Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hCRryFrPhyH43juBc53YhdyiTP0.roa
File: hCRryFrPhyH43juBc53YhdyiTP0.roa (raw, json)
Hash identifier: IkudgDN8DLWjeMria6L4+w11Wr8h435LrRCaFgt9q74=
Subject key identifier: 84:24:6B:C8:5A:CF:87:21:F8:DE:3B:81:73:9D:D8:85:DC:A2:4C:FD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01864F2948C9D4C1198CBA4520A6713FF183
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hCRryFrPhyH43juBc53YhdyiTP0.roa
Signing time: Tue 14 Feb 2023 09:02:30 +0000
ROA not before: Tue 14 Feb 2023 09:02:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 45.90.18.0/24 maxlen: 24
194.147.17.0/24 maxlen: 24
185.246.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 14:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:29:48:c9:d4:c1:19:8c:ba:45:20:a6:71:3f:f1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 14 09:02:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84246bc85acf8721f8de3b81739dd885dca24cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5f:0d:86:2c:2d:fe:5f:f1:76:3c:0d:f8:1d:
32:4b:96:7d:69:5a:02:a3:55:cd:f7:7c:25:14:cd:
d2:cc:de:0b:d4:eb:6e:27:ef:c9:67:a2:b0:ec:be:
1e:89:82:53:17:7a:6a:ef:72:d9:11:99:44:37:15:
55:da:8a:2c:35:52:b3:a1:08:4c:a7:48:75:f4:71:
17:db:94:9c:36:f0:9d:6b:eb:96:0d:25:a8:78:78:
a5:da:8e:b3:6a:53:20:2f:5b:be:c7:a5:1d:d1:a1:
5c:9b:b7:67:ef:f4:d2:e7:3f:62:9f:bc:04:27:68:
fb:60:60:93:be:78:aa:d6:d5:e0:6c:ad:51:dd:c5:
72:1c:dc:70:ff:f0:3c:f3:ef:39:e0:b8:56:d8:69:
a5:51:0b:9c:32:9a:4a:4b:e6:7f:7d:4d:31:f5:4f:
ef:be:7b:4f:5f:e7:ec:26:5c:5c:4e:2c:00:2e:14:
8d:ec:34:56:14:f0:b5:2d:71:b5:bc:a9:f2:cc:97:
53:53:72:a7:ac:af:97:a4:61:93:95:c3:37:4b:cf:
a5:a7:3a:ea:86:dc:ce:73:e9:17:39:36:18:61:29:
06:93:fa:43:32:1f:7f:19:13:ab:cb:06:a3:ef:76:
8e:71:ff:b4:d6:1e:ff:e1:0c:56:41:d3:7e:f3:27:
15:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:24:6B:C8:5A:CF:87:21:F8:DE:3B:81:73:9D:D8:85:DC:A2:4C:FD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hCRryFrPhyH43juBc53YhdyiTP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.18.0/24
185.246.113.0/24
194.147.17.0/24
Signature Algorithm: sha256WithRSAEncryption
83:3c:12:cb:98:e8:b1:bc:08:fd:1d:69:23:08:fa:74:07:05:
ea:94:9f:4f:3c:73:59:d5:e0:2c:af:de:e4:57:a8:12:1b:47:
71:28:27:81:9e:4e:7b:1c:cf:be:45:d3:22:4f:8c:ed:63:b9:
a1:7a:a5:28:e8:9c:c3:f4:58:cd:95:24:39:44:fe:1b:43:4a:
32:61:d4:17:c2:c9:03:f0:7d:40:b0:1e:36:09:82:a9:27:89:
84:62:b5:7c:b8:86:d7:a2:da:e8:cb:95:d6:9d:9b:50:a3:45:
f8:6a:d4:41:97:7b:28:6d:58:29:97:8d:e3:0a:b4:b3:2c:ab:
68:cf:83:54:be:e9:08:20:be:c9:f3:24:1f:c1:79:a6:9c:b4:
2c:f6:32:59:e5:ec:c8:cb:15:21:ea:ce:aa:8a:72:0b:cd:4f:
92:e6:bc:e9:67:6c:16:e0:f3:96:e2:48:63:0f:50:74:56:9a:
20:4a:23:ec:a9:10:6c:48:18:f3:6f:81:02:28:c7:28:fc:fc:
2b:12:8d:0e:cb:a0:58:e3:0f:26:e9:60:3c:7d:f7:0c:cb:c8:
b9:f9:16:2c:d2:1d:e9:02:fb:d5:70:be:bf:85:4f:7e:0f:0d:
a8:41:96:d7:62:fe:2d:d3:1f:0e:5e:0d:4f:8f:2c:08:f9:0f:
55:4f:a7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org