Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LnD59vPGMQClohD58hlr7LuLdeE.roa
File: LnD59vPGMQClohD58hlr7LuLdeE.roa (raw, json)
Hash identifier: 8HRao4yGyJ2s0f4D3hS9neiadEj9/BFtumCIbkVoTLc=
Subject key identifier: 2E:70:F9:F6:F3:C6:31:00:A5:A2:10:F9:F2:19:6B:EC:BB:8B:75:E1
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01887DE752873710C658CEFFE5955C58A7B0
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LnD59vPGMQClohD58hlr7LuLdeE.roa
Signing time: Fri 02 Jun 2023 20:58:11 +0000
ROA not before: Fri 02 Jun 2023 20:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200193
IP address blocks: 45.66.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 17:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7d:e7:52:87:37:10:c6:58:ce:ff:e5:95:5c:58:a7:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jun 2 20:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e70f9f6f3c63100a5a210f9f2196becbb8b75e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:aa:d7:49:46:bb:7b:71:04:9e:fe:17:95:57:
50:76:50:a6:48:19:6d:60:72:dd:40:7a:7e:0b:3e:
b3:e4:44:16:4a:b0:50:88:0f:6c:86:5f:27:4d:8f:
10:50:eb:50:74:b9:d9:5a:41:55:e9:21:49:13:84:
e9:fa:00:94:37:43:1c:3d:6d:30:f8:86:1f:41:81:
1e:37:20:58:6b:7a:8b:57:68:76:2e:de:ee:a8:ee:
8d:cf:34:1a:67:5e:8a:ef:ec:3a:18:01:0e:d2:ad:
cd:ef:97:a6:a1:dd:ad:1f:b7:5f:70:30:d9:cf:93:
c9:99:08:50:08:0d:47:34:6b:78:9b:cc:77:ce:c7:
65:41:8c:45:04:5e:d0:56:97:7b:a3:51:ef:bc:d2:
63:79:f6:c9:d5:8d:28:22:4c:fc:7c:9f:99:64:7a:
66:f8:bb:fc:64:1b:e9:35:1a:6e:f0:c7:9e:06:ef:
91:49:df:b8:4a:8b:6f:25:65:e2:2a:0d:27:02:49:
84:2d:4d:48:5e:b7:05:e0:d4:aa:d8:b3:ee:07:c2:
38:df:6c:4b:1b:1a:fc:42:e3:5a:6d:fe:1a:7a:af:
4b:94:b3:43:66:87:bd:b2:25:00:23:a1:e4:34:59:
66:79:ef:c4:67:4d:da:71:ab:f8:57:f0:34:d2:22:
da:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:70:F9:F6:F3:C6:31:00:A5:A2:10:F9:F2:19:6B:EC:BB:8B:75:E1
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/LnD59vPGMQClohD58hlr7LuLdeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.153.0/24
Signature Algorithm: sha256WithRSAEncryption
04:0a:70:63:d3:ef:18:eb:5c:d8:6b:df:35:8d:f4:e5:1d:76:
c5:3d:46:01:4e:a8:18:6e:38:01:3b:00:31:5f:4a:74:60:c8:
5f:bf:de:9e:b9:3e:c9:db:9a:ef:a7:c6:f1:94:c3:28:22:84:
c1:63:5e:33:88:28:45:1c:11:27:0b:20:13:08:f6:8d:95:47:
b6:bc:2d:a9:01:9d:7f:a7:8a:53:d4:89:0a:1e:f5:d5:27:05:
4b:53:81:52:1e:cc:66:84:0e:a7:01:d5:3a:92:e5:e3:0b:c3:
aa:44:3e:4f:85:44:b7:c5:77:2f:47:a5:fd:1d:aa:27:21:1c:
60:3e:9e:96:00:a4:be:78:81:a3:bb:a0:57:90:10:8d:ec:cf:
0b:90:60:ff:ec:37:40:d4:45:84:a9:12:b8:8f:9e:27:44:c5:
87:06:89:3f:3c:66:ef:c5:04:2c:66:f4:b9:22:3c:bb:48:2b:
0f:46:54:bc:e2:0d:ed:d4:35:96:66:76:db:d3:5b:21:bf:7a:
4c:dd:c3:8b:c7:b5:99:e5:ac:39:8f:a2:d2:7c:5a:02:06:ed:
ba:00:50:52:36:74:a3:88:df:e9:61:5a:99:f9:f7:38:9d:08:
d4:05:c6:31:87:10:01:77:8a:2c:3c:51:51:70:e6:f2:ad:c5:
a3:11:a6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org