Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/LaheOKtmsbuL9Qv0Prxdi0AawBY.roa
File: LaheOKtmsbuL9Qv0Prxdi0AawBY.roa (raw, json)
Hash identifier: w1KWqfxwN3uYUUqmi6gVAUGy/U7PqfVWGSkuJXxxsc8=
Subject key identifier: 2D:A8:5E:38:AB:66:B1:BB:8B:F5:0B:F4:3E:BC:5D:8B:40:1A:C0:16
Certificate issuer: /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial: 0194258EFEB103A3E555E39578DA58D183A9
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/LaheOKtmsbuL9Qv0Prxdi0AawBY.roa
Signing time: Thu 02 Jan 2025 05:48:35 +0000
ROA not before: Thu 02 Jan 2025 05:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.12.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Jan 2025 17:21:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:fe:b1:03:a3:e5:55:e3:95:78:da:58:d1:83:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Validity
Not Before: Jan 2 05:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2da85e38ab66b1bb8bf50bf43ebc5d8b401ac016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f3:46:9b:69:e8:c1:e2:44:35:55:e9:d8:d9:
54:9a:d8:ec:78:66:e2:dd:9d:05:b2:90:fb:b3:2e:
c4:cc:ff:c5:9d:e0:b1:b2:d2:5e:d5:71:66:5b:c0:
75:d4:0f:92:e8:e2:cc:0c:d9:bc:02:28:c5:d2:d3:
9c:51:c3:0f:1c:66:a3:1f:be:a5:41:4c:6d:ca:d1:
74:66:b4:cf:38:58:9b:3b:2c:69:8a:c2:03:be:57:
e5:c2:8b:92:8c:4a:64:c2:a9:c3:3e:5f:4a:cc:91:
d0:24:b4:30:29:94:ee:af:ca:bb:7b:f6:48:19:78:
b8:3d:a7:88:ff:52:d3:ba:f9:a4:d4:39:5b:54:57:
69:17:9c:7b:00:4d:9d:bd:15:e9:46:d8:01:55:5d:
71:fd:a2:c3:43:38:d2:91:ee:f3:8d:01:ac:4b:e4:
4d:75:4a:c7:e1:ff:98:e7:52:6e:3c:3f:e2:d1:56:
c9:00:32:70:9a:89:e4:e7:71:a1:56:02:86:2f:58:
7b:70:8b:d7:31:c2:08:c7:d8:d8:90:c3:8e:3b:8a:
1a:9f:0b:03:fd:6b:f5:1a:f6:db:e9:48:70:21:79:
3a:a2:c2:ff:fd:69:69:6b:dd:ae:de:ee:9f:c5:59:
34:dd:44:cf:16:23:92:2e:84:93:ff:ed:a6:48:35:
93:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A8:5E:38:AB:66:B1:BB:8B:F5:0B:F4:3E:BC:5D:8B:40:1A:C0:16
X509v3 Authority Key Identifier:
keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/LaheOKtmsbuL9Qv0Prxdi0AawBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.185.0/24
Signature Algorithm: sha256WithRSAEncryption
46:81:41:12:79:68:49:b0:8a:4c:91:12:a6:5c:e2:91:94:0b:
76:10:46:1b:75:de:7a:46:46:9e:c6:52:e6:2c:a4:5b:b1:c5:
67:51:2a:77:57:03:ea:b1:85:b9:57:71:77:f7:7b:e9:0a:04:
06:b7:cd:66:35:9e:bb:26:bf:64:9e:f6:23:d5:7c:5b:17:10:
75:1d:db:12:e3:9f:c7:63:c9:67:31:98:0e:6a:e6:a9:1e:0e:
db:e8:28:34:14:ba:e6:75:a0:be:1e:57:69:ec:71:d6:67:70:
b8:5f:23:6e:06:92:51:21:81:c6:75:84:53:74:35:f4:01:dc:
ce:fe:c1:a3:0f:48:89:89:e2:7c:6b:0b:4a:00:b9:53:05:27:
14:8e:49:a4:04:24:8a:01:77:53:13:40:e2:28:d2:c5:b8:3e:
e8:86:38:09:43:85:e4:66:07:b7:2b:82:6a:57:83:40:25:5a:
e1:72:2d:e9:e4:b7:57:d3:7b:2c:65:e6:43:52:de:ab:00:82:
7c:be:d3:6b:74:ae:25:dd:42:88:34:91:70:3f:5a:ec:8b:03:
69:7f:ce:92:12:b0:df:9d:16:36:48:f7:38:71:8e:71:bf:82:
b5:2c:c9:96:8a:7b:55:1a:46:dd:35:49:50:b8:0f:84:26:4a:
67:74:03:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:48:39 2025 by rpki-client