Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/doHBdqybOv00R9SFhmqkXoke6GI.roa
File: doHBdqybOv00R9SFhmqkXoke6GI.roa (raw, json)
Hash identifier: /+Y6RJw1muzRyx/pylemAys2LYt57PgNzeeMowZGGEw=
Subject key identifier: 76:81:C1:76:AC:9B:3A:FD:34:47:D4:85:86:6A:A4:5E:89:1E:E8:62
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 0186472BA6E7F7132AE4FB31C1F4EFFA7FA9
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/doHBdqybOv00R9SFhmqkXoke6GI.roa
Signing time: Sun 12 Feb 2023 19:48:08 +0000
ROA not before: Sun 12 Feb 2023 19:48:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 45.140.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 08:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:47:2b:a6:e7:f7:13:2a:e4:fb:31:c1:f4:ef:fa:7f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Feb 12 19:48:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7681c176ac9b3afd3447d485866aa45e891ee862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ff:19:1c:59:3a:91:e0:24:9a:71:d9:00:a0:
dd:03:1e:e7:b3:82:90:45:e2:e7:5e:d6:d9:e1:74:
2b:0c:bd:6c:39:bc:06:34:28:fa:7a:d4:74:23:c6:
98:c7:1f:14:9d:41:91:55:a1:6b:ba:1d:44:cb:ba:
41:8f:7e:12:f9:a2:84:f2:4b:1c:b3:ba:7b:d9:7d:
b1:c2:d8:0a:3f:2b:2b:f6:f8:63:8d:06:3f:8d:aa:
d8:24:a3:51:dd:78:ec:56:92:d8:e6:53:18:67:af:
a4:a1:3c:f4:c7:e0:8d:fc:90:96:a9:55:b1:39:a6:
c7:75:31:07:1b:77:0d:ec:a3:64:20:6a:1c:22:50:
73:d7:bb:d9:ba:1f:ae:ad:a8:28:02:85:df:f5:ec:
b3:f0:aa:09:14:6f:22:19:03:b3:56:8a:05:22:6c:
be:04:c4:bd:30:d4:59:66:ae:cb:6c:8c:d0:b7:a5:
3e:8c:7a:a1:f2:51:e1:16:d0:e1:36:84:a3:d1:d5:
2f:be:44:5f:a3:c8:bd:c8:37:9e:62:78:d0:c0:38:
e4:90:6b:d1:2b:2b:46:49:2d:13:5e:b5:80:53:43:
51:83:98:5b:7f:71:87:49:d1:cb:21:9b:13:b5:89:
4a:6f:28:7d:66:56:34:7b:8b:f2:ef:af:63:43:8d:
da:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:81:C1:76:AC:9B:3A:FD:34:47:D4:85:86:6A:A4:5E:89:1E:E8:62
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/doHBdqybOv00R9SFhmqkXoke6GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.208.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:38:df:b7:8f:8a:d1:7a:81:75:c9:71:34:c3:92:b3:bb:c9:
a4:83:26:81:f2:cc:ac:56:bd:82:c8:37:4f:24:94:ef:2d:bc:
7a:32:03:dc:c4:13:28:e2:ef:41:33:2b:11:78:ef:35:30:86:
2b:17:f2:6f:87:2a:8a:dc:12:2a:97:0b:5f:c4:26:7e:81:6b:
c5:a6:8c:8c:8a:35:6f:2d:5e:f8:53:e6:77:69:09:cc:5b:5c:
98:02:67:75:94:b9:4c:49:40:ce:ed:8f:4e:a7:4a:9b:e6:8b:
9b:a2:44:9d:70:e8:d4:b6:87:49:66:c7:8f:c1:d9:71:1a:dd:
ed:cd:2c:3a:2e:83:c1:b0:49:5e:08:a5:35:58:c6:06:d0:8f:
5f:02:c8:ad:66:4c:d4:75:7a:b2:0d:5d:cb:c1:63:35:65:f0:
63:6b:99:e5:41:65:71:e5:ba:4e:78:10:32:30:ee:1f:04:4e:
e1:77:8a:14:7a:93:34:ca:df:6a:86:c9:fa:4e:07:24:ea:19:
9e:61:0d:2a:a6:89:8e:43:34:47:95:7b:7c:6c:c1:7e:f5:cf:
ef:90:d6:22:16:fb:fe:e4:31:97:80:c9:07:43:be:74:bf:bb:
36:90:55:22:2b:4e:7f:68:dd:49:ad:40:7e:8b:e4:ff:24:7f:
74:9a:74:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org