Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cwHgESpNtTJp_kRogNio71W5ETg.roa
File: cwHgESpNtTJp_kRogNio71W5ETg.roa (raw, json)
Hash identifier: xHKApYRBAA1dcR5UGcS3VOPe999/S1LjkSLH3XdAIO0=
Subject key identifier: 73:01:E0:11:2A:4D:B5:32:69:FE:44:68:80:D8:A8:EF:55:B9:11:38
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AB2A64D1FAAFCDA6DA71B6AEB917B7CF6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cwHgESpNtTJp_kRogNio71W5ETg.roa
Signing time: Wed 20 Sep 2023 12:52:37 +0000
ROA not before: Wed 20 Sep 2023 12:52:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400866
IP address blocks: 45.8.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b2:a6:4d:1f:aa:fc:da:6d:a7:1b:6a:eb:91:7b:7c:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 20 12:52:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7301e0112a4db53269fe446880d8a8ef55b91138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:76:52:4f:e5:85:a4:36:1e:a2:31:5e:88:ec:
32:49:c5:6d:f2:c1:c1:c0:87:4f:2d:38:76:d6:c4:
62:70:f1:c1:ce:40:5b:ab:d3:da:fc:1f:cc:82:a3:
81:6b:72:cb:03:d7:f2:10:b2:fa:ba:ac:eb:1d:3c:
31:c1:4e:45:af:8f:bf:03:66:80:b4:28:4f:97:b8:
c7:01:07:db:cd:cf:9c:8b:e5:bd:06:92:ab:58:ec:
6f:54:7d:f0:46:6c:fc:6f:d5:fb:be:a4:b2:e3:65:
e8:5f:ab:bc:da:7e:4d:68:16:3a:24:b5:6b:2d:25:
13:a4:8f:34:22:c6:3b:4f:58:a5:ce:ae:53:3f:a2:
db:e6:4a:e8:53:83:1a:9d:b1:21:21:69:e1:0c:39:
b5:b9:a6:8c:fa:b4:73:17:20:3e:ac:0d:b9:85:be:
58:cf:d7:ad:cb:33:9e:f0:39:de:bb:ad:45:91:a4:
3d:26:88:cc:64:e6:91:dc:cf:f6:ec:4f:34:a5:d5:
e1:4f:fc:fe:76:ad:37:b2:11:70:90:be:33:ec:ac:
29:cd:95:b5:1b:98:42:b4:21:67:80:a9:2d:f6:85:
8a:24:bf:d4:40:00:ae:1f:c5:e5:15:b6:19:6c:38:
2c:17:3a:ee:91:f8:bc:de:f6:2d:a8:1a:a1:99:c1:
4b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:01:E0:11:2A:4D:B5:32:69:FE:44:68:80:D8:A8:EF:55:B9:11:38
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cwHgESpNtTJp_kRogNio71W5ETg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.23.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3c:43:92:05:54:af:fb:ac:05:5b:44:51:b6:06:6d:9e:d6:
25:76:dd:06:ff:e3:c2:a0:33:db:22:c3:ce:db:9a:a8:d1:58:
40:7d:ee:ee:bc:33:81:c4:94:7c:76:6d:46:43:f9:52:8f:24:
27:ed:96:94:c1:55:ed:fb:af:c3:22:84:15:3c:6d:83:8c:ef:
88:c6:cf:09:a6:cd:6b:da:7a:4a:ad:e6:ca:4a:aa:fc:94:92:
6f:52:14:cc:15:ec:e2:37:dc:9d:1e:37:93:f1:bb:ac:01:5a:
ee:3c:c5:0e:e3:32:95:75:f3:29:41:a7:c9:c1:db:c9:04:3c:
4c:27:63:63:29:0c:b8:15:21:d0:d0:65:8f:be:13:fb:bd:46:
4d:7d:88:20:10:96:4c:61:12:e3:b6:67:02:3c:f1:5a:84:71:
97:3d:3e:86:f4:9a:7c:2e:43:52:61:f2:14:59:90:d7:bf:0a:
64:cb:48:e0:2e:c9:70:94:dd:5d:c4:ef:18:83:6d:45:94:f0:
f5:8b:59:c1:1c:36:b0:79:09:ca:c5:dc:8e:d6:cb:c6:a2:67:
19:84:ac:d7:20:2f:2d:12:36:bd:67:40:ee:03:c6:d4:46:69:
70:f0:94:28:8b:09:79:d7:bd:3a:48:c2:6c:a2:97:66:fa:33:
3c:e1:5a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org