Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/cldHGfm3W2XPMKZhzD6CGrCdyNA.roa
File: cldHGfm3W2XPMKZhzD6CGrCdyNA.roa (raw, json)
Hash identifier: osJS4/rHGSj/I+jK/v/SpmPFpGNE+9VOTviCzThgnFI=
Subject key identifier: 72:57:47:19:F9:B7:5B:65:CF:30:A6:61:CC:3E:82:1A:B0:9D:C8:D0
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01856BC0F0EAC2BBEF2BE536FA103C17C12D
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/cldHGfm3W2XPMKZhzD6CGrCdyNA.roa
Signing time: Sun 01 Jan 2023 05:14:44 +0000
ROA not before: Sun 01 Jan 2023 05:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51248
IP address blocks: 45.140.167.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 20 Jun 2023 10:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c0:f0:ea:c2:bb:ef:2b:e5:36:fa:10:3c:17:c1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 05:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72574719f9b75b65cf30a661cc3e821ab09dc8d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c1:d0:4b:47:58:6b:f8:e8:2b:e3:a4:b7:7a:
de:6f:04:f3:97:07:3c:8d:c5:75:a3:36:a4:08:23:
5b:9b:f7:4e:3e:34:17:d7:42:91:ca:39:0f:82:b8:
de:2f:15:31:03:64:16:9f:6b:ac:ea:cc:d3:ea:7a:
9d:bd:4f:0e:4b:0e:b3:90:98:cf:9c:aa:e0:c9:e2:
df:84:77:6c:05:1e:03:ea:78:b4:e2:45:7b:12:7c:
6d:9b:5d:bd:9c:13:8f:06:88:64:42:04:0e:52:80:
27:2a:29:81:1b:e4:30:b3:81:1a:98:70:a6:89:12:
ca:93:d8:93:a4:1d:86:2f:b7:12:14:e3:e8:c6:e2:
16:0e:d4:a8:47:f5:02:2b:36:5a:39:02:01:a2:a8:
59:14:35:a4:d3:f1:f0:38:09:74:bd:14:b1:23:28:
01:67:90:9a:e9:d3:e1:c1:d5:53:da:80:1d:92:48:
7b:de:d7:94:72:0a:72:08:2f:da:42:0b:8c:66:de:
5a:37:e7:cc:d5:11:3e:14:bb:db:c5:a8:12:e9:22:
d7:9d:c0:89:44:96:9e:4b:4b:6b:3d:1e:eb:0b:de:
28:9e:0a:95:00:43:4d:cf:9e:95:31:8e:bc:9c:28:
85:dd:a9:08:0d:0c:29:52:8c:e1:f3:ea:04:45:07:
2d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:57:47:19:F9:B7:5B:65:CF:30:A6:61:CC:3E:82:1A:B0:9D:C8:D0
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/cldHGfm3W2XPMKZhzD6CGrCdyNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:bd:4d:19:e6:3f:62:6e:4d:08:cc:50:43:63:be:b8:b1:bb:
9f:d0:e0:04:8e:68:3c:28:df:97:f1:bb:e6:12:b1:e1:e6:d4:
98:53:1a:cf:ff:62:28:ce:1b:38:56:cf:db:9c:b2:31:06:da:
1f:95:4a:24:7a:70:ea:f8:fc:94:e3:7c:68:52:b5:d3:14:36:
28:07:bf:fe:05:5d:a4:ec:0e:04:91:ee:20:9b:e4:8b:3b:e2:
ff:23:0f:e3:fb:e4:0d:eb:fb:6b:95:07:18:f8:77:8e:d4:8d:
de:67:a2:f9:75:da:f8:fb:b1:aa:8c:d3:5b:85:b0:1c:b6:9e:
55:28:c4:b2:fe:a8:a1:fd:e1:1a:a0:d0:cd:27:18:b9:ab:21:
1c:2e:ba:2c:4e:bd:7f:e6:99:60:21:0d:38:98:64:62:22:6a:
4f:1e:e0:78:b2:6e:c0:09:49:32:53:4f:89:81:1a:3c:0c:c0:
08:9a:37:65:ac:14:22:28:d4:a7:78:04:e5:cb:c0:51:01:aa:
ec:e2:2c:be:44:61:c9:a8:95:2f:32:49:3d:0a:ac:f4:c1:e3:
00:4a:7a:af:6b:e9:94:2f:03:e7:44:a1:b2:a2:5e:7d:bf:35:
7b:4d:7d:85:ca:6b:11:4a:37:34:80:27:db:8c:e1:62:e7:a4:
9a:22:66:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org