Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/zStFPLs1YhlXPjmKiLYYvtn4B6Y.roa
File: zStFPLs1YhlXPjmKiLYYvtn4B6Y.roa (raw, json)
Hash identifier: +Q3Cui9wikRppQz+dWk7uvR/byZVfKoQcWDZ9WejdLg=
Subject key identifier: CD:2B:45:3C:BB:35:62:19:57:3E:39:8A:88:B6:18:BE:D9:F8:07:A6
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018BC7EE4EBD895AADEA4258D4DDEDDED31C
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/zStFPLs1YhlXPjmKiLYYvtn4B6Y.roa
Signing time: Mon 13 Nov 2023 09:06:05 +0000
ROA not before: Mon 13 Nov 2023 09:06:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 45.130.140.0/24 maxlen: 24
2a0f:f47::/32 maxlen: 48
2a0f:f45::/32 maxlen: 48
2a0f:f41::/32 maxlen: 32
2a0f:f44::/32 maxlen: 48
2a0f:f40::/32 maxlen: 32
2a0f:f46::/32 maxlen: 48
2a07:e342::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Nov 2023 09:21:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c7:ee:4e:bd:89:5a:ad:ea:42:58:d4:dd:ed:de:d3:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Nov 13 09:06:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd2b453cbb356219573e398a88b618bed9f807a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:da:fe:89:18:d3:47:b8:8e:a6:4b:63:06:
61:f8:36:9d:0f:78:80:f9:57:64:99:4e:97:6c:c5:
e5:f4:4f:83:b8:70:60:cd:c4:a7:c0:63:af:1c:b1:
cd:f2:a7:07:32:7d:63:1f:9b:f2:4e:bb:fa:1c:57:
9d:99:b5:5f:52:1e:e0:8c:82:37:c5:aa:c0:08:95:
24:a6:34:70:ab:4f:e9:5a:1f:bb:8a:1e:67:2a:be:
04:6e:28:7d:2f:11:9c:9f:41:c2:e7:f5:53:60:e0:
f6:82:eb:a8:4f:0a:71:e0:9d:a9:7b:aa:21:b6:6b:
9d:12:c0:0f:1d:ec:56:37:5f:46:62:6d:6b:4c:2d:
d1:69:23:6b:2d:8e:61:55:1a:94:70:d5:2f:83:46:
31:e2:3a:5f:c2:ce:b3:b5:26:c7:6a:55:60:60:39:
39:f6:62:ec:75:4f:90:ef:93:71:9c:3e:4a:6a:f0:
8f:37:5c:c3:28:4a:84:6d:b2:ef:86:04:00:05:33:
74:e3:c6:37:47:9e:bc:ff:8e:e6:6c:44:99:7b:9c:
f6:b2:39:17:1f:5c:66:6c:41:16:bc:5e:d6:73:25:
3a:90:3d:57:ff:f9:f0:cd:90:d5:ca:e7:f3:2c:46:
7a:5c:7e:06:38:5d:c8:84:d5:4a:56:fb:53:29:a2:
4b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2B:45:3C:BB:35:62:19:57:3E:39:8A:88:B6:18:BE:D9:F8:07:A6
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/zStFPLs1YhlXPjmKiLYYvtn4B6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.140.0/24
IPv6:
2a07:e342::/32
2a0f:f40::/31
2a0f:f44::/30
Signature Algorithm: sha256WithRSAEncryption
27:46:13:7e:7f:41:64:2e:03:06:04:a6:08:3f:ce:6c:8d:74:
54:76:de:88:6e:34:9d:a8:35:6d:29:20:56:4b:6e:48:9d:30:
82:98:03:52:6a:a7:25:f6:b8:44:7e:bd:bc:22:37:6b:55:ed:
8a:68:51:b4:8b:67:ed:d0:c1:89:a7:5e:40:4b:cb:31:ae:78:
3d:92:68:66:9d:c3:74:3a:71:e1:15:a1:05:05:7f:cd:20:58:
4f:e1:86:05:0b:b4:52:0a:4b:17:e7:0f:7e:99:e1:64:23:27:
c7:44:e5:66:39:94:27:89:d9:14:03:1c:83:c9:56:c4:df:78:
43:91:88:3c:60:37:22:c1:c8:a9:0f:f2:8e:1e:b0:ff:62:82:
a5:fd:c8:35:8e:a2:4d:74:70:5d:ba:9b:7c:40:67:49:78:84:
9d:14:a8:c0:03:94:cb:ba:81:c1:99:6a:4d:12:f6:0b:64:33:
bb:7f:f5:37:65:f7:16:18:3f:cb:46:b6:4b:0b:c9:e1:b4:fd:
2b:ad:8d:0c:2d:46:0e:18:bd:ac:67:b9:6a:31:dc:77:f9:12:
7c:d0:92:f2:53:b2:a4:42:3e:ce:44:56:4b:4e:ad:2a:53:80:
14:b0:77:28:cd:cf:7a:d3:03:d5:f9:46:54:f9:26:69:fe:a5:
03:84:7c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:52 2024 by rpki-client on console-ams.rpki-client.org