Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/N_IR9uhY6AusPM3zVJF-RZObeNg.roa
File: N_IR9uhY6AusPM3zVJF-RZObeNg.roa (raw, json)
Hash identifier: 1SzpVxGU1ucJ4CzIhAlPUxkx79oX6NUc/Sv8vGkD9vE=
Subject key identifier: 37:F2:11:F6:E8:58:E8:0B:AC:3C:CD:F3:54:91:7E:45:93:9B:78:D8
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018E1976D216FBECDD86014B3F845CC98EDC
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/N_IR9uhY6AusPM3zVJF-RZObeNg.roa
Signing time: Thu 07 Mar 2024 15:10:01 +0000
ROA not before: Thu 07 Mar 2024 15:10:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13213
IP address blocks: 45.156.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 03:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:19:76:d2:16:fb:ec:dd:86:01:4b:3f:84:5c:c9:8e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Mar 7 15:10:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37f211f6e858e80bac3ccdf354917e45939b78d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:49:40:e9:2b:4a:71:0a:77:07:b3:30:99:b9:
b8:fe:4c:99:da:f8:07:5b:f1:83:84:6c:7b:1c:d4:
70:00:b4:3e:c5:5a:57:0c:32:90:da:7b:2d:28:44:
d7:de:45:18:14:8a:01:a9:07:47:02:e4:7e:44:95:
3f:12:da:a2:7a:73:70:de:aa:a5:60:99:2f:69:69:
15:f2:9f:1d:d2:fb:27:be:86:a2:77:c5:f1:81:a0:
cf:56:99:ce:47:64:32:3e:3c:cf:eb:5f:18:41:35:
ef:ff:7d:dc:e9:f9:da:e0:06:27:f4:06:63:16:1a:
37:1c:e6:cb:8d:25:d4:12:6f:ae:7a:f3:ea:7d:89:
03:d1:83:0b:88:50:74:e2:62:08:03:7e:5b:aa:61:
19:67:8c:3a:b5:d3:c9:e9:7c:d6:85:f3:bf:c5:a4:
b4:ea:bd:7d:35:d5:80:ab:c8:ba:cb:25:31:18:4f:
c1:a8:a3:0d:08:19:c4:7b:d0:43:b5:79:d8:6c:28:
e4:81:1d:d0:c5:60:7d:d4:a6:d7:e9:88:40:46:a9:
dc:5d:96:62:fa:76:d4:7c:68:12:0d:46:b9:26:43:
c6:f2:d8:e4:65:e3:cb:40:ed:68:aa:71:14:80:a9:
81:0b:a2:78:40:75:2d:cd:2e:42:88:29:cf:1a:13:
cc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F2:11:F6:E8:58:E8:0B:AC:3C:CD:F3:54:91:7E:45:93:9B:78:D8
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/N_IR9uhY6AusPM3zVJF-RZObeNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.220.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e8:8d:31:4a:35:da:2c:43:a6:4a:3f:46:4a:03:0e:5d:07:
40:f8:5d:6d:14:39:0d:61:98:3d:c7:d7:bf:60:79:c3:85:ed:
6f:4e:de:cf:7f:ca:2d:01:ab:6c:65:63:18:16:03:16:52:3b:
eb:b0:e3:7f:2a:02:65:41:c0:62:0b:5c:bf:8c:1c:7c:92:10:
43:47:18:07:2a:5a:e9:cd:88:d2:69:c1:5f:43:3f:3f:4b:47:
ad:0b:4f:81:5d:9d:78:8d:f1:ec:c5:20:81:10:75:0e:c6:19:
5e:fe:d5:b7:70:fd:8b:f2:d0:ec:e2:85:b0:fd:1c:1a:8b:16:
bd:7a:3e:b6:db:ae:1c:09:77:0c:ca:f5:f6:30:4f:94:0e:26:
87:bb:f1:cd:e5:30:d7:e6:a5:34:d9:08:dd:3d:67:d5:5b:db:
8e:7a:02:20:61:e8:8b:72:bf:58:12:2b:5b:79:46:4d:62:22:
5a:60:da:7a:40:05:d4:f2:45:94:17:8d:f0:b0:83:40:29:6c:
8a:5a:2d:83:5c:3e:d3:d3:0c:e3:49:f6:99:c1:27:71:53:78:
15:6c:51:f6:00:1d:fb:9d:96:f0:21:90:ac:a4:86:ef:a6:c8:
3f:b8:54:8f:41:4d:ee:48:c4:7a:74:67:34:14:b8:e0:00:60:
0c:bd:34:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org