Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Zdtle3LA8-w_UuFx-VEqKAV-wno.roa
File: Zdtle3LA8-w_UuFx-VEqKAV-wno.roa (raw, json)
Hash identifier: PAU7BoWl8OpO0llZw4BSv/9qHJAKsdxHztQZPzCy1bc=
Subject key identifier: 65:DB:65:7B:72:C0:F3:EC:3F:52:E1:71:F9:51:2A:28:05:7E:C2:7A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0189BB3F3950A5029F922AC13B3EEA51854B
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Zdtle3LA8-w_UuFx-VEqKAV-wno.roa
Signing time: Thu 03 Aug 2023 11:53:49 +0000
ROA not before: Thu 03 Aug 2023 11:53:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.140.0/22 maxlen: 24
45.65.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 07:53:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:3f:39:50:a5:02:9f:92:2a:c1:3b:3e:ea:51:85:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 3 11:53:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65db657b72c0f3ec3f52e171f9512a28057ec27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:59:4d:a8:3c:16:cb:4f:c6:40:d6:ca:5c:
6c:9f:d4:f3:20:c1:ad:b5:18:43:91:c5:19:85:6d:
f9:84:52:62:62:0f:80:85:4e:9a:29:16:45:cb:03:
2c:77:89:0d:22:04:77:96:d0:f5:61:8c:26:dc:1f:
bf:54:d2:dd:c7:9c:72:ff:06:8f:be:a1:d0:e2:29:
12:12:a2:87:d1:16:ba:06:08:09:8b:1e:dd:68:08:
0e:69:bd:5e:cd:74:04:e5:5f:f3:90:e5:21:b4:81:
76:23:ea:bb:b5:86:db:a3:85:99:c6:15:84:2e:44:
7d:23:76:d5:e5:34:34:fe:71:38:05:ea:be:b9:b1:
17:63:4a:51:8e:56:11:5b:6d:a9:00:6a:ea:8c:c6:
81:b6:d0:ee:73:fe:e5:5c:4c:80:80:12:ef:9c:28:
64:a6:e9:81:ba:b5:c8:35:ea:c3:d9:89:62:2e:20:
20:80:05:a6:31:45:8c:ba:0d:45:a7:ac:08:9c:ef:
47:f0:96:3e:66:56:ec:ac:a1:d3:70:c2:b5:3a:b7:
2d:97:1b:09:12:1b:30:e5:71:27:19:cb:1e:37:1b:
af:b5:05:ac:fe:24:0f:c8:69:a9:65:67:8c:61:ce:
6b:f7:ea:5b:5d:af:e4:5a:04:ec:56:80:e7:80:1a:
a0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DB:65:7B:72:C0:F3:EC:3F:52:E1:71:F9:51:2A:28:05:7E:C2:7A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Zdtle3LA8-w_UuFx-VEqKAV-wno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.112.0/24
188.209.140.0/22
Signature Algorithm: sha256WithRSAEncryption
66:0d:cd:6f:a5:25:40:1c:4e:5f:ad:58:83:d1:7e:98:77:ed:
2a:23:7e:14:36:cf:32:08:94:7f:68:19:87:18:32:55:4c:7f:
9b:6d:88:44:b3:b1:44:8d:f0:83:27:0f:56:45:92:a2:b9:c2:
a0:cf:7e:90:fb:6d:e5:87:5f:b7:66:fd:00:0e:b5:3c:7b:5e:
53:88:61:73:c2:b5:54:82:b5:21:a7:6a:53:51:03:8e:54:92:
77:c3:b9:33:28:90:25:c2:bc:44:be:69:c2:2d:95:d0:a3:b5:
db:0b:18:4c:7d:d1:aa:b8:18:1b:49:47:3f:93:3e:88:85:42:
4b:9a:e0:f3:b8:fd:35:80:2a:9e:6b:71:2a:44:91:e9:22:01:
93:ca:1c:8f:9b:b7:79:8c:56:16:7e:92:9b:63:30:62:2f:c4:
4b:be:70:30:aa:ef:f0:c4:81:2e:82:40:b1:16:33:9a:3b:ff:
fa:5a:c8:af:61:0c:da:97:4b:d5:4c:10:51:f1:fc:53:f5:3e:
8c:82:bd:5e:d0:4c:fd:d7:a4:42:9c:5e:ac:b5:98:b7:32:0d:
b8:75:9f:ef:8b:36:38:ba:45:80:bd:74:0c:03:79:82:9f:eb:
58:6d:18:8f:f6:56:d2:7f:78:5a:48:47:6d:b2:53:ef:44:c6:
ba:f4:f7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org