Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/K7tTJdYQ1znu-U3oHwYsX5WeJJk.roa
File: K7tTJdYQ1znu-U3oHwYsX5WeJJk.roa (raw, json)
Hash identifier: T1/WziVfCcXzxrwoD82A8XaAiesQIqNpMUY2VrFm31c=
Subject key identifier: 2B:BB:53:25:D6:10:D7:39:EE:F9:4D:E8:1F:06:2C:5F:95:9E:24:99
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0191251D53D962B3D05FDF13910467D58D74
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/K7tTJdYQ1znu-U3oHwYsX5WeJJk.roa
Signing time: Tue 06 Aug 2024 00:36:04 +0000
ROA not before: Tue 06 Aug 2024 00:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.140.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 19:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:25:1d:53:d9:62:b3:d0:5f:df:13:91:04:67:d5:8d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Aug 6 00:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bbb5325d610d739eef94de81f062c5f959e2499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:16:b5:07:0c:11:d6:dc:d1:13:43:60:99:f8:
ee:e1:84:62:7b:e0:d0:48:a6:4b:28:3a:aa:d6:23:
2f:44:0a:24:b8:32:e2:3c:c2:e2:f9:ec:9d:84:fc:
5e:f6:aa:07:d7:87:c9:ee:91:3b:41:db:69:b2:7a:
66:e6:bf:10:88:f7:93:a3:7c:d8:83:23:f8:c4:06:
7c:b1:24:d4:0d:a1:ef:33:ef:28:9b:20:11:02:46:
a5:45:84:bc:78:f6:06:53:94:a9:38:16:ee:fc:1f:
59:37:e4:0d:0a:ec:4d:6f:18:a5:e7:fa:23:53:09:
31:4d:34:1e:0f:d8:c6:f2:5f:eb:4a:eb:d3:e2:7f:
ca:8e:d2:0c:4d:8f:2a:50:a3:b6:9c:9f:ed:45:e4:
08:d7:97:12:be:4c:62:39:08:15:86:01:c1:6b:77:
b2:f5:35:2d:2d:85:f5:09:ce:f0:d6:ac:45:30:ca:
cd:a5:8c:ef:f1:f6:a4:fd:25:aa:0e:10:f0:b4:86:
85:54:b0:61:bd:3e:12:47:ac:62:3c:ed:9a:e8:03:
99:fa:36:1f:c1:74:b5:72:d2:b1:4e:5d:83:6f:08:
18:5c:32:b4:0f:af:b5:5f:5e:a6:27:51:d7:f9:b1:
2f:59:40:bd:84:c4:bd:f1:5d:a5:3a:c1:c7:87:8c:
b6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:BB:53:25:D6:10:D7:39:EE:F9:4D:E8:1F:06:2C:5F:95:9E:24:99
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/K7tTJdYQ1znu-U3oHwYsX5WeJJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
94:10:86:47:46:cd:a1:b8:90:26:f9:e4:3c:9a:10:18:3a:f6:
72:77:fa:c7:35:bf:0d:32:fc:f1:fe:f8:ea:3d:d9:39:17:2e:
f9:9f:10:5c:fc:7b:e5:79:48:2d:ff:55:8a:80:40:e2:e5:69:
bb:9e:04:b9:d4:6a:cb:c5:25:9f:9c:f0:10:d9:39:2f:c8:79:
6e:ea:95:dd:b7:79:9f:fa:b7:2c:c6:69:ce:25:e3:ab:aa:55:
f5:e7:4e:70:5b:f4:71:3d:17:be:38:78:f9:94:75:80:17:47:
82:82:04:19:ee:9d:88:a6:93:b7:ad:1e:41:4c:13:3a:1a:83:
ab:f5:76:cf:dd:89:ac:d9:43:48:ac:e5:25:32:e2:b1:13:07:
9c:72:5c:95:6a:e2:90:52:e0:07:86:b9:7c:02:16:6a:5f:a6:
57:83:37:de:8d:3a:47:99:66:c6:e4:9c:f2:da:e1:da:26:57:
d7:c2:ef:f1:72:17:1b:ba:66:1a:63:c3:7c:46:63:49:e2:a1:
cc:32:77:5b:6d:d0:c1:9c:9b:35:67:ae:13:da:b1:57:de:d6:
8b:78:f7:77:77:51:da:0c:8d:c4:bc:3f:eb:5f:e3:7f:3b:aa:
a3:eb:79:38:7e:39:7c:29:39:a3:05:c2:72:5b:2e:9e:23:47:
9d:66:c4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 20:09:18 2024 by rpki-client on console-ams.rpki-client.org