Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/kMcjzqcHTrmNNJ7U42RuW1KorRQ.roa
File: kMcjzqcHTrmNNJ7U42RuW1KorRQ.roa (raw, json)
Hash identifier: QrT2jJzzulb7cCD+vH0Zz8oVDHvYGUgBkpSMamgOKvc=
Subject key identifier: 90:C7:23:CE:A7:07:4E:B9:8D:34:9E:D4:E3:64:6E:5B:52:A8:AD:14
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018B8204D2830173C24E8A4170FCE1DF0381
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/kMcjzqcHTrmNNJ7U42RuW1KorRQ.roa
Signing time: Mon 30 Oct 2023 19:17:15 +0000
ROA not before: Mon 30 Oct 2023 19:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.140.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:82:04:d2:83:01:73:c2:4e:8a:41:70:fc:e1:df:03:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Oct 30 19:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90c723cea7074eb98d349ed4e3646e5b52a8ad14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:67:ed:e2:20:80:65:b0:d0:31:ee:8f:01:92:
45:1e:98:ef:7e:f7:f0:68:ef:83:24:b8:d7:65:4c:
e2:b1:87:5f:37:c1:1d:7d:a5:f4:f4:90:1f:4f:d5:
af:59:9a:f7:a7:8a:ad:cc:ec:9f:5b:a3:ac:e3:09:
29:83:5f:f6:53:f4:c8:d0:65:d1:3c:1e:47:49:7f:
31:c8:91:da:75:86:90:9f:3a:7c:90:60:fa:a4:d0:
c6:b2:17:39:56:c9:2f:23:f2:13:58:ef:a5:ab:e9:
9c:93:2e:7d:4f:f0:d1:32:5f:55:9f:2e:fb:13:b3:
2c:90:8f:57:78:14:6f:e2:ef:9e:d1:e6:66:05:ca:
5c:c5:b9:72:ae:af:4e:f7:b1:03:d3:42:82:1c:3d:
67:0e:a6:ea:e7:65:4e:dc:35:65:4f:0b:de:46:37:
92:dd:99:1d:f4:6a:a4:82:9c:e7:62:46:1d:a3:86:
ab:f7:b2:ee:42:f1:77:6e:a3:21:55:d2:00:92:e6:
ef:a5:32:20:ce:e0:e7:fd:8f:e2:b1:d4:ff:12:af:
e1:7d:56:f8:ad:4d:97:a9:b1:1e:e0:b5:ab:ca:f9:
6e:08:b2:c4:f4:68:0c:7b:14:93:63:96:3a:1f:c0:
8f:fb:05:ce:16:f1:2d:7b:f6:98:04:de:3d:53:5d:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C7:23:CE:A7:07:4E:B9:8D:34:9E:D4:E3:64:6E:5B:52:A8:AD:14
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/kMcjzqcHTrmNNJ7U42RuW1KorRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.195.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:6f:9c:bf:c2:f6:49:d8:37:fd:6d:09:4e:5a:bd:5e:5e:6a:
d2:55:93:2e:33:af:d1:c5:cd:fc:9b:f5:14:b7:59:41:8f:1d:
51:e1:45:09:06:2b:47:3e:cd:5f:c5:9c:d9:75:b3:7c:2b:cd:
74:8c:bb:14:3d:cd:ec:a2:a8:e0:33:5d:68:40:b4:dc:4c:82:
54:4a:66:d6:a2:a4:b8:fd:1a:ab:8f:09:d0:d0:b9:22:c8:78:
e8:1e:aa:1d:c1:d6:30:01:e8:29:e0:a3:ee:20:bc:94:8c:e1:
29:ea:89:89:1f:e4:ff:20:2e:5a:e9:c7:30:64:fc:a9:53:b0:
ab:26:69:ec:17:07:91:92:e4:63:cb:bc:47:79:7d:f8:d8:47:
a7:c0:dd:4c:63:d4:54:33:f9:3c:7f:da:18:cb:8a:32:24:b8:
84:1b:39:73:50:ad:a4:b4:ee:3e:67:6f:12:9e:f2:66:45:c9:
5c:29:be:54:53:1e:af:f5:23:8b:61:90:e6:75:5d:8f:82:b9:
08:a0:f5:28:46:ca:c2:89:5d:b2:c6:ab:2c:53:df:f5:08:6e:
e0:6e:c2:75:ee:12:28:43:c2:b8:32:ff:e8:e8:4b:fd:a3:a9:
58:0a:56:8d:f0:f9:79:7a:da:11:32:fa:ef:de:e7:69:a1:74:
d2:30:2d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org