Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/lAc91iOTxLQp2syJ3FzylU5xSXY.roa
File: lAc91iOTxLQp2syJ3FzylU5xSXY.roa (raw, json)
Hash identifier: El4is3AKubuZrEFTjytXQ4a/fN7EKktbN++IW8so7I0=
Subject key identifier: 94:07:3D:D6:23:93:C4:B4:29:DA:CC:89:DC:5C:F2:95:4E:71:49:76
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018EABB0CB8BF93B4230057441AFA13E6763
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/lAc91iOTxLQp2syJ3FzylU5xSXY.roa
Signing time: Fri 05 Apr 2024 00:37:54 +0000
ROA not before: Fri 05 Apr 2024 00:37:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.140.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 19:16:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ab:b0:cb:8b:f9:3b:42:30:05:74:41:af:a1:3e:67:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Apr 5 00:37:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94073dd62393c4b429dacc89dc5cf2954e714976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:91:7c:1a:fe:91:f4:41:82:fd:9e:f9:6d:2d:
e8:2e:88:b3:2e:01:2c:fb:fb:e4:39:8d:f2:bf:94:
f5:96:0e:cf:d6:ca:5d:65:2d:ed:88:c4:71:80:ab:
1e:85:8e:16:20:38:29:d4:70:14:6b:b8:a1:25:dc:
32:b9:84:40:25:a4:2e:46:a6:4f:b2:a3:69:e2:f3:
3e:f9:de:00:be:dd:d1:58:f9:4a:e8:d5:d0:01:87:
c5:4a:1e:07:76:2c:c4:c2:75:e4:32:be:48:f7:36:
77:d1:0c:ff:c1:ab:56:18:06:75:06:ac:4d:58:8f:
1e:c1:b9:cf:54:d2:56:d1:ce:27:37:a6:db:42:59:
fb:16:78:c0:1e:d5:c1:22:34:74:8f:d0:b6:ad:3c:
b7:a6:d9:77:57:86:a9:38:7a:3a:cf:e7:c4:d1:59:
35:2a:76:45:e6:41:9b:23:cb:cc:3c:fa:95:ab:5e:
87:10:ad:9e:d8:08:72:f7:30:59:04:2a:ae:3a:1e:
c5:f1:3e:fa:37:cf:af:e9:58:3c:34:4e:77:29:ae:
a9:94:35:4f:8e:ae:59:e3:85:db:5f:64:e3:31:e7:
8a:c4:0a:c1:3c:56:84:6c:86:22:3f:c8:0e:4a:d4:
d1:41:61:b3:53:d6:c5:5e:35:a3:7c:c4:66:6a:5d:
0e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:07:3D:D6:23:93:C4:B4:29:DA:CC:89:DC:5C:F2:95:4E:71:49:76
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/lAc91iOTxLQp2syJ3FzylU5xSXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.195.0/24
Signature Algorithm: sha256WithRSAEncryption
17:a8:95:b2:8f:3f:78:94:56:13:39:ba:43:8b:3a:9f:0f:d9:
af:18:2d:ae:fe:3d:c5:40:84:a8:94:41:2a:43:04:e0:c9:e8:
9d:e6:09:4c:ab:9a:58:49:fa:ba:86:db:f3:d5:ea:5a:a4:f6:
65:09:55:ee:0d:0b:74:3a:08:b2:6d:3b:1d:57:c6:e0:ea:02:
5b:2c:77:0d:8f:2b:93:b4:9f:eb:8e:23:2d:77:a1:2e:9e:f2:
96:d3:a5:d0:12:9d:73:8a:a6:a2:b6:e7:63:2a:7b:05:78:78:
ca:53:03:52:ce:84:15:57:0f:8e:91:4a:3a:be:fc:fc:9f:ba:
1c:a6:c4:4e:64:9d:36:82:b0:a0:e9:73:55:c3:70:7a:eb:41:
51:4d:87:7d:9a:8a:4b:1a:96:b6:09:49:5f:8a:7f:ec:35:df:
54:de:7b:c1:0b:e9:12:d9:48:ac:a4:5d:6a:b3:61:23:3e:68:
b0:76:2a:96:fd:85:c4:4c:91:a6:fb:df:b6:f1:5d:25:fc:0a:
dc:8f:ac:bd:dc:61:ca:43:72:d4:31:af:67:4f:99:31:dc:23:
87:0d:ed:e4:3d:cd:de:66:7f:6e:05:3f:fd:69:22:f8:40:ec:
f0:21:e9:60:cc:61:43:7a:18:f8:92:59:86:e6:ea:84:b8:5a:
de:32:e2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org