Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LYwiaWIYbtvl4e-xtJYAlWQ8m_A.roa
File: LYwiaWIYbtvl4e-xtJYAlWQ8m_A.roa (raw, json)
Hash identifier: yx5WVTnwad3O+LB3aQDspVrOLdAddCoO6KUZFZk8i6Q=
Subject key identifier: 2D:8C:22:69:62:18:6E:DB:E5:E1:EF:B1:B4:96:00:95:64:3C:9B:F0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCFBD87C0D803FBAE119D51917AE57
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LYwiaWIYbtvl4e-xtJYAlWQ8m_A.roa
Signing time: Tue 02 Jan 2024 06:29:34 +0000
ROA not before: Tue 02 Jan 2024 06:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200079
IP address blocks: 45.129.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 09:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:fb:d8:7c:0d:80:3f:ba:e1:19:d5:19:17:ae:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d8c226962186edbe5e1efb1b4960095643c9bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:39:27:99:f6:dc:c8:09:99:ea:1c:9d:27:85:
63:af:4c:ec:b7:d8:8e:b0:af:8c:21:84:75:ee:1b:
c3:67:31:10:20:52:1f:c3:fb:cf:6a:52:92:f8:87:
4b:10:c2:70:59:38:c1:d5:7d:fa:cc:11:4c:88:60:
83:c5:1a:05:f5:13:ef:71:8e:cb:ed:27:14:63:09:
fc:a1:9c:66:e8:ef:f5:7e:96:22:33:a8:a5:c7:12:
f6:87:d6:df:dd:80:c9:ba:f9:90:fd:af:c1:4a:f8:
e9:26:08:2b:36:a4:75:8a:3e:63:23:b2:df:47:61:
cf:1f:98:22:ec:9a:d5:eb:af:83:e2:8c:70:56:9f:
76:59:b9:16:e2:92:f0:be:23:fa:54:6c:90:e4:9b:
78:d5:2d:91:e8:42:57:99:62:0b:16:3e:04:de:af:
ea:ae:04:40:67:9f:02:9b:0b:79:f0:21:55:d8:7e:
e6:c7:47:f9:1e:85:01:1b:f7:2d:ad:64:8b:f4:05:
98:b6:01:3f:8b:f9:c0:12:36:8e:86:f5:1c:6c:dd:
72:b3:06:b5:91:f3:3a:8f:05:c5:a6:5b:ce:8e:ad:
d0:fd:d0:96:e3:7f:61:96:48:79:49:4e:8b:dd:5f:
0c:07:12:14:93:67:13:94:fe:0c:e9:4e:8f:39:86:
8a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8C:22:69:62:18:6E:DB:E5:E1:EF:B1:B4:96:00:95:64:3C:9B:F0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LYwiaWIYbtvl4e-xtJYAlWQ8m_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.87.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d8:ee:f6:dc:10:a2:6c:05:99:06:0a:32:49:93:a8:5e:bc:
9b:6a:91:e0:42:c0:39:f8:00:4e:6f:62:0a:ce:7e:a4:20:e8:
ea:64:22:3e:9e:5a:0c:76:72:a0:f3:25:96:b3:0a:1f:0a:10:
1c:9e:84:8f:5b:93:bd:ca:1c:f3:67:b8:06:6d:96:92:72:f6:
2c:3f:18:05:ac:bf:98:e8:a0:16:fc:08:d6:d0:66:12:cc:50:
3d:0a:bd:b8:1e:6e:3b:b6:bb:ee:09:07:1f:e7:ea:b9:bf:ac:
92:58:c5:90:1c:53:3d:81:f2:4d:77:88:d6:65:9b:7b:c4:5b:
e1:7a:21:e7:82:1d:07:91:bd:62:6e:ef:ce:07:4e:81:01:3f:
6e:be:07:df:08:d6:a9:e1:d7:3e:77:c6:92:65:ed:a6:2d:a2:
c6:40:da:4c:43:24:d6:3a:0d:42:2f:ff:2d:be:6e:65:de:ab:
5b:52:fe:b9:27:dc:04:94:b9:17:88:70:35:c0:fc:6b:79:88:
45:81:05:a9:d6:2d:84:5f:5e:0f:42:ec:d9:8b:3d:38:1a:4d:
bc:54:22:21:93:e8:a7:45:cd:31:ac:c7:f8:9a:c5:ee:2d:05:
4e:63:89:49:89:5d:01:b6:88:9b:1a:3e:60:1b:7e:f4:38:41:
90:41:7c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 5 14:22:06 2024 by rpki-client on console-ams.rpki-client.org