Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/tnEP7le611IjdSRfm0KSPUCuu3U.roa
File: tnEP7le611IjdSRfm0KSPUCuu3U.roa (raw, json)
Hash identifier: B7jPrNmHAMn+zinUzwmhijGWGd5qBSEVkx8gspnnF44=
Subject key identifier: B6:71:0F:EE:57:BA:D7:52:23:75:24:5F:9B:42:92:3D:40:AE:BB:75
Certificate issuer: /CN=6dd1dc4d2eb7bf2a3f08d545755477055143f174
Certificate serial: 01857030509701F018B5A278E3B5B52C64C5
Authority key identifier: 6D:D1:DC:4D:2E:B7:BF:2A:3F:08:D5:45:75:54:77:05:51:43:F1:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdHcTS63vyo_CNVFdVR3BVFD8XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/tnEP7le611IjdSRfm0KSPUCuu3U.roa
Signing time: Mon 02 Jan 2023 01:54:52 +0000
ROA not before: Mon 02 Jan 2023 01:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212635
IP address blocks: 45.159.140.0/22 maxlen: 24
2a10:6e40::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:50:97:01:f0:18:b5:a2:78:e3:b5:b5:2c:64:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd1dc4d2eb7bf2a3f08d545755477055143f174
Validity
Not Before: Jan 2 01:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6710fee57bad7522375245f9b42923d40aebb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f5:fa:c5:fb:be:37:3a:bd:7b:97:1b:58:53:
32:9e:71:a3:ff:2d:4e:4b:c2:c4:07:02:93:9a:64:
f9:bb:06:84:d9:99:18:64:fc:d2:db:b1:5e:5e:20:
fd:a3:3f:40:97:e5:18:a4:7c:58:2b:2a:df:f3:52:
0a:af:7f:74:88:6f:bb:ac:0a:30:c1:8b:4a:21:e0:
a2:eb:90:14:27:eb:71:ee:6a:20:9b:2a:19:dd:64:
6d:70:bd:58:c3:bc:8d:bd:6f:a1:d5:a1:3a:d3:93:
79:16:49:39:79:cd:72:e1:17:18:07:c8:d4:8b:15:
1a:0a:a2:13:7b:6d:c0:67:b8:f6:e3:96:3f:81:c9:
3d:a7:2a:9e:2a:6f:63:a0:7c:96:bd:cf:b6:a1:ce:
25:98:5b:a7:5a:81:0e:0e:81:f8:4c:c7:f1:e2:ef:
a7:59:e9:31:fe:ee:88:1e:42:5d:ee:15:c5:92:1d:
3e:16:ba:21:0e:75:7b:5a:cf:8e:41:45:78:9e:83:
c5:54:98:f2:63:6b:63:2a:18:fc:25:a5:9f:6a:47:
b3:b1:37:07:f3:39:ba:91:6c:d0:9f:ce:bb:f4:88:
0c:0d:b3:9c:17:0f:fd:71:55:b0:ec:73:de:71:7d:
4d:98:20:05:a7:31:e1:4c:26:b7:8a:fb:a0:ce:8f:
fb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:71:0F:EE:57:BA:D7:52:23:75:24:5F:9B:42:92:3D:40:AE:BB:75
X509v3 Authority Key Identifier:
keyid:6D:D1:DC:4D:2E:B7:BF:2A:3F:08:D5:45:75:54:77:05:51:43:F1:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdHcTS63vyo_CNVFdVR3BVFD8XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/tnEP7le611IjdSRfm0KSPUCuu3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bee483-eeb3-4c53-a456-fb4c54b6733a/1/bdHcTS63vyo_CNVFdVR3BVFD8XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.140.0/22
IPv6:
2a10:6e40::/32
Signature Algorithm: sha256WithRSAEncryption
29:95:96:18:02:c9:5b:64:dd:4d:c6:12:06:69:c8:d0:08:88:
cf:b9:20:df:24:2c:1c:8e:e1:25:3b:7d:ea:03:56:93:7e:78:
6c:4f:f2:6a:4a:1f:dc:0e:53:e6:00:69:e0:d8:8f:6f:37:7a:
86:0c:ea:91:30:fd:41:0e:22:fd:06:fe:d9:ac:b5:d7:2c:c5:
36:b7:7c:8f:6d:22:c1:c1:67:4e:54:12:98:4a:78:27:79:14:
d6:fa:a0:57:05:d5:3c:95:a1:15:75:7e:5c:7b:94:9d:cc:e6:
88:78:be:68:45:88:5f:06:a3:80:92:fa:8f:93:aa:ac:e4:61:
fb:81:6b:52:4b:cc:6b:53:25:bb:ad:d5:28:a7:be:bd:2e:f2:
08:43:ca:cd:c5:c0:f3:3a:67:9d:c5:ef:5a:93:85:e7:d9:5a:
f4:57:3a:0a:9d:21:d7:e3:d6:b8:72:31:81:89:a6:2e:05:49:
a1:f2:b2:07:30:cd:5a:09:19:5b:07:94:3e:00:dd:7e:b3:0d:
29:df:41:1e:14:f5:c6:17:90:d6:01:b2:da:14:db:bc:80:79:
d2:da:ec:45:36:4f:51:c0:51:37:46:9c:02:bf:16:89:d9:e8:
d9:f9:9a:16:84:2e:22:ea:c2:2b:2a:7f:ec:64:bb:44:bc:ba:
1a:46:b9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:43 2024 by rpki-client on console-fra.rpki-client.org