Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/PzK0eGSDxBO2_VaqC1Aq8UH7Uw0.roa
File: PzK0eGSDxBO2_VaqC1Aq8UH7Uw0.roa (raw, json)
Hash identifier: SUi6HFotmmk1ZdJALKG6Z+nEmAXXqTvh/7A/TI79OA0=
Subject key identifier: 3F:32:B4:78:64:83:C4:13:B6:FD:56:AA:0B:50:2A:F1:41:FB:53:0D
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01857246C68B635FC982D420219F7E92FDAF
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/PzK0eGSDxBO2_VaqC1Aq8UH7Uw0.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140057
IP address blocks: 45.140.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Feb 2023 13:32:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c6:8b:63:5f:c9:82:d4:20:21:9f:7e:92:fd:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f32b4786483c413b6fd56aa0b502af141fb530d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:68:9b:5d:78:26:14:cd:33:11:05:25:32:3d:
1a:92:74:e8:8d:16:6e:47:18:4b:a7:5c:ea:b4:54:
ca:3d:19:96:10:b6:df:2d:60:9d:1c:af:70:71:39:
af:80:9a:65:07:bd:bb:4a:ad:06:3f:62:35:91:d1:
d3:1a:9f:06:ad:57:ef:94:9f:53:bc:89:9d:ec:2f:
1c:f8:91:4c:93:01:ba:db:80:a8:a0:7b:6a:73:26:
90:b9:21:ea:46:db:52:7e:ca:d5:3d:42:03:45:2e:
25:88:28:80:17:64:45:c0:ad:54:b6:01:c1:98:6c:
fd:da:2e:2b:c8:16:5b:56:52:0e:91:21:aa:57:99:
29:a8:46:c9:de:9c:84:fc:12:b9:55:c0:0a:70:b6:
4f:fa:35:5a:14:48:91:15:37:2f:5d:a6:a9:fb:77:
a3:21:8f:e6:90:be:e9:17:c9:83:02:b9:1f:ee:f9:
b4:a0:da:2c:37:d4:d5:89:98:a2:70:6c:e8:f0:4e:
2c:6d:20:07:63:f3:f0:56:1d:f7:fd:c2:de:5d:70:
98:84:d4:11:8b:36:c4:c7:bd:37:ea:5e:46:bd:c7:
c6:0d:3f:b7:1d:f5:fb:d9:5e:cb:8b:ff:1a:93:8c:
a5:0e:00:28:9f:cb:28:cb:98:75:ff:d6:84:8c:ae:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:32:B4:78:64:83:C4:13:B6:FD:56:AA:0B:50:2A:F1:41:FB:53:0D
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/PzK0eGSDxBO2_VaqC1Aq8UH7Uw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.209.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:62:c1:69:3c:41:c5:cb:45:8b:cd:2f:8a:a8:f4:a4:b6:99:
4a:fb:cc:29:16:73:28:ef:3e:60:a2:99:a2:b0:30:c9:0e:f5:
99:7b:d0:ad:0d:a7:2a:e8:05:ce:6c:68:73:48:76:b3:dd:80:
3c:9f:e7:df:02:22:8f:c1:3a:40:e7:a8:a3:1a:11:5c:3b:66:
eb:5a:d9:c4:76:0f:cc:17:a1:0f:f1:29:76:0e:dd:c3:04:e2:
9e:3d:db:f6:7d:65:1c:f5:18:d8:68:7a:ce:93:73:18:0c:43:
11:5e:7c:83:a9:06:a5:76:0d:2c:e8:bb:9c:03:7d:78:6e:d4:
18:00:4e:33:6b:18:3d:c6:3b:3c:5d:75:8e:c4:4c:c5:e3:3f:
56:cf:72:6b:3c:22:f9:14:b3:28:60:a8:5a:5e:65:4d:bb:e6:
eb:70:7d:f1:59:50:9e:58:c7:eb:96:78:7b:fd:c0:6e:0c:1f:
04:23:7e:7c:24:5b:68:32:a4:5b:04:d7:fc:e0:82:16:f8:0e:
fb:4e:a3:13:1f:61:26:56:78:58:16:93:1e:5f:40:c7:89:91:
a0:d1:77:bf:4f:ad:cd:6c:2c:0b:62:20:b5:7c:e3:e3:4a:f3:
d5:74:87:f8:38:e7:24:34:ba:1e:7c:30:b7:5c:42:67:e6:da:
11:bd:a2:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:56 2024 by rpki-client on console-ams.rpki-client.org