Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c5f2a4-adca-4fc4-87b2-bf4b75e200a7/1/tItEEzmCfs7_0m-sdJldvfNc_WA.roa
File: tItEEzmCfs7_0m-sdJldvfNc_WA.roa (raw, json)
Hash identifier: mfH+pTmuAkhXWjjKSLHQ4zZH2oMMDltPw09m7OhDPfA=
Subject key identifier: B4:8B:44:13:39:82:7E:CE:FF:D2:6F:AC:74:99:5D:BD:F3:5C:FD:60
Certificate issuer: /CN=1609c24dae3eeffcbefa37a688664ac93300ef58
Certificate serial: 018F19688DC3D4C83CAB0902580F96C35F1D
Authority key identifier: 16:09:C2:4D:AE:3E:EF:FC:BE:FA:37:A6:88:66:4A:C9:33:00:EF:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgnCTa4-7_y--jemiGZKyTMA71g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c5f2a4-adca-4fc4-87b2-bf4b75e200a7/1/tItEEzmCfs7_0m-sdJldvfNc_WA.roa
Signing time: Fri 26 Apr 2024 07:57:13 +0000
ROA not before: Fri 26 Apr 2024 07:57:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207233
IP address blocks: 45.84.124.0/22 maxlen: 24
185.162.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 08:04:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:68:8d:c3:d4:c8:3c:ab:09:02:58:0f:96:c3:5f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1609c24dae3eeffcbefa37a688664ac93300ef58
Validity
Not Before: Apr 26 07:57:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b48b441339827eceffd26fac74995dbdf35cfd60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b2:83:bd:27:82:52:4e:6f:62:4e:c4:61:3c:
f5:04:8c:45:71:a5:9e:ee:d6:4a:5d:36:ba:f0:ec:
04:b4:a2:ad:84:49:1c:21:c4:09:3a:fe:91:89:54:
ac:27:fc:13:69:90:2a:b6:9d:bd:98:ac:1a:43:5d:
14:32:47:fe:cf:6a:fd:52:8e:b8:f4:c9:97:67:0f:
b0:c5:1f:36:f2:78:7f:aa:fb:26:ce:2d:0c:64:9f:
13:d2:a3:23:e6:4b:90:4c:ff:71:e2:ab:15:86:a4:
9a:c7:1b:77:eb:21:89:ae:89:36:b7:01:5e:bb:92:
b1:df:13:c3:50:30:a7:eb:8f:06:50:7d:b2:ed:0c:
04:69:9a:db:1c:c8:37:88:f3:80:75:7c:88:19:ae:
dd:92:cb:f9:79:74:3c:7a:82:9a:f8:cf:6a:b6:53:
b6:8f:1a:8b:b0:02:1a:ac:08:c2:3f:1b:14:9b:8e:
b6:ad:ac:f8:01:aa:09:62:57:3f:5f:b6:99:72:01:
5b:0f:90:9e:c1:96:f7:e0:18:4b:cb:48:41:8f:6e:
b6:49:4a:fc:c8:07:86:6c:3f:03:81:a1:d9:17:33:
c8:df:9e:23:3e:b9:3b:f1:5d:91:a8:b5:c9:23:7b:
c5:53:3d:71:d4:24:38:33:9a:ae:6e:ac:69:f5:4a:
77:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8B:44:13:39:82:7E:CE:FF:D2:6F:AC:74:99:5D:BD:F3:5C:FD:60
X509v3 Authority Key Identifier:
keyid:16:09:C2:4D:AE:3E:EF:FC:BE:FA:37:A6:88:66:4A:C9:33:00:EF:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgnCTa4-7_y--jemiGZKyTMA71g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c5f2a4-adca-4fc4-87b2-bf4b75e200a7/1/tItEEzmCfs7_0m-sdJldvfNc_WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c5f2a4-adca-4fc4-87b2-bf4b75e200a7/1/FgnCTa4-7_y--jemiGZKyTMA71g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.124.0/22
185.162.60.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:dd:ba:5a:65:51:69:1f:94:9e:a5:48:5c:98:e0:7f:82:88:
5c:74:7b:bf:46:3e:88:08:ef:42:1a:17:04:aa:ae:7d:51:5b:
95:eb:76:9f:a2:55:94:ae:ce:c2:0b:9b:0a:81:1a:f7:4f:c6:
0a:ba:dc:6f:0b:2f:2e:1b:bb:7d:d9:d8:f4:fc:9a:00:2e:17:
5e:1f:86:67:b1:77:44:bc:bc:b1:f5:04:58:0a:2a:ec:f1:ac:
cd:d0:fc:65:98:50:46:2f:89:43:1e:ea:6b:68:58:ce:81:e0:
70:43:77:99:8c:88:bb:6f:9d:62:78:d2:9b:df:4a:73:63:36:
cf:f6:32:3a:a7:f8:90:19:11:d5:a8:1f:bf:9e:2c:8c:b5:0b:
9d:1e:0d:0d:63:31:2e:7f:29:b3:86:30:4e:d2:ed:3e:0d:5e:
99:bf:82:42:ee:2d:42:2e:68:db:82:20:89:88:18:14:f1:89:
31:f0:16:d6:62:4e:e9:30:14:75:0f:92:91:08:89:42:ec:24:
c4:ba:e2:97:ea:26:44:41:06:0f:99:ed:79:85:c0:e9:e7:83:
43:ec:c7:09:0b:6f:71:20:34:2e:5b:93:44:1d:f7:94:66:21:
b0:85:d5:c4:0e:0c:5e:92:04:af:ea:d7:d5:ed:ef:48:6e:ee:
75:4c:c2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 14:43:26 2024 by rpki-client on console.sobornost.net