Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/A4sVbo0GN_QctnzLOpDiz24iZWg.roa
File: A4sVbo0GN_QctnzLOpDiz24iZWg.roa (raw, json)
Hash identifier: SlcC96lk70U24MQc4UnYOCTKeNh2JMNUPL3GBLa5NEk=
Subject key identifier: 03:8B:15:6E:8D:06:37:F4:1C:B6:7C:CB:3A:90:E2:CF:6E:22:65:68
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 019112DABEF0E54CB12683F8DBA5F0EB268A
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/A4sVbo0GN_QctnzLOpDiz24iZWg.roa
Signing time: Fri 02 Aug 2024 11:30:11 +0000
ROA not before: Fri 02 Aug 2024 11:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.140.59.0/24 maxlen: 24
45.149.5.0/24 maxlen: 24
45.149.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 07:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:12:da:be:f0:e5:4c:b1:26:83:f8:db:a5:f0:eb:26:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Aug 2 11:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=038b156e8d0637f41cb67ccb3a90e2cf6e226568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d2:54:c3:f5:21:40:1f:cf:f0:ef:dd:e3:64:
55:55:b3:cb:c6:6e:58:82:75:d3:a5:e1:a0:24:d4:
bc:2b:98:59:48:56:d8:c0:a1:55:49:ae:05:48:8b:
73:12:8a:50:e8:49:ad:7c:07:38:c8:c1:d6:43:f5:
18:c8:4e:c8:4b:b2:f9:bc:26:6b:aa:b8:ea:87:ad:
59:a7:b0:f2:4d:3a:67:e8:74:23:09:5b:9b:ee:ac:
d7:42:88:28:46:50:8c:f5:d8:a0:33:22:c8:7f:29:
6e:d6:44:72:30:08:19:fb:ec:ff:c7:18:fd:cc:35:
16:e2:09:4e:7f:b2:c0:ea:fc:28:71:7a:79:37:e3:
6d:5f:59:f8:55:a9:c9:87:75:c3:38:64:c1:23:63:
cd:6d:f5:0c:43:e6:85:d1:12:32:b1:29:41:7b:4c:
5f:f3:ae:8d:70:94:cf:08:1f:c8:29:e0:bf:79:82:
62:66:d4:37:5c:76:cc:f8:b7:20:89:91:60:7c:a9:
1f:63:a2:76:8c:57:39:4c:fd:23:f7:1e:04:34:78:
da:b5:ac:32:3f:e5:f5:31:05:a5:dc:6c:2f:b1:72:
a3:a5:ba:d7:b6:8d:71:b3:fa:95:1c:19:d5:2d:9c:
33:cc:b1:cd:68:c3:ce:50:3d:13:3f:34:54:c9:92:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8B:15:6E:8D:06:37:F4:1C:B6:7C:CB:3A:90:E2:CF:6E:22:65:68
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/A4sVbo0GN_QctnzLOpDiz24iZWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.59.0/24
45.149.5.0/24
45.149.7.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:6d:7f:48:b7:36:f2:ed:97:6c:cc:7d:ce:c0:8f:76:00:05:
1a:81:9c:c7:49:e7:12:34:6f:75:28:6f:79:2c:4b:4d:5e:1f:
7d:4e:40:7c:33:6a:d3:bf:54:9b:89:44:22:c6:ea:03:c0:d9:
93:f6:3d:41:3c:b3:1e:19:1e:c4:92:01:8a:1c:6c:fb:b9:80:
01:db:d5:4b:9c:99:96:37:32:cf:ab:e6:92:5e:92:fb:d9:c9:
62:d5:d1:58:d0:9f:4c:ec:ed:42:a7:21:ba:64:fa:67:29:05:
35:d7:e8:24:f6:16:ef:01:a3:f4:4f:2c:f3:d4:0a:89:92:80:
06:b1:a6:cf:49:91:51:94:2f:ba:aa:6f:3a:55:1a:7f:ba:40:
81:db:52:06:0e:ff:8f:11:28:c5:cb:98:e8:ab:7e:f6:91:20:
ed:75:8f:73:8a:4f:f5:a2:e1:9e:51:69:da:1e:eb:61:f8:8c:
83:8b:e2:c2:a9:9b:02:ff:c5:83:a5:ba:79:f2:2a:4c:99:2d:
e1:11:8b:9a:df:13:e7:f1:e3:bb:11:4f:9b:c0:8a:4f:ae:82:
29:27:fe:7c:d5:8a:7d:74:05:cc:34:20:c8:44:23:e5:0e:54:
65:48:17:15:20:55:e6:be:bf:37:63:e5:5f:62:cc:07:f2:85:
2e:80:e4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 09:12:38 2024 by rpki-client on console-fra.rpki-client.org