Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ldh19Znc2Os9i34Jz_rBrJC9S8k.roa
File: ldh19Znc2Os9i34Jz_rBrJC9S8k.roa (raw, json)
Hash identifier: 0LNPy89ubxJOxm222snrri5LggK/luBHV25hRzaiY/4=
Subject key identifier: 95:D8:75:F5:99:DC:D8:EB:3D:8B:7E:09:CF:FA:C1:AC:90:BD:4B:C9
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 0185A6C6CCF9D2AFE45DBD7E55F6F5562A42
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ldh19Znc2Os9i34Jz_rBrJC9S8k.roa
Signing time: Thu 12 Jan 2023 16:18:44 +0000
ROA not before: Thu 12 Jan 2023 16:18:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 45.137.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 22 Nov 2023 15:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:c6:cc:f9:d2:af:e4:5d:bd:7e:55:f6:f5:56:2a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Jan 12 16:18:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95d875f599dcd8eb3d8b7e09cffac1ac90bd4bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b4:46:64:33:03:08:28:38:d0:55:38:d3:5a:
3f:98:07:32:66:c5:e2:0c:58:1e:40:8a:ed:8b:39:
5b:44:b1:ac:df:a0:2f:0a:93:04:79:de:c1:ac:ba:
b8:cf:5b:dc:2b:46:02:77:6c:cc:60:c2:e6:14:87:
18:4a:25:32:26:91:59:4d:93:99:c3:3e:9b:f4:55:
3a:f4:c1:58:e9:49:f8:43:d5:81:3b:37:c0:9c:cc:
02:fd:28:6e:5c:5b:ef:12:a8:14:52:36:23:bc:ec:
8b:f0:2b:c3:58:fa:9c:09:1c:9e:24:3c:02:05:ef:
3f:8d:6d:41:8a:55:21:bc:f6:76:b7:ec:81:6e:00:
76:25:e3:c3:e9:45:68:5e:a4:7d:a0:60:6e:08:1f:
ad:e5:98:03:f2:ef:c1:04:84:5a:23:30:02:24:0d:
7a:d9:f1:81:d5:44:a9:47:b1:c5:88:6e:27:ac:62:
5e:12:ea:e1:51:cf:61:2a:63:1b:69:44:cf:bb:b1:
7e:0b:1c:b9:af:6a:6f:0d:b5:31:1c:39:63:94:16:
ff:92:2d:2d:f7:99:29:3d:51:72:b9:76:1a:f6:2a:
76:38:91:a3:23:c8:5b:29:48:86:d9:ec:6c:06:29:
d7:42:9b:26:da:01:2f:5f:b5:75:2b:67:b4:9a:8d:
76:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D8:75:F5:99:DC:D8:EB:3D:8B:7E:09:CF:FA:C1:AC:90:BD:4B:C9
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ldh19Znc2Os9i34Jz_rBrJC9S8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.128.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:34:c1:eb:e5:49:36:de:0a:23:9b:fd:29:55:06:a1:ba:aa:
ea:ef:e4:78:f9:4a:5e:b7:53:c0:af:b2:70:a7:84:f5:3d:41:
db:94:74:7c:1f:09:10:f4:dd:a5:48:40:5b:88:ad:33:bf:72:
54:5c:0e:aa:ab:c4:63:75:0d:d7:e8:1a:f8:3a:db:ef:90:c8:
10:2d:68:d4:25:ad:a1:b2:fc:f3:e3:1f:5c:8a:ed:c5:64:63:
d3:f1:4f:9f:1c:e3:14:82:78:db:ec:fc:7f:05:1f:78:6f:83:
bd:e5:f1:15:69:f0:1a:c8:7e:fa:a7:a5:99:fb:0c:7c:57:78:
8d:aa:8f:a4:5f:9d:4e:69:23:da:c3:34:38:70:06:e6:0b:4b:
f5:94:ac:83:69:27:16:aa:ab:7b:2f:00:67:ac:6c:bb:58:35:
55:1e:d8:98:77:c7:03:f7:1a:35:35:d3:4f:7d:b6:d7:35:89:
77:38:25:4b:e4:b6:fe:c8:29:8c:33:9e:01:44:ff:db:74:00:
3c:17:67:0f:0f:bd:cf:99:54:01:be:fa:15:da:d0:31:4b:f3:
4f:f8:fc:6c:d7:75:7f:74:27:3c:fe:59:77:a4:7c:89:1d:21:
16:2d:87:3c:ec:b2:c8:a6:44:ac:f8:71:39:0d:63:11:7a:6e:
4e:32:dc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org