Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/5yX2N3WltrEtHS6bQlup2D-GFTY.roa
File: 5yX2N3WltrEtHS6bQlup2D-GFTY.roa (raw, json)
Hash identifier: k2Y1JZHdn5eGz28mfJcQa+PYqgINnECHfi9/h87r3as=
Subject key identifier: E7:25:F6:37:75:A5:B6:B1:2D:1D:2E:9B:42:5B:A9:D8:3F:86:15:36
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 018AC3728734DAD9AEF8EADCFE21D6EC526E
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/5yX2N3WltrEtHS6bQlup2D-GFTY.roa
Signing time: Sat 23 Sep 2023 19:09:37 +0000
ROA not before: Sat 23 Sep 2023 19:09:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.140.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c3:72:87:34:da:d9:ae:f8:ea:dc:fe:21:d6:ec:52:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Sep 23 19:09:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e725f63775a5b6b12d1d2e9b425ba9d83f861536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f9:6e:d1:bf:e8:f5:5f:a8:d1:04:fc:4c:82:
6b:10:8b:a1:ba:e3:0d:3c:2d:61:f8:54:aa:49:44:
28:49:dc:b2:07:ce:bc:41:46:c5:80:a7:d6:01:6c:
56:95:76:60:ca:0b:e3:3f:8e:af:3c:46:03:f6:04:
74:f3:16:11:d3:26:79:0d:cc:97:15:5d:44:da:f7:
e4:2e:48:12:d5:7c:1a:aa:e9:d1:12:74:1a:2c:24:
d1:1e:ad:fc:d2:93:01:d0:a6:bb:c6:ee:6e:50:32:
11:61:7a:8a:fd:6e:58:4d:45:22:70:34:01:bf:df:
06:4f:35:dd:87:17:0f:38:59:06:99:04:9b:99:09:
c7:27:6c:37:52:72:79:9d:40:4a:14:a0:7c:89:6c:
50:83:d5:86:fb:85:52:3a:31:01:fa:eb:5d:17:04:
e7:45:0f:6c:6a:ce:50:fc:d4:65:71:b9:75:4a:aa:
2b:a2:97:65:a6:42:0b:e9:81:df:53:d5:cc:2b:be:
64:8f:45:71:5f:b7:cb:97:a1:74:a6:19:18:13:94:
21:09:94:54:4d:65:7d:53:77:a9:77:24:8e:c7:74:
49:70:cb:1a:5c:2f:07:9f:00:f8:f9:f3:14:76:e3:
74:b2:03:a7:d7:09:3b:8f:20:33:0c:08:b1:dc:2e:
bc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:25:F6:37:75:A5:B6:B1:2D:1D:2E:9B:42:5B:A9:D8:3F:86:15:36
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/5yX2N3WltrEtHS6bQlup2D-GFTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.208.0/24
Signature Algorithm: sha256WithRSAEncryption
91:00:e7:12:d6:23:0d:a1:47:10:28:a4:9e:00:1e:13:44:bb:
e5:3c:84:78:d9:54:6c:5e:5a:b3:d6:11:d7:4a:f1:f1:03:cb:
70:0c:6c:9f:a5:7c:16:8c:d9:47:1f:1a:05:0a:20:b9:21:c6:
8f:bb:96:e2:85:58:c9:a6:80:78:b4:fe:4d:32:bf:92:41:a0:
97:0c:0d:92:76:fd:5c:c5:26:a6:90:f3:49:3e:72:5d:2d:f2:
33:3f:88:e6:bb:f0:e8:a4:13:a5:81:72:fa:08:7f:4f:9e:4c:
7c:40:a8:cd:a7:21:18:44:e3:af:ef:82:56:6e:77:64:c5:58:
51:63:65:7c:7e:fd:fb:e1:cc:96:bf:47:46:ee:34:0e:cc:1d:
db:17:27:7c:03:fc:7d:1f:16:28:e3:c0:86:a0:44:80:c3:ce:
13:fe:5e:39:2e:ac:fb:31:9b:05:78:19:19:91:97:65:a8:dc:
bf:4b:45:72:6e:48:81:1c:f7:ab:4f:9e:10:be:f5:1b:eb:3b:
8e:b9:a9:1d:41:36:25:e0:90:10:95:7a:3f:37:e8:e9:00:66:
a7:19:bc:b2:82:6c:0c:80:c2:6a:41:9f:d9:cc:f7:4e:43:65:
5e:d6:77:dd:ed:f7:21:4d:e3:ac:80:97:a5:3e:39:dd:97:4c:
08:73:71:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org