Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/p9b3Cr4GqQ9bKGAa9Nzb9voLEhQ.roa
File: p9b3Cr4GqQ9bKGAa9Nzb9voLEhQ.roa (raw, json)
Hash identifier: U+QGZlxmrmuTx1BUMQxKses/ut+5fND8D1DlKYJ+kE8=
Subject key identifier: A7:D6:F7:0A:BE:06:A9:0F:5B:28:60:1A:F4:DC:DB:F6:FA:0B:12:14
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 019025CE4928BA1E2BB20D1BBC9755C494F1
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/p9b3Cr4GqQ9bKGAa9Nzb9voLEhQ.roa
Signing time: Mon 17 Jun 2024 10:46:34 +0000
ROA not before: Mon 17 Jun 2024 10:46:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 45.140.57.0/24 maxlen: 24
45.140.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jul 2024 08:22:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:25:ce:49:28:ba:1e:2b:b2:0d:1b:bc:97:55:c4:94:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jun 17 10:46:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7d6f70abe06a90f5b28601af4dcdbf6fa0b1214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:59:80:dd:7f:7a:87:95:07:10:15:24:40:f3:
3f:c0:1b:03:c7:e7:c0:db:71:38:0e:60:e1:1a:e9:
4c:f0:e8:05:e7:f0:14:0c:54:fd:1c:c1:5f:c4:47:
47:d5:25:00:83:24:0a:ea:66:d7:7d:3d:e9:e2:bc:
1f:80:f3:95:10:e8:60:71:3f:67:ee:41:52:5c:75:
29:45:aa:c5:19:b0:35:44:9a:3f:c6:96:68:87:dc:
86:d5:c8:6b:e2:8f:56:c0:4f:87:4d:a4:0e:2e:9b:
59:39:1f:73:d2:df:95:18:83:15:41:46:1f:3a:71:
1f:64:47:46:59:b0:0e:7f:eb:53:21:07:94:ad:fd:
1b:78:b2:67:6a:c6:5e:bd:ac:05:2c:e9:4a:be:46:
ba:59:a1:6b:0e:c6:6c:a4:ba:27:10:30:c8:cf:f6:
de:1b:0b:e8:1c:29:54:02:1e:de:fd:a6:73:06:6d:
9a:28:bd:43:49:11:a2:ca:47:f7:c0:34:2a:67:c5:
c9:db:45:f5:7b:1d:57:b2:58:1c:63:d5:66:32:8c:
9b:d4:a7:5c:d1:4f:1f:54:18:3f:b0:f3:ef:2a:d8:
24:d4:67:1f:78:80:a2:27:15:99:94:b3:56:d9:df:
68:5d:22:70:8f:c8:3e:2b:78:07:d5:2d:2c:ef:d2:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D6:F7:0A:BE:06:A9:0F:5B:28:60:1A:F4:DC:DB:F6:FA:0B:12:14
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/p9b3Cr4GqQ9bKGAa9Nzb9voLEhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.57.0/24
45.140.59.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:15:8e:0f:f8:ae:21:07:25:39:85:3e:7d:42:62:ec:0a:16:
da:24:0e:d2:a6:1c:27:b1:b9:81:4a:47:d2:e3:6a:57:35:85:
22:3e:da:45:c9:3b:ba:31:a0:73:b1:c3:36:bd:dd:12:5e:30:
87:be:95:e3:ee:11:84:f3:ac:fe:ee:75:f3:4d:e0:9d:f2:b1:
23:ad:16:64:df:c9:b5:53:2f:c3:71:0b:2d:89:eb:be:3d:27:
fc:bc:c2:1c:5b:e8:e5:ef:98:89:c8:c5:b0:23:eb:23:6b:88:
a1:87:94:b2:9b:63:20:eb:b7:2f:5a:3f:62:15:a2:c2:43:5f:
0b:1f:64:8b:eb:82:8a:a6:aa:53:40:d8:42:b1:e2:5f:cd:b9:
1a:38:41:f0:86:22:33:13:68:75:3b:0f:b6:4c:43:14:99:4a:
67:14:94:93:ba:c9:38:84:9c:ce:5a:7d:c9:57:1d:19:e4:3e:
fd:57:d7:e6:1b:b5:28:79:72:2b:5f:0b:cc:de:33:60:14:90:
cb:44:f9:c6:96:a6:6e:9c:ca:d8:92:1c:7a:59:59:b5:6b:37:
5d:17:91:44:bd:b9:8a:f2:9d:a0:08:c1:8b:89:ad:19:93:3f:
90:d6:59:a0:ae:c9:0c:bf:54:93:a0:b7:d4:58:56:01:f7:24:
92:af:61:5f
-----BEGIN CERTIFICATE-----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Generated at Sat Jul 20 10:23:07 2024 by rpki-client on console-fra.rpki-client.org