8f:fb:19:
97:10:9a:ef:28:a1:db:5d:7f:d6:11:d5:2a:a6:cc:
43:9d:a7:fd:bd:be:b0:9e:e9:77:f7:eb:2e:bf:45:
c8:de:52:5f:19:80:ff:1f:b7:f5:d0:a5:8a:42:93:
59:46:9c:01:59:72:fa:3d:bd:85:15:96:d8:a9:f8:
9c:fc:93:3e:88:86:28:ff:9b:8e:86:b3:38:04:61:
cb:09:8d:6a:7e:02:8d:dd:bf:73:18:8b:54:ab:0c:
17:aa:dc:d6:fb:3e:b7:1f:6f:9e:a8:17:55:47:30:
0f:cf:ea:1d:00:b0:a3:fa:f2:dc:d4:3d:16:5a:1f:
84:fe:af:59:6a:3a:d4:de:60:c2:17:91:cc:11:90:
dd:29:b4:31:38:83:15:c2:91:2a:25:20:5d:b2:64:
68:b2:d8:c9:ad:d5:97:4c:54:09:a2:66:d1:86:e1:
17:c3:40:db:53:bc:9d:3a:65:5c:f6:50:18:14:b3:
49:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F6:BB:35:B9:9D:E6:64:26:D4:FF:CD:03:AD:2A:A0:86:88:D8:79
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6fa7Nbmd5mQm1P_NA60qoIaI2Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:0a:b2:0e:1f:f5:69:e2:4b:54:cc:6f:99:ae:2c:33:d9:ff:
55:6b:b3:f9:2e:26:2b:7c:a2:91:cf:3d:e7:b7:18:cd:ca:6f:
ee:6b:b5:25:29:6e:5c:fb:39:ac:14:cd:c6:e1:f0:11:37:5e:
cc:72:87:76:82:cf:a0:50:50:ff:2e:f2:68:0d:04:9e:32:55:
1c:17:d7:f9:11:18:57:58:be:8e:74:d9:76:d0:23:34:ef:0d:
cf:89:a2:b5:e5:11:46:50:ce:56:29:b9:76:0e:3d:16:63:8b:
d7:55:55:16:25:c8:e2:8b:e9:39:cb:76:d9:31:8b:86:0c:ff:
12:5b:dd:30:6f:1c:54:90:f0:f8:fa:83:da:e9:f8:87:14:e6:
fe:c0:30:b4:09:be:f5:b2:da:5d:ee:47:81:a9:f8:05:83:43:
ef:82:9a:e2:e8:08:2f:07:31:e1:08:ad:2f:6c:39:c1:f0:76:
86:69:c5:da:bb:09:20:aa:71:9d:7a:94:aa:6e:b9:30:d6:f7:
19:5d:73:71:3f:d4:95:01:db:7f:04:cc:a0:b1:bb:0c:84:ce:
84:ea:f9:f3:b8:2b:34:5b:e0:3f:c9:89:8d:e7:88:97:65:00:
6a:c3:3e:72:ff:7a:b7:07:89:83:8e:db:93:9e:b3:4c:79:c7:
23:16:1c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org