Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/16460f-e498-4f7b-9b90-7a5043c918f9/1/G_Z0UXll3jhaJYQkg1xgj6RtI84.roa
File: G_Z0UXll3jhaJYQkg1xgj6RtI84.roa (raw, json)
Hash identifier: whhjqi2mufFgDj1GEJvqPIP1OOHcJnaR10+ojwTlV3c=
Subject key identifier: 1B:F6:74:51:79:65:DE:38:5A:25:84:24:83:5C:60:8F:A4:6D:23:CE
Certificate issuer: /CN=49f39d6c8b23fcdc20e53174e92fb3f56caa8b61
Certificate serial: 01865586A57E4CA06F223DB3AB3FF77BCBED
Authority key identifier: 49:F3:9D:6C:8B:23:FC:DC:20:E5:31:74:E9:2F:B3:F5:6C:AA:8B:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfOdbIsj_Nwg5TF06S-z9Wyqi2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/16460f-e498-4f7b-9b90-7a5043c918f9/1/G_Z0UXll3jhaJYQkg1xgj6RtI84.roa
Signing time: Wed 15 Feb 2023 14:42:12 +0000
ROA not before: Wed 15 Feb 2023 14:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34177
IP address blocks: 45.85.55.0/24 maxlen: 24
2a0e:b886::/31 maxlen: 31
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:86:a5:7e:4c:a0:6f:22:3d:b3:ab:3f:f7:7b:cb:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f39d6c8b23fcdc20e53174e92fb3f56caa8b61
Validity
Not Before: Feb 15 14:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bf674517965de385a258424835c608fa46d23ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e2:50:2c:a5:78:f2:ec:82:a9:39:f9:3f:9b:
ba:98:21:d3:63:fc:a1:99:b2:2b:38:b3:8a:34:a6:
20:05:29:61:ae:04:e6:92:31:42:83:1e:92:38:3d:
34:be:f3:95:c1:95:ff:87:c8:4b:fd:b9:e7:90:f0:
b6:20:80:17:82:65:a1:83:96:3d:e9:fb:a8:2c:73:
25:9c:f6:57:80:89:a8:2c:5c:8e:9e:42:4e:7c:82:
52:b9:d1:f9:a9:b4:e3:3b:44:d2:c7:2e:47:d0:e2:
b7:3f:bf:1e:19:9b:95:a1:6b:2e:ac:a4:41:13:c5:
fa:2d:a3:8e:75:0f:a8:18:f3:95:ed:c6:b1:50:8c:
00:b4:74:90:b7:81:82:86:c0:36:86:ed:1e:2b:29:
f4:ad:23:48:18:e8:d4:78:31:b9:8d:23:9d:ae:8f:
92:05:b7:88:5f:f4:e4:49:f9:b0:5c:3c:b8:c4:54:
17:76:cf:4b:0e:d3:f2:23:77:c3:b3:60:01:9c:86:
7a:f2:d8:ec:38:95:48:5e:a9:ae:9e:15:28:51:79:
0a:c9:bd:34:28:d0:1a:02:d2:0b:f3:f2:1d:ef:1f:
20:ff:da:e8:b8:06:78:b3:29:0a:03:29:7d:27:69:
c9:1d:5b:08:0a:f3:ed:b7:49:fb:7e:66:27:73:57:
66:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F6:74:51:79:65:DE:38:5A:25:84:24:83:5C:60:8F:A4:6D:23:CE
X509v3 Authority Key Identifier:
keyid:49:F3:9D:6C:8B:23:FC:DC:20:E5:31:74:E9:2F:B3:F5:6C:AA:8B:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfOdbIsj_Nwg5TF06S-z9Wyqi2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/16460f-e498-4f7b-9b90-7a5043c918f9/1/G_Z0UXll3jhaJYQkg1xgj6RtI84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/16460f-e498-4f7b-9b90-7a5043c918f9/1/SfOdbIsj_Nwg5TF06S-z9Wyqi2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.55.0/24
IPv6:
2a0e:b886::/31
Signature Algorithm: sha256WithRSAEncryption
a5:da:8a:e7:7b:5e:2f:c3:58:68:63:15:19:0d:34:82:08:29:
96:ca:06:a9:e2:49:bc:e2:22:17:35:c9:54:5f:6e:88:38:0e:
ff:7f:0b:c5:d7:aa:e0:f6:2d:4f:b5:11:37:9e:04:b7:63:33:
5a:31:eb:ad:32:93:c1:7a:16:ad:eb:63:00:67:93:de:1c:f7:
b0:f4:a0:3e:6c:e2:da:2c:d8:0e:61:46:61:dc:58:56:5f:79:
46:4b:5c:50:0e:b3:25:74:41:b1:48:c9:5e:2c:28:58:f9:d2:
58:18:9e:10:41:9e:f3:3b:0d:83:1a:b8:50:56:0e:4c:e0:60:
2c:0c:44:8e:70:fc:0d:0f:19:f2:d6:21:37:e6:87:dd:a7:3d:
40:84:71:2d:8b:13:4a:89:54:2f:50:6a:73:c8:81:05:ca:ae:
db:b6:6b:23:16:57:db:fd:f9:39:e4:29:ca:d2:b1:fc:87:b4:
00:09:d1:31:83:b4:67:dc:9f:d1:d7:6e:41:e6:d7:5f:db:2d:
7b:a7:80:a5:9f:31:85:b6:60:ab:98:37:03:22:2a:12:c2:f4:
f0:7d:75:9c:91:d5:9f:97:ca:53:d8:be:ce:6b:66:47:b4:42:
4a:6f:e9:24:e5:7e:96:3a:aa:61:ac:0f:69:ce:0c:2c:2f:82:
eb:a2:e3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org