Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/U1cXDTwOink8ALjkwDQyiq-ZMvw.roa
File: U1cXDTwOink8ALjkwDQyiq-ZMvw.roa (raw, json)
Hash identifier: Jq+ccC8CkHXsk3yZ38ae7dzR/eMv7/mHEHFjb71YyVo=
Subject key identifier: 53:57:17:0D:3C:0E:8A:79:3C:00:B8:E4:C0:34:32:8A:AF:99:32:FC
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 0186E47300CE6CD08A04D5A3B5BAD9027BE7
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/U1cXDTwOink8ALjkwDQyiq-ZMvw.roa
Signing time: Wed 15 Mar 2023 08:46:27 +0000
ROA not before: Wed 15 Mar 2023 08:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.115.217.0/24 maxlen: 24
45.140.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 13:43:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:73:00:ce:6c:d0:8a:04:d5:a3:b5:ba:d9:02:7b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Mar 15 08:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5357170d3c0e8a793c00b8e4c034328aaf9932fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:55:7e:b6:2d:80:52:7a:82:e7:1b:5f:de:
b1:f3:2a:c5:d1:f5:07:ac:72:43:87:fb:b1:3d:71:
a0:27:9e:bc:aa:a2:26:6d:95:e2:84:54:7d:1b:7a:
14:a4:5b:f3:bc:c8:c3:af:18:c0:00:e6:7d:67:e2:
72:6b:3e:4d:c8:d0:6a:2a:df:0b:3a:2e:59:6f:7d:
69:aa:a5:f5:88:60:95:93:be:7e:21:46:cc:5a:e4:
54:b7:8e:bc:97:3f:50:69:7a:6b:fc:f8:db:20:44:
d1:11:09:1f:6e:8b:ec:7b:64:a1:95:2e:3c:7f:be:
38:16:78:0a:b6:c4:ab:74:8e:37:77:da:07:54:bb:
cb:97:43:73:e8:00:70:0b:b4:69:c9:0a:33:87:a6:
f4:ea:50:f1:e6:fe:ca:40:9c:7c:60:60:00:32:d8:
f9:06:22:5e:a8:cb:63:46:ad:d7:87:ce:10:93:c4:
0a:f3:62:a2:c7:9f:3b:33:02:c8:3d:7c:3a:0f:63:
3b:7e:6a:8a:37:9a:a9:0e:0c:ed:1f:65:e6:a4:d5:
a0:ff:ea:93:88:cb:a5:b4:05:04:aa:fe:19:ad:3b:
d5:a3:de:47:8b:7f:77:f5:7a:6f:65:37:6e:af:7c:
16:e7:51:e1:0c:50:58:a4:d8:ac:3f:09:9f:5e:b0:
7a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:57:17:0D:3C:0E:8A:79:3C:00:B8:E4:C0:34:32:8A:AF:99:32:FC
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/U1cXDTwOink8ALjkwDQyiq-ZMvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.211.0/24
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a4:63:ea:64:b7:db:56:a1:83:6c:f4:95:0a:43:be:ef:a6:
1c:da:ee:ec:7a:7f:ca:b5:55:1d:a5:f0:1f:19:c1:3a:66:98:
c9:73:cd:3b:0e:5b:f5:a0:ca:3d:ce:57:8e:3d:67:13:39:bc:
37:4d:09:a3:11:9e:90:43:89:40:b7:ef:b5:44:37:f9:ff:db:
33:17:4c:88:26:85:2d:0f:e0:71:79:28:9d:2d:78:db:5d:bb:
ab:82:c3:f7:7a:c2:28:b2:86:d6:e6:87:ce:6b:ea:2f:05:46:
56:6e:94:54:b4:0c:d9:9e:d3:f1:29:0d:fe:72:63:1c:5e:76:
b2:7f:bb:34:04:85:55:7f:0c:06:cb:d5:7c:aa:19:ae:d2:92:
75:8d:5a:08:ed:cb:56:ac:7e:e5:4f:71:b9:a8:81:1f:d5:e5:
e6:08:3a:1d:40:58:b0:ef:ba:f7:83:f2:9b:22:ef:c2:10:10:
a8:88:3b:d0:cd:af:57:a2:7e:91:29:a3:88:26:b0:d9:17:02:
43:65:be:9e:a6:5d:be:cc:65:98:4f:0d:1d:14:25:70:8b:37:
4e:64:d5:03:2a:c3:69:08:a4:59:e8:cf:e6:45:cc:74:89:81:
33:f2:af:ac:86:fc:27:51:75:61:d7:54:1b:8f:c5:ea:eb:40:
e9:e4:36:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org