Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/3xk9mO8eHIQBXJrPJZNyToFSHYM.roa
File: 3xk9mO8eHIQBXJrPJZNyToFSHYM.roa (raw, json)
Hash identifier: WZO6Wr20zMrHVPgYVFBODkY/p8tdom1CSjpuZRlQ2YA=
Subject key identifier: DF:19:3D:98:EF:1E:1C:84:01:5C:9A:CF:25:93:72:4E:81:52:1D:83
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018CC2DB5D6D874D7CBCC6233F8002790E22
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/3xk9mO8eHIQBXJrPJZNyToFSHYM.roa
Signing time: Mon 01 Jan 2024 02:30:05 +0000
ROA not before: Mon 01 Jan 2024 02:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.140.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 01:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:5d:6d:87:4d:7c:bc:c6:23:3f:80:02:79:0e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 02:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df193d98ef1e1c84015c9acf2593724e81521d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3a:ee:b5:94:4f:4b:33:b6:c2:98:70:a1:56:
ce:f6:2f:a4:f8:5f:03:3c:05:2a:9d:c8:60:24:b6:
22:42:62:7f:90:5b:09:d5:ac:55:2d:a9:56:43:bd:
29:72:1c:ea:f9:99:f2:a3:22:be:e0:ae:64:74:6b:
79:1b:ca:25:8f:60:cb:03:9c:8f:38:73:22:ac:d3:
a1:a0:fa:2c:3c:64:68:58:d1:b6:24:21:5b:33:cd:
eb:5f:54:5d:fc:b7:a4:e6:5c:f3:a7:02:d5:81:9b:
63:f9:bb:2f:d9:36:01:b4:12:27:7b:62:01:12:ac:
10:25:dc:84:20:3f:79:fa:eb:6b:13:11:07:17:35:
3d:9e:34:47:05:c8:57:3c:8a:ea:4f:ee:74:02:b0:
6b:43:5c:c0:dc:21:e5:38:a1:62:18:92:35:e4:de:
58:0b:e6:c3:d4:d7:95:1f:38:b0:fc:64:d0:00:9e:
8b:5f:67:b0:a2:1a:6a:ad:bf:04:ad:7e:0a:55:d9:
f3:b5:88:7e:7d:a5:ad:bd:81:10:3a:69:6b:91:09:
91:7a:ec:93:e1:e2:7c:4e:f7:9c:ad:d4:83:ba:0e:
50:50:81:4d:8a:36:ab:5d:ec:5f:b9:78:ed:6c:47:
d8:7e:dd:6c:db:ae:1b:3e:2f:48:80:88:12:36:0b:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:19:3D:98:EF:1E:1C:84:01:5C:9A:CF:25:93:72:4E:81:52:1D:83
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/3xk9mO8eHIQBXJrPJZNyToFSHYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.195.0/24
Signature Algorithm: sha256WithRSAEncryption
96:cc:ad:48:8a:01:95:00:5b:ca:fd:24:65:74:c3:55:55:e6:
98:8f:9a:db:cc:a4:48:a0:b6:f9:da:48:a6:8e:5e:ff:d6:77:
75:8c:99:fd:61:3c:79:7d:f7:1b:ac:fe:9e:bc:56:8b:95:aa:
b1:c7:0b:e1:c5:48:27:0e:7b:ec:1f:be:cb:a9:55:3f:9d:f2:
6c:b6:2f:c2:6b:a2:13:15:03:24:d8:b8:72:ad:94:28:d8:01:
4c:05:4c:6b:7f:c7:28:07:34:e8:4c:53:5b:57:da:6c:fa:94:
3a:3d:24:0b:a0:5d:c8:4e:47:65:45:e8:03:73:2c:d5:ba:fa:
e1:69:61:37:6f:36:30:ff:2e:67:2b:52:3a:ed:95:cb:12:68:
0e:2f:58:aa:8a:47:25:e3:d5:6c:cf:49:57:28:06:0a:25:87:
d9:27:23:16:1b:f6:1e:6b:f0:bc:7b:d0:c6:96:64:96:5b:eb:
89:00:08:42:ce:6a:59:d5:f2:15:6f:03:10:fd:35:7a:08:4f:
9d:50:b9:34:a7:09:54:ec:ba:eb:94:57:c9:f2:79:ce:5a:96:
ea:ec:44:69:e9:ac:55:f8:cc:fb:b8:67:58:41:a6:e8:f5:67:
3b:51:3d:fa:c3:16:e3:96:06:8c:dd:5c:85:ee:4b:4d:11:cc:
ac:30:01:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC211th018vMYjP4ACeQ4iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjQwMTAxMDIzMDA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjE5M2Q5OGVmMWUxYzg0MDE1YzlhY2YyNTkzNzI0ZTgxNTIxZDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTrutZRPSzO2wphwoVbO9i+k+F8D
PAUqnchgJLYiQmJ/kFsJ1axVLalWQ70pchzq+ZnyoyK+4K5kdGt5G8olj2DLA5yP
OHMirNOhoPosPGRoWNG2JCFbM83rX1Rd/Lek5lzzpwLVgZtj+bsv2TYBtBIne2IB
EqwQJdyEID95+utrExEHFzU9njRHBchXPIrqT+50ArBrQ1zA3CHlOKFiGJI15N5Y
C+bD1NeVHziw/GTQAJ6LX2ewohpqrb8ErX4KVdnztYh+faWtvYEQOmlrkQmReuyT
4eJ8TvecrdSDug5QUIFNijarXexfuXjtbEfYft1s264bPi9IgIgSNgvdLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8ZPZjvHhyEAVyazyWTck6BUh2DMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvM3hrOW1POGVISVFCWEpyUEpaTnlUb0ZTSFlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYzDMA0G
CSqGSIb3DQEBCwUAA4IBAQCWzK1IigGVAFvK/SRldMNVVeaYj5rbzKRIoLb52kim
jl7/1nd1jJn9YTx5ffcbrP6evFaLlaqxxwvhxUgnDnvsH77LqVU/nfJsti/Ca6IT
FQMk2LhyrZQo2AFMBUxrf8coBzToTFNbV9ps+pQ6PSQLoF3ITkdlRegDcyzVuvrh
aWE3bzYw/y5nK1I67ZXLEmgOL1iqikcl49Vsz0lXKAYKJYfZJyMWG/Yea/C8e9DG
lmSWW+uJAAhCzmpZ1fIVbwMQ/TV6CE+dULk0pwlU7LrrlFfJ8nnOWpbq7ERp6axV
+Mz7uGdYQabo9Wc7UT36wxbjlgaM3VyF7ktNEcysMAEW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org