Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KtQqMeDyW2yCGWxnZ-RzQNJCBjc.roa
File: KtQqMeDyW2yCGWxnZ-RzQNJCBjc.roa (raw, json)
Hash identifier: wu06RzeSkrkz86fEHw1fcc/y/WsRICvoY4cp7y1Mx3E=
Subject key identifier: 2A:D4:2A:31:E0:F2:5B:6C:82:19:6C:67:67:E4:73:40:D2:42:06:37
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 018592AD7F5832BE4062429E8287BF0375C9
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KtQqMeDyW2yCGWxnZ-RzQNJCBjc.roa
Signing time: Sun 08 Jan 2023 18:38:41 +0000
ROA not before: Sun 08 Jan 2023 18:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 45.140.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 May 2023 21:04:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:92:ad:7f:58:32:be:40:62:42:9e:82:87:bf:03:75:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 8 18:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ad42a31e0f25b6c82196c6767e47340d2420637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b2:1e:db:7e:62:8d:a3:92:a0:ec:98:88:cb:
54:a0:e6:30:7c:47:6f:70:b8:32:f6:aa:2f:1f:ec:
36:f3:62:0c:c7:23:fc:7b:f4:e0:b5:1f:6b:a9:a5:
a7:23:08:a4:2e:85:74:38:d4:8f:cc:24:38:b1:97:
ab:53:00:97:d2:a9:3e:ce:b3:a1:59:f4:55:55:9e:
88:af:da:34:31:5e:d6:f8:1d:1e:e3:d5:3a:d7:45:
8d:bb:f7:29:e8:ee:67:41:9c:42:c6:c3:31:71:38:
f2:44:46:3a:5a:8c:96:90:cc:0c:9d:5a:03:44:5f:
8a:70:a0:07:5a:38:2d:d6:1b:4d:e4:90:a9:1b:60:
e8:c3:63:f1:af:c9:c6:01:0b:02:2a:3c:09:cd:0b:
16:2d:a7:86:e8:84:27:17:ea:d9:af:36:65:aa:d2:
c0:a0:52:23:b7:d0:c7:59:12:20:36:55:c6:f4:65:
8c:5e:bd:c3:73:d7:48:76:43:a1:d0:07:3c:13:19:
90:30:a4:c8:7f:6e:2e:07:f5:b9:58:e0:a7:8c:02:
94:a2:19:c2:44:f1:00:61:51:49:ab:0c:4a:91:8e:
ed:34:e0:40:fd:ea:9f:a0:59:ae:ba:62:85:ef:a4:
92:e6:bd:79:49:91:85:86:f5:d3:9a:af:1e:96:4c:
91:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D4:2A:31:E0:F2:5B:6C:82:19:6C:67:67:E4:73:40:D2:42:06:37
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KtQqMeDyW2yCGWxnZ-RzQNJCBjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a7:a9:ce:00:6e:bc:d9:72:9a:94:23:6b:e6:b9:4f:33:d0:
d5:c9:08:9d:3f:59:b9:67:59:9b:9e:99:ed:cb:32:f4:d3:39:
48:c5:93:4f:65:36:b6:e3:96:e2:11:ac:40:23:14:cb:06:cb:
ea:6c:cf:37:ab:6f:fc:4a:37:8b:5c:64:4d:86:07:2c:44:47:
9c:ac:10:08:2d:ea:9e:83:78:0c:f4:d5:ce:55:0d:33:73:5d:
8b:f0:46:b4:ee:05:c0:34:56:00:7a:ab:68:0f:f5:7d:58:d9:
21:23:8f:01:68:60:80:14:6f:93:50:55:d5:1a:2d:f2:3b:d1:
91:74:cf:db:13:c2:ad:81:c8:50:6a:91:1e:04:d2:98:d3:32:
6b:b9:19:60:ee:89:87:d9:81:56:c0:06:67:1a:ba:47:08:ad:
d8:75:2a:96:65:d9:81:2b:80:bb:87:81:43:81:17:27:72:7f:
32:fa:cf:c8:af:47:1e:3a:18:7e:9a:14:56:ef:6c:ec:05:72:
72:6a:17:3c:bf:3d:f7:86:6c:05:01:08:82:8c:30:22:d7:62:
bf:c2:8d:0b:bd:eb:fc:24:88:c9:f4:69:c8:4a:3b:5f:b3:ca:
21:67:a6:7f:bc:33:5c:8c:22:7d:52:f4:09:b0:51:d2:bb:19:
a5:27:e3:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org