Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/HklkB5lS8SFeN1WWpYwEHdDf7AE.roa
File: HklkB5lS8SFeN1WWpYwEHdDf7AE.roa (raw, json)
Hash identifier: v68Yt6CVW7abpipYcVLtsPyAhmV9QQTlK7NTuw1n9+k=
Subject key identifier: 1E:49:64:07:99:52:F1:21:5E:37:55:96:A5:8C:04:1D:D0:DF:EC:01
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018E6141C9229FB5781B02B0624EF0A965FC
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/HklkB5lS8SFeN1WWpYwEHdDf7AE.roa
Signing time: Thu 21 Mar 2024 13:44:44 +0000
ROA not before: Thu 21 Mar 2024 13:44:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31829
IP address blocks: 45.141.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 May 2024 16:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:61:41:c9:22:9f:b5:78:1b:02:b0:62:4e:f0:a9:65:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Mar 21 13:44:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e4964079952f1215e375596a58c041dd0dfec01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0a:07:85:d4:25:65:9f:f7:95:68:a7:9e:58:
dd:05:4c:e8:d8:25:31:6e:8d:5b:0a:53:9a:4f:42:
c4:de:b8:24:58:3e:cd:cc:e3:29:3d:b5:ff:a9:a5:
f4:f6:54:f2:5a:a4:93:1b:bd:35:64:3c:6c:1c:f7:
48:90:96:e9:87:37:b9:d3:19:bc:1e:01:d7:16:49:
ba:91:59:91:75:00:44:15:94:6d:ba:b5:38:f8:e8:
fe:fb:eb:61:df:8f:54:9a:5e:b6:31:be:ef:a0:39:
1a:1f:ec:5d:a3:8a:61:7d:98:ab:1c:fd:fb:68:a9:
f8:47:5d:29:b3:3e:41:6b:a1:29:fd:ea:a3:02:1f:
d0:9f:3a:d2:00:1d:ec:93:93:4a:11:e5:4c:60:03:
88:6d:f0:63:ac:d7:5e:2b:95:e2:ae:33:4f:37:75:
05:76:79:68:9b:13:ba:29:70:f2:a9:b0:da:26:37:
34:49:bf:82:8d:3f:9d:ce:ea:ac:92:75:43:29:f1:
69:c5:ee:8c:8e:69:ac:b7:f2:b8:cf:33:cf:e3:9d:
5f:66:fe:0d:86:1e:27:a2:6d:9f:a9:f5:83:38:b0:
68:35:c2:fa:3f:59:b7:33:98:ec:bc:1e:bb:23:52:
12:ff:ed:0b:1c:4a:7f:3f:b2:19:92:d7:19:87:b9:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:49:64:07:99:52:F1:21:5E:37:55:96:A5:8C:04:1D:D0:DF:EC:01
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/HklkB5lS8SFeN1WWpYwEHdDf7AE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a7:0b:ba:90:c1:2c:3f:0c:71:e8:a9:a8:f4:c9:ad:77:96:
bb:97:b2:65:ce:24:ad:f8:96:07:b8:64:62:af:e0:d6:7e:33:
c5:64:f5:ee:f5:a6:e2:22:e6:7b:cd:bd:fa:87:95:bb:c1:e1:
4e:05:d8:0f:bb:fd:64:c7:e8:8a:f5:40:ed:04:19:c7:76:44:
a1:48:5c:8d:1c:39:0e:5b:03:06:b6:64:ca:82:9c:c2:7e:1e:
89:03:ea:82:91:0e:cb:22:f5:21:53:23:e4:8b:40:04:6d:45:
70:04:30:95:7e:bd:8a:d4:ae:7f:4b:c8:21:c0:6d:9e:12:cf:
95:9f:24:ae:a3:40:ae:2a:48:fb:8a:93:fe:ac:79:25:e3:e2:
fa:5e:12:b5:46:b1:ed:04:f9:f3:84:ef:bf:b7:91:a2:2e:d3:
11:1c:63:50:8e:20:f2:60:61:05:2c:13:c8:02:e1:80:5e:38:
c8:f8:c6:dd:45:61:34:a8:2e:5d:44:bd:57:27:5e:6d:01:c3:
ae:50:b3:30:b0:27:4a:04:6d:be:1a:9f:8c:bd:13:52:32:dd:
45:af:dc:a8:fe:5f:1b:75:1c:ed:93:7c:36:7a:eb:31:ef:91:
93:f4:d0:f4:46:e2:67:07:7b:b5:a3:09:36:51:2c:0c:54:1a:
20:8b:3b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 17:20:57 2024 by rpki-client on console-fra.rpki-client.org