Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/fadMv-yrQlX2SD9uOWeaEWCE3fQ.roa
File: fadMv-yrQlX2SD9uOWeaEWCE3fQ.roa (raw, json)
Hash identifier: Tbcxdwq0hW2al3o8TMjIl/++trQl1WQW3RzQi6J1eHk=
Subject key identifier: 7D:A7:4C:BF:EC:AB:42:55:F6:48:3F:6E:39:67:9A:11:60:84:DD:F4
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 018AC37288238C90C311B1851D85FE9B7879
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/fadMv-yrQlX2SD9uOWeaEWCE3fQ.roa
Signing time: Sat 23 Sep 2023 19:09:37 +0000
ROA not before: Sat 23 Sep 2023 19:09:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 45.140.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c3:72:88:23:8c:90:c3:11:b1:85:1d:85:fe:9b:78:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Sep 23 19:09:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7da74cbfecab4255f6483f6e39679a116084ddf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:45:09:3c:0c:32:fe:8f:84:2f:c6:56:ca:c5:
81:26:f2:08:7d:b4:6d:90:27:82:d1:8f:4c:d1:37:
60:d6:e8:74:88:8b:a4:25:b1:60:ba:d4:e4:fe:75:
8b:ff:dd:21:fc:05:6d:b9:55:30:f6:0f:95:b6:a4:
2f:17:aa:f5:48:30:ba:61:ab:f4:52:3b:1e:d3:bc:
da:8b:8d:ee:4f:c3:2c:f9:61:a4:a2:06:8d:77:d0:
f8:84:32:ec:5d:27:71:2a:52:d2:41:c5:7f:e9:8c:
25:35:90:6c:fe:82:10:cd:0c:23:54:7d:c7:00:80:
75:e9:15:e2:96:d0:69:d5:20:44:3a:63:c4:a4:07:
58:62:b5:3f:bd:78:0d:44:64:96:8c:2e:8f:86:cf:
b3:49:b1:15:7a:12:0d:dc:7b:bb:81:71:bd:9c:18:
2b:20:6a:d4:58:80:4a:fc:f1:df:dd:2f:f8:b7:a8:
0e:14:14:8d:60:3f:bd:72:1c:ae:0a:8e:26:38:39:
96:30:a9:28:5d:02:98:e8:ed:53:88:c4:24:1d:36:
ab:69:a8:d9:da:be:7c:a2:6b:df:e2:a3:3d:23:3a:
64:9b:16:6c:99:e6:7f:f0:78:b8:15:47:fe:24:fd:
ca:82:89:1c:dd:b0:35:11:b8:f5:59:76:e2:98:84:
e3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A7:4C:BF:EC:AB:42:55:F6:48:3F:6E:39:67:9A:11:60:84:DD:F4
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/fadMv-yrQlX2SD9uOWeaEWCE3fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.208.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:bb:dc:fd:90:cc:49:6f:6c:19:9b:44:10:ae:28:cb:5e:6c:
9a:7a:5e:4f:f7:29:7a:00:78:1c:c1:2e:d8:94:55:e6:63:0d:
3c:a7:ba:1f:6f:09:6f:dd:74:86:84:d6:bb:92:46:9e:51:71:
33:d2:b5:fb:d3:32:63:46:17:81:6e:c0:cf:36:dd:ff:58:d7:
13:6d:10:41:80:1c:3a:49:6b:9c:1d:96:66:39:2c:e2:18:28:
20:ad:34:7c:58:30:f5:42:c9:2e:15:08:4f:fe:a9:f8:72:d6:
44:7f:76:84:0c:08:89:d0:11:a8:b9:3a:07:dd:2c:04:6a:24:
5d:69:89:2a:ba:c7:a0:7e:3a:b4:06:1a:c0:c9:bd:fa:7f:f6:
7e:05:4e:3a:b4:28:f4:4a:d1:21:b2:f8:ba:28:08:76:fa:7f:
0b:db:f1:5b:01:8f:b2:e7:f0:98:07:ff:ce:4d:dc:de:93:36:
ab:71:e6:de:31:b9:df:67:e1:43:7c:b5:51:df:22:be:20:3d:
c7:58:84:ba:19:27:76:d1:18:c3:39:77:f6:87:a0:c2:a1:02:
75:06:37:c3:63:b3:bc:0d:59:23:7e:61:17:2a:65:40:02:f0:
8d:f8:0c:38:75:ee:99:4e:02:96:c9:f1:c2:12:ee:e0:0c:7b:
7a:e6:bf:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrDcogjjJDDEbGFHYX+m3h5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2
Y2MyNjAwHhcNMjMwOTIzMTkwOTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGE3NGNiZmVjYWI0MjU1ZjY0ODNmNmUzOTY3OWExMTYwODRkZGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUUJPAwy/o+EL8ZWysWBJvIIfbRt
kCeC0Y9M0Tdg1uh0iIukJbFgutTk/nWL/90h/AVtuVUw9g+VtqQvF6r1SDC6Yav0
Ujse07zai43uT8Ms+WGkogaNd9D4hDLsXSdxKlLSQcV/6YwlNZBs/oIQzQwjVH3H
AIB16RXiltBp1SBEOmPEpAdYYrU/vXgNRGSWjC6Phs+zSbEVehIN3Hu7gXG9nBgr
IGrUWIBK/PHf3S/4t6gOFBSNYD+9chyuCo4mODmWMKkoXQKY6O1TiMQkHTaraajZ
2r58omvf4qM9IzpkmxZsmeZ/8Hi4FUf+JP3Kgokc3bA1Ebj1WXbimITjjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH2nTL/sq0JV9kg/bjlnmhFghN30MB8GA1UdIwQY
MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt
NjA3ZDRmMzdmNTlmLzEvZmFkTXYteXJRbFgyU0Q5dU9XZWFFV0NFM2ZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm
LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYzQMA0G
CSqGSIb3DQEBCwUAA4IBAQC9u9z9kMxJb2wZm0QQrijLXmyael5P9yl6AHgcwS7Y
lFXmYw08p7ofbwlv3XSGhNa7kkaeUXEz0rX70zJjRheBbsDPNt3/WNcTbRBBgBw6
SWucHZZmOSziGCggrTR8WDD1QskuFQhP/qn4ctZEf3aEDAiJ0BGouToH3SwEaiRd
aYkqusegfjq0BhrAyb36f/Z+BU46tCj0StEhsvi6KAh2+n8L2/FbAY+y5/CYB//O
TdzekzarcebeMbnfZ+FDfLVR3yK+ID3HWIS6GSd20RjDOXf2h6DCoQJ1BjfDY7O8
DVkjfmEXKmVAAvCN+Aw4de6ZTgKWyfHCEu7gDHt65r8y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org