Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/PYBQJ7dpcPLUPi4_lyh3BroAAvA.roa
File: PYBQJ7dpcPLUPi4_lyh3BroAAvA.roa (raw, json)
Hash identifier: 4O99vAlAUUAf+ltJEpDC4raWe/dM1uLsR6/pToOLTKM=
Subject key identifier: 3D:80:50:27:B7:69:70:F2:D4:3E:2E:3F:97:28:77:06:BA:00:02:F0
Certificate issuer: /CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Certificate serial: 018CC9BC91D5A93F5410BDDAFA4563258C2E
Authority key identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/PYBQJ7dpcPLUPi4_lyh3BroAAvA.roa
Signing time: Tue 02 Jan 2024 10:33:47 +0000
ROA not before: Tue 02 Jan 2024 10:33:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12552
IP address blocks: 45.15.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:91:d5:a9:3f:54:10:bd:da:fa:45:63:25:8c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Validity
Not Before: Jan 2 10:33:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d805027b76970f2d43e2e3f97287706ba0002f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:30:41:84:d5:41:af:bd:fb:fb:dc:4f:f9:d6:
9c:a2:dc:45:a2:a2:dd:73:a9:32:51:9d:92:42:5a:
13:1e:78:38:54:1a:05:50:37:04:ca:ab:70:3c:14:
30:6f:47:cc:c3:46:02:56:e7:3e:71:88:45:3c:3c:
a0:7e:e5:55:ac:9c:38:78:9d:77:64:d4:85:ba:c2:
fc:e7:fc:2f:1f:2c:2f:ed:d9:a3:0d:53:ee:c7:10:
43:1d:46:9f:25:73:5a:52:63:05:c1:27:b9:61:30:
65:09:94:99:d5:ed:77:7e:a4:88:22:1f:9b:54:1b:
0d:64:8d:01:b9:5f:dc:6d:64:ef:01:01:40:18:42:
42:96:da:7b:5f:d5:25:4a:a5:82:9b:7b:47:f5:eb:
6e:fa:8d:ca:53:ab:5e:0c:82:09:40:79:1a:0e:96:
c4:8a:67:ea:28:1a:27:8a:c7:f4:fe:88:72:dd:43:
05:44:f8:93:44:fb:99:34:70:b0:a1:06:34:ec:1d:
a5:da:dc:82:bd:20:19:f5:0e:65:90:2e:00:33:68:
aa:97:cc:62:93:a2:a8:8c:ba:44:47:e0:0e:37:b6:
86:4c:75:f9:d7:e8:46:70:19:cf:57:5f:1b:d3:7b:
a5:de:30:09:b9:c2:93:7e:79:72:11:9a:3e:98:2d:
06:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:80:50:27:B7:69:70:F2:D4:3E:2E:3F:97:28:77:06:BA:00:02:F0
X509v3 Authority Key Identifier:
keyid:A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/PYBQJ7dpcPLUPi4_lyh3BroAAvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.29.0/24
Signature Algorithm: sha256WithRSAEncryption
44:02:a8:7e:9b:4a:40:ed:19:08:9c:f5:4d:c0:b2:10:36:fa:
b8:a1:de:2a:83:26:73:7f:c3:5b:5a:6a:58:ba:27:01:b3:d0:
91:0e:99:39:50:f1:73:ad:5a:37:be:8c:19:cc:ae:61:10:ce:
02:2a:5d:9f:89:ae:3c:ab:dc:a9:75:69:7a:92:98:c1:8a:4c:
48:b6:e0:df:33:b2:4a:65:36:4c:a2:43:ff:0f:03:ed:5e:c3:
c4:57:a5:a9:b9:34:ae:c7:e6:99:cd:7b:11:d2:8f:98:c2:ee:
2e:29:a6:f3:c4:47:db:6f:76:01:a7:db:06:7b:6c:35:83:10:
61:ee:df:4b:65:ac:d1:e8:5e:94:69:bb:2b:d2:93:79:fa:84:
d8:dd:4d:85:e1:e4:d6:f6:45:50:4f:8f:7e:aa:8d:41:2a:56:
7a:e7:17:1a:8d:1e:04:16:82:6e:00:78:76:f0:18:34:d5:7c:
fd:71:ab:46:3c:d6:34:66:31:e4:d1:55:bd:ef:ee:ce:a2:5a:
f4:34:49:51:48:68:b5:3a:87:6b:cf:c8:c5:a2:6b:d2:bc:b4:
59:20:e5:9a:03:29:a2:b3:d5:c0:52:ae:b3:33:53:2c:e9:98:
a2:df:c5:75:fb:29:13:95:95:4d:d1:37:78:48:d4:61:4b:c5:
f9:14:e7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:02 2025 by rpki-client