Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/E8Kd_zUeG0Ci4pxlT8Xb9a4h6-0.roa
File: E8Kd_zUeG0Ci4pxlT8Xb9a4h6-0.roa (raw, json)
Hash identifier: +94XJRsRmxvvPvBa9WitJGcfEFZ3rjQDQlThnbWCXJ4=
Subject key identifier: 13:C2:9D:FF:35:1E:1B:40:A2:E2:9C:65:4F:C5:DB:F5:AE:21:EB:ED
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A4CB9453742B42DE04EE2E8B7F8BD12C2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/E8Kd_zUeG0Ci4pxlT8Xb9a4h6-0.roa
Signing time: Thu 31 Aug 2023 17:52:04 +0000
ROA not before: Thu 31 Aug 2023 17:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211266
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4c:b9:45:37:42:b4:2d:e0:4e:e2:e8:b7:f8:bd:12:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 31 17:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13c29dff351e1b40a2e29c654fc5dbf5ae21ebed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d9:a0:a0:86:45:17:bd:5c:bf:2e:06:83:b9:
f4:6f:3d:e2:d0:e7:71:28:22:3e:92:55:06:4a:73:
51:1c:33:f8:1a:f0:fa:a4:c7:51:df:eb:7d:cb:5c:
0c:64:d3:02:23:ab:15:4e:aa:ec:16:dd:0b:5b:3d:
9d:ad:81:d1:9b:3b:5e:66:84:2c:0d:fa:d2:7b:ec:
36:e5:53:08:1c:e5:60:66:98:80:86:9a:5e:16:b1:
67:26:94:8e:f0:a7:95:50:18:dd:c1:39:a0:cf:90:
5f:c9:37:fd:07:33:f7:65:85:a8:13:f2:7d:0b:bc:
12:20:eb:b2:1a:cb:f0:13:6f:5a:63:5d:95:6d:48:
5d:4a:e7:28:1e:28:40:88:84:89:33:23:00:59:d3:
33:1c:a9:4f:87:0d:ea:73:c2:66:2b:8d:47:7d:c6:
c1:1d:e2:0f:89:1c:9d:f7:c4:12:80:86:5f:24:6c:
9e:af:e5:a0:78:8f:bd:23:e2:4d:06:c8:a7:bd:50:
5f:80:ee:82:13:21:23:20:6d:cf:f7:3c:fc:c5:3d:
3e:4f:6c:83:35:c2:87:bc:61:47:46:d7:fb:70:b1:
1d:92:09:3e:35:13:20:d3:fa:13:85:a1:74:d6:77:
50:a5:0b:95:1c:b1:d5:16:22:20:5e:59:a4:6d:a7:
88:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C2:9D:FF:35:1E:1B:40:A2:E2:9C:65:4F:C5:DB:F5:AE:21:EB:ED
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/E8Kd_zUeG0Ci4pxlT8Xb9a4h6-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
75:8e:08:fe:ad:de:0b:6f:34:46:1b:a0:cc:a0:46:7f:2d:10:
11:74:10:75:f3:d3:24:3b:a0:13:08:3e:b5:ff:7c:e0:04:1a:
66:06:18:d3:9a:86:42:81:65:48:7c:c0:84:c4:1f:2f:15:67:
9f:c3:fd:f3:75:8d:6c:3c:cc:5a:5c:60:d2:22:dd:50:76:40:
c0:38:10:bf:04:7d:5b:ed:ff:c1:a5:7c:3d:57:3c:42:6b:12:
f5:96:25:1a:76:b9:02:18:c7:9b:1e:14:f0:ed:a0:33:01:6f:
9c:29:19:bd:7b:38:97:4a:38:12:d9:fb:e9:a4:b6:3b:50:fc:
54:92:7f:08:2b:91:07:50:80:62:f0:6b:a8:40:f7:05:46:5d:
13:02:e9:96:e2:cb:a5:57:bf:78:c8:1e:aa:a3:0d:ba:37:31:
e2:e4:d8:82:6c:91:94:de:36:4c:cb:4c:87:44:1a:ca:80:1c:
98:ab:43:29:6b:7e:9e:11:36:39:d5:2d:cc:1b:49:c7:3e:e6:
a2:08:42:1e:c6:cb:0e:c3:48:19:57:33:90:ea:d3:2c:97:fb:
a1:e7:56:4e:ce:51:63:6a:66:9e:07:4a:c3:c4:f1:1e:8e:23:
26:1c:2d:b2:f4:9c:c8:dc:53:8d:e3:62:4d:1e:a5:31:b5:76:
6a:8f:c4:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org