Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Yd3S2F5DVXLm85H6FE2xD9L00Qw.roa
File: Yd3S2F5DVXLm85H6FE2xD9L00Qw.roa (raw, json)
Hash identifier: FlNL2V6/nIz9xh2SmUkxNRomJjtvN+6bZBktriqIWVU=
Subject key identifier: 61:DD:D2:D8:5E:43:55:72:E6:F3:91:FA:14:4D:B1:0F:D2:F4:D1:0C
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01857246C595ADC43F21EBAFEFD464D2B13A
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Yd3S2F5DVXLm85H6FE2xD9L00Qw.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.140.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 17:27:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c5:95:ad:c4:3f:21:eb:af:ef:d4:64:d2:b1:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61ddd2d85e435572e6f391fa144db10fd2f4d10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:42:96:cc:bd:06:32:1f:02:de:1a:f3:38:c4:
ff:fd:c3:60:a4:13:71:42:78:28:04:b3:df:75:50:
60:83:1b:40:77:7f:7c:ef:a2:46:8b:e4:3a:d2:b5:
ea:f7:4a:c4:62:17:fe:41:78:d9:49:64:93:9c:b3:
9e:9f:f9:c2:e4:f6:15:bc:59:33:69:20:2e:9e:2f:
d3:3a:18:60:77:5c:76:00:8d:ce:86:d5:94:f3:af:
e3:2f:fb:95:be:b2:5c:08:42:e1:57:18:b8:49:db:
dc:11:04:10:c3:16:9e:28:7b:f4:85:62:c2:65:90:
69:67:81:c5:9e:2c:37:8a:85:28:a1:b2:de:1a:68:
54:9a:06:c1:c8:2f:81:e0:0f:f2:74:24:b0:d8:21:
bc:8d:b3:a1:ae:52:d7:be:7a:dc:0c:51:e8:d2:af:
a8:48:56:90:41:9c:7e:54:02:29:ec:c7:e1:24:f1:
55:29:9c:15:b0:7a:0a:66:2a:55:2f:4e:f4:a0:87:
8f:96:0c:28:ad:0d:5b:33:6d:ae:50:ba:67:5b:ef:
f0:73:08:a6:9d:07:0f:16:78:1a:ff:21:b8:e0:01:
62:61:96:52:01:44:f3:c5:2d:4c:72:4e:a4:22:74:
c2:c0:c4:b5:38:cb:88:7f:c4:0b:59:35:4f:0b:42:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DD:D2:D8:5E:43:55:72:E6:F3:91:FA:14:4D:B1:0F:D2:F4:D1:0C
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Yd3S2F5DVXLm85H6FE2xD9L00Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.211.0/24
Signature Algorithm: sha256WithRSAEncryption
22:00:d2:be:fe:12:6b:83:28:fe:21:e0:5b:9b:82:c3:b0:a3:
20:60:45:f0:6a:f9:d5:20:a1:66:79:0f:af:00:67:1e:d2:74:
1b:2d:08:96:dc:0c:ca:cc:aa:23:ce:bf:54:e5:7e:11:cf:e4:
c9:c0:f1:69:a0:87:a6:74:e7:c3:c5:cf:91:f8:a1:e3:88:c3:
60:3f:c7:6f:78:af:59:71:a2:9a:4c:8e:0e:82:e8:aa:d4:db:
63:35:6e:ba:95:da:56:0a:95:d3:14:16:95:cf:49:ae:09:9c:
ad:c3:54:e1:c1:4d:73:db:5b:0c:b2:c8:68:94:1f:ec:5d:d6:
42:09:fc:4e:0d:cb:1a:b7:3c:36:4e:13:91:6f:70:52:7a:67:
01:1e:67:9e:76:fd:d0:71:9a:89:97:77:60:47:16:f6:cf:ec:
93:3d:ad:8d:b0:53:4e:5c:87:0c:9d:33:d5:ad:32:32:cb:7f:
c0:88:3a:95:fe:7f:73:47:ee:76:2e:58:06:b7:74:7f:59:43:
04:62:48:7b:a4:77:19:c5:ed:ca:d9:96:c1:d6:48:3f:7f:a5:
a7:1c:51:ab:35:85:22:32:91:bb:73:4f:38:d8:ea:fa:b4:39:
a5:78:2b:fd:71:b3:93:4f:af:35:b6:95:0d:9b:df:3e:cc:cc:
48:99:96:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:57 2024 by rpki-client on console-ams.rpki-client.org