Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/0xSaPnHxoS8gp6J--YtJ2Amku1w.roa
File: 0xSaPnHxoS8gp6J--YtJ2Amku1w.roa (raw, json)
Hash identifier: KutQzg2MT04r1AI8HISMmz7d4SFw+hq/q794+6+J/t4=
Subject key identifier: D3:14:9A:3E:71:F1:A1:2F:20:A7:A2:7E:F9:8B:49:D8:09:A4:BB:5C
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0190DBFA67FAD30FE950B36963C5732F7575
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/0xSaPnHxoS8gp6J--YtJ2Amku1w.roa
Signing time: Mon 22 Jul 2024 19:45:39 +0000
ROA not before: Mon 22 Jul 2024 19:45:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.140.58.0/24 maxlen: 24
45.140.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:db:fa:67:fa:d3:0f:e9:50:b3:69:63:c5:73:2f:75:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jul 22 19:45:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3149a3e71f1a12f20a7a27ef98b49d809a4bb5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:04:77:b2:0e:88:1b:ff:d4:4e:df:db:89:47:
08:8a:1e:85:73:3c:a7:c4:81:24:c2:78:bf:d9:ff:
73:78:6c:dd:b2:08:9e:ac:34:25:a5:b5:c3:c4:84:
e5:88:d8:4f:ac:a5:77:de:45:58:ec:25:a5:a7:cc:
a2:13:74:e1:fd:07:1b:98:17:99:dc:aa:7b:6c:8f:
75:21:11:e2:9c:0b:f4:a6:7e:7b:b7:ab:53:bb:ef:
60:8c:e0:58:b1:51:83:90:b8:6a:57:16:d2:ce:ae:
55:1a:bc:d2:07:8f:a9:c3:49:71:52:84:11:3e:26:
db:1d:c4:db:c6:ff:86:66:76:fb:52:91:b4:47:30:
b7:e3:2c:30:76:9b:4b:0b:91:9a:0b:2e:e9:d6:76:
bd:70:06:ee:aa:ba:75:e6:bc:81:c1:07:d8:15:31:
5a:9f:49:e7:fc:80:a7:37:1e:e1:c0:84:db:25:2d:
d6:a6:66:78:50:47:fa:3a:5e:ea:ad:1f:2a:16:17:
c6:e5:fc:ca:ac:55:58:3c:13:fe:6f:17:91:88:31:
fd:5e:d9:c8:14:fc:24:f4:ec:54:34:bf:11:9e:d7:
ad:0d:6c:7d:1f:89:4d:36:08:d8:7e:bb:99:f4:da:
ef:11:7a:ee:6d:2a:92:79:e0:a1:3f:e5:4c:02:06:
52:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:9A:3E:71:F1:A1:2F:20:A7:A2:7E:F9:8B:49:D8:09:A4:BB:5C
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/0xSaPnHxoS8gp6J--YtJ2Amku1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.58.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:59:e5:ad:d8:9f:c2:71:db:45:be:ac:93:03:16:62:b5:2f:
0c:93:13:42:eb:f6:4b:1f:57:83:28:26:7d:67:6d:1c:3d:39:
03:44:d1:8b:a2:63:49:b3:8f:99:d4:c8:db:7e:83:92:30:7d:
4c:a2:b8:06:fa:69:bf:8f:5c:dd:de:37:ef:f3:37:17:7b:de:
4b:99:be:69:17:14:c0:b3:78:b4:d2:97:f2:56:09:39:d0:8a:
82:96:76:7c:53:7b:81:34:80:cf:1e:ec:03:a8:e2:ef:0a:8d:
ec:dc:1f:72:73:a2:2c:c5:3b:08:1d:46:ca:fc:66:aa:63:2e:
ba:ec:6b:9e:b3:80:83:e3:90:34:c7:f4:31:3b:70:73:59:7e:
37:22:80:ca:a9:52:3c:2d:f4:88:d2:63:55:fa:8d:1d:e8:aa:
f9:19:a4:3e:95:95:7f:c6:6e:74:c3:6e:0a:ca:8f:b5:73:d7:
77:92:a3:70:3c:16:4e:e7:b0:1f:91:33:09:6d:e3:bf:1a:93:
06:0e:94:bf:ad:12:5f:7e:13:31:ce:bc:86:a8:ad:3e:41:29:
58:ea:85:ef:81:e9:08:c4:72:cc:6d:69:c7:13:bb:93:3a:4f:
4f:a6:aa:98:51:9d:d4:76:6a:2d:9b:43:d0:c5:e4:e1:e5:72:
4f:03:8c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 14:10:38 2024 by rpki-client on console-fra.rpki-client.org