Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/KnhRd4Ab4Cg1UkwIDqfjCjcIjGQ.roa
File: KnhRd4Ab4Cg1UkwIDqfjCjcIjGQ.roa (raw, json)
Hash identifier: EzSTSUxzRBmKFsMr1ff0xAF5nAtn2hfq390eFldwlG4=
Subject key identifier: 2A:78:51:77:80:1B:E0:28:35:52:4C:08:0E:A7:E3:0A:37:08:8C:64
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01862BD2A16F80F80D0F431754EED4E4480C
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/KnhRd4Ab4Cg1UkwIDqfjCjcIjGQ.roa
Signing time: Tue 07 Feb 2023 12:21:09 +0000
ROA not before: Tue 07 Feb 2023 12:21:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208149
IP address blocks: 45.140.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:d2:a1:6f:80:f8:0d:0f:43:17:54:ee:d4:e4:48:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Feb 7 12:21:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a785177801be02835524c080ea7e30a37088c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:b2:c2:3e:b3:ad:d7:cc:ef:d7:f6:96:07:
6d:5e:83:69:5a:c5:ce:cf:3a:bd:02:ea:38:e0:14:
de:90:f9:20:5f:91:41:43:c0:82:b2:c9:a1:ee:80:
39:d8:ec:46:5b:99:7b:ee:39:ba:3c:b3:31:c3:fc:
25:36:4c:60:3d:fd:e9:38:ee:0f:80:9a:ed:4e:49:
1c:b2:19:5d:d1:68:18:65:ce:5e:b2:ed:b1:c8:f2:
41:32:23:6e:ab:10:8d:de:0a:1d:80:89:30:1a:bc:
59:39:69:c2:e9:45:83:5a:e5:ff:02:cb:c6:ab:39:
c9:f4:61:98:4f:23:18:1b:1c:ed:be:15:a2:5a:2f:
49:0f:c3:75:f9:fd:48:08:ce:f8:ba:77:0c:97:76:
6d:9c:87:d7:00:5b:e2:5f:71:e5:c5:1a:e6:f8:f0:
de:06:33:e0:79:99:94:8b:bc:ed:fe:58:77:b6:22:
db:cb:f1:ea:19:f8:b6:0c:c0:a7:b5:d1:9a:25:fa:
81:c7:69:d6:3f:b8:94:8b:97:37:68:08:d5:bf:b0:
d3:98:94:8d:f2:de:fc:1d:a0:ba:6c:1c:4b:1d:6a:
65:d1:b9:4c:d1:f4:01:d3:6f:5c:f3:4a:d0:c9:fb:
60:40:1c:7d:8c:ee:d6:26:94:47:94:49:ff:ef:f4:
8c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:78:51:77:80:1B:E0:28:35:52:4C:08:0E:A7:E3:0A:37:08:8C:64
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/KnhRd4Ab4Cg1UkwIDqfjCjcIjGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.41.0/24
Signature Algorithm: sha256WithRSAEncryption
48:8f:2f:8a:a6:f6:07:13:2b:78:70:82:79:01:ae:a6:01:c7:
1f:4f:e7:c8:84:97:6d:79:44:c5:38:e3:23:e5:61:1a:21:9f:
9b:18:b0:d1:68:c3:b7:0c:cd:e4:35:de:e0:3c:ae:19:6f:41:
fa:d9:bc:ac:21:02:8d:6c:53:88:f9:30:d2:42:9e:97:1c:2b:
a5:53:40:e4:2c:12:3c:a7:91:d6:c4:31:82:de:da:99:55:3e:
9f:4e:ae:1d:c4:dd:8d:c5:a5:0b:44:9e:d4:14:ef:5d:05:19:
a8:0a:81:bd:16:86:bf:b6:0d:0e:dc:13:68:b3:5d:65:b5:19:
89:96:1a:9e:2d:be:51:e0:ea:57:03:7b:d4:8f:ec:cc:6f:6a:
64:19:d6:79:bc:86:10:b3:a8:10:c1:16:c6:d1:85:66:d6:3a:
cd:81:c8:b4:2f:e9:8d:88:c7:e8:d7:2c:7f:13:67:3f:ba:c4:
f1:ef:01:c2:ad:3f:81:70:80:7d:03:46:a5:0c:4b:f4:62:25:
fb:5a:80:54:67:85:af:37:9c:e2:91:f6:6b:65:81:c2:a1:35:
6c:6a:9b:73:f6:2b:52:33:5e:6a:ae:76:92:2d:ac:cd:7a:9f:
ec:7e:2d:69:17:8e:9c:c2:04:8a:d5:ce:9d:79:f0:0b:21:81:
f5:4a:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org