Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZnLNfKV0tdJNSmEHKWMXvuPlu1E.roa
File: ZnLNfKV0tdJNSmEHKWMXvuPlu1E.roa (raw, json)
Hash identifier: VoWKWz51mgwnD7tIKW82zgSaDbi0OVeujGp8+c4IZL0=
Subject key identifier: 66:72:CD:7C:A5:74:B5:D2:4D:4A:61:07:29:63:17:BE:E3:E5:BB:51
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BA55DE50B5E50965A5AF1CDE3AB0DCD16
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZnLNfKV0tdJNSmEHKWMXvuPlu1E.roa
Signing time: Mon 06 Nov 2023 16:01:16 +0000
ROA not before: Mon 06 Nov 2023 16:01:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:5d:e5:0b:5e:50:96:5a:5a:f1:cd:e3:ab:0d:cd:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 6 16:01:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6672cd7ca574b5d24d4a6107296317bee3e5bb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d9:0e:1c:84:b7:fa:51:26:18:06:fd:a1:40:
ea:08:a3:1b:52:3a:3c:e0:73:f7:07:06:7c:dd:4e:
d6:4c:b7:c5:0c:35:63:cd:71:92:3e:53:22:33:51:
ec:f8:fa:46:4f:67:20:9b:88:0a:46:94:0a:37:e5:
57:9d:f9:83:d6:70:55:89:19:d7:22:e2:2c:59:64:
49:97:ca:54:90:dc:cb:a3:bb:8f:fe:2f:1d:30:3e:
32:d4:3d:be:1c:6c:bd:43:c5:81:ba:fc:8e:7d:7f:
a1:c3:92:65:fa:e9:4b:9c:cd:a5:12:b2:1e:94:c9:
18:38:b6:25:4d:3f:66:20:49:3f:e6:85:ad:76:48:
b3:6d:ce:8f:6e:43:67:83:2c:5e:68:f5:69:75:bc:
45:31:fb:1f:68:43:f9:6b:44:2d:58:3d:f5:16:51:
9d:48:ba:30:33:1b:95:d8:ac:9b:3d:fb:ae:46:91:
83:e3:72:d3:b8:80:7b:f1:80:29:5a:1f:f0:c8:52:
b5:83:37:f6:88:ac:52:2b:0c:67:d4:17:8b:fb:63:
4c:5d:bd:8a:fa:48:f9:c9:9e:cc:31:a0:5f:e4:b5:
d4:14:77:93:58:90:69:db:88:c5:12:43:9d:91:58:
08:52:5a:86:3f:27:db:8a:f2:71:8a:87:f1:4d:09:
cd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:72:CD:7C:A5:74:B5:D2:4D:4A:61:07:29:63:17:BE:E3:E5:BB:51
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZnLNfKV0tdJNSmEHKWMXvuPlu1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2d:9d:49:98:fb:53:a6:50:2d:18:81:5b:a4:e6:c4:81:43:
80:17:5a:d9:56:6e:ba:a3:1c:7e:4a:27:a2:b6:8f:61:f9:5d:
98:97:48:57:0c:64:5c:5f:86:9b:07:d3:70:e2:e1:d9:c3:69:
1f:c8:09:a5:1f:d1:c6:b7:51:c8:39:40:4e:4b:d3:9b:d2:0d:
31:35:fb:c3:65:a1:40:eb:41:bb:ba:03:b5:cb:35:c1:06:24:
04:3e:c5:c8:f2:ff:e9:f5:89:99:15:21:45:69:fe:97:39:f7:
ac:e6:1a:e0:7b:c4:67:02:d6:4b:dc:4d:0a:18:d0:8d:03:b7:
24:04:68:8f:2e:a8:ce:0c:e4:14:9b:ac:b7:20:c5:ea:8a:03:
0f:1e:6e:5a:55:28:a5:8e:1c:9a:1f:0d:c0:f5:fa:85:33:05:
de:34:b0:8e:5c:30:a1:5a:f0:c1:15:51:40:78:df:9d:d6:51:
81:67:b0:cb:31:e2:10:9b:04:df:74:23:20:e3:7b:75:70:94:
1d:84:45:84:00:34:d3:ef:50:8d:67:ae:ea:80:c0:b0:ea:80:
83:d4:35:cc:90:c8:1c:1f:2d:1b:32:c4:76:40:53:60:4b:41:
1a:52:d9:50:60:7e:f1:00:26:ca:40:a0:14:c5:db:0f:c4:c6:
9b:e9:f2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org