Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/5tPDhQ64zQ31ibpvob38vTMo-P8.roa
File: 5tPDhQ64zQ31ibpvob38vTMo-P8.roa (raw, json)
Hash identifier: 7S8Lm2Q74CLZ8YnkivN59UnRHFN9X3to7SatUtm1BOA=
Subject key identifier: E6:D3:C3:85:0E:B8:CD:0D:F5:89:BA:6F:A1:BD:FC:BD:33:28:F8:FF
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 01856FB1299B9EAA8AA4DCDF03FEBE4747DB
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/5tPDhQ64zQ31ibpvob38vTMo-P8.roa
Signing time: Sun 01 Jan 2023 23:35:59 +0000
ROA not before: Sun 01 Jan 2023 23:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6233
IP address blocks: 45.140.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 11:25:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:29:9b:9e:aa:8a:a4:dc:df:03:fe:be:47:47:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jan 1 23:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d3c3850eb8cd0df589ba6fa1bdfcbd3328f8ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2a:1c:11:13:81:a7:75:bd:96:91:e2:ac:20:
c6:76:26:43:fa:a1:3e:85:08:14:8c:e7:4a:04:fb:
8d:88:fb:80:71:22:04:ff:c9:4d:99:75:cd:e8:43:
46:87:c1:cb:90:70:11:48:53:97:87:7b:0e:5e:c3:
5a:6c:f9:e8:75:2c:91:2f:de:b8:53:3f:2e:8e:f9:
7b:90:4c:b2:1c:d2:fb:1c:22:b3:53:b9:20:65:6c:
7a:e7:f7:eb:ee:1a:c2:ad:07:2f:52:4b:e2:c5:6f:
1e:9a:23:15:eb:2d:db:61:49:1d:70:f1:c9:e1:c1:
06:f4:eb:75:e3:04:cf:27:03:da:5a:12:a8:71:1e:
59:a2:47:6d:83:89:f5:ef:69:e9:2d:58:78:71:0d:
6a:5d:f9:dc:a7:75:90:5b:7b:4b:90:5a:ea:7d:2c:
d8:56:a3:74:17:d0:f2:cf:b8:5e:f9:64:73:e3:2c:
b7:fb:16:d7:3f:14:e3:bb:ec:87:2b:87:73:87:83:
82:21:6b:c5:ea:25:98:57:bc:dc:03:b5:a9:2f:88:
ca:ac:09:0d:81:28:8e:a3:cd:2c:52:f8:b9:4c:bf:
a5:a8:7e:6a:4f:29:d3:74:5f:27:f5:60:31:d3:22:
50:b6:f8:ac:5e:aa:a8:ed:ac:3a:9f:e2:95:9a:05:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D3:C3:85:0E:B8:CD:0D:F5:89:BA:6F:A1:BD:FC:BD:33:28:F8:FF
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/5tPDhQ64zQ31ibpvob38vTMo-P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.56.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:7f:a8:c3:29:f4:1b:8f:57:1f:62:09:bb:8e:de:c6:36:57:
87:d0:61:41:e9:56:59:5b:9f:cd:cc:47:49:9a:a9:0b:d9:2d:
65:44:d5:08:42:59:02:fb:c8:79:d7:01:18:67:88:68:a2:21:
21:ae:e3:c1:6f:63:7a:2a:5f:50:43:e3:d1:f8:32:07:86:62:
0b:80:88:55:31:ec:fc:7e:4d:8a:02:5d:0f:81:f1:a8:42:d9:
77:44:54:9c:ca:7e:cc:1c:b1:99:5e:57:35:d1:c7:eb:f9:93:
09:3a:6c:cc:f8:11:6c:b7:44:f6:38:f6:ef:5e:d1:15:14:c6:
5c:22:b9:45:03:79:1f:c5:6c:51:ee:44:26:ec:fc:a0:9d:74:
07:24:57:16:ab:96:fc:58:39:b3:01:f1:b5:90:33:ff:8e:74:
2c:67:34:f5:ae:e1:88:06:65:16:32:68:21:46:16:0b:6e:e7:
cf:41:18:8c:d4:6f:b1:ea:df:68:c2:b2:95:14:5a:73:80:88:
be:94:2d:4a:0f:97:2e:b6:95:7d:a6:53:fc:d4:32:d5:f1:8e:
f0:f0:8b:40:8e:8e:7b:ab:44:2f:03:64:8e:51:1f:93:70:d1:
dd:3c:6f:38:0f:37:43:07:b5:45:18:d7:6d:20:1d:bb:c2:69:
bf:4d:5b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org