Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/1-9fMgUq-1lsnIP9aXsSPuWnF7d4.roa
File: 1-9fMgUq-1lsnIP9aXsSPuWnF7d4.roa (raw, json)
Hash identifier: yDeWdQk2/UkV/xCImhyYnno3CFpDJxrLZ7qyu7Rvslk=
Subject key identifier: FB:D7:CC:81:4A:BE:D6:5B:27:20:FF:5A:5E:C4:8F:B9:69:C5:ED:DE
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 01918ECA84E76C76A70EA4E87FF45C21C7C4
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/1-9fMgUq-1lsnIP9aXsSPuWnF7d4.roa
Signing time: Mon 26 Aug 2024 13:05:22 +0000
ROA not before: Mon 26 Aug 2024 13:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202654
IP address blocks: 45.156.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 12:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:ca:84:e7:6c:76:a7:0e:a4:e8:7f:f4:5c:21:c7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Aug 26 13:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbd7cc814abed65b2720ff5a5ec48fb969c5edde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:86:48:1f:83:50:e2:fb:17:c3:65:88:f7:dc:
bb:c5:c7:1d:f3:69:3c:52:5d:07:e9:6c:a7:8d:73:
ed:03:2b:88:3e:67:41:31:e9:59:61:2a:ec:82:b2:
bc:92:8f:6d:2a:19:11:e7:e6:48:23:5d:c5:b2:97:
60:77:81:4b:17:18:0f:0c:2f:09:19:7a:93:5c:8b:
36:98:77:9b:f2:ee:90:95:d2:31:b4:c8:44:60:e0:
44:6a:4f:2d:2a:a4:25:73:25:27:05:43:e0:80:41:
9e:fa:18:0f:e6:28:e5:9c:54:da:56:6a:db:dc:47:
67:8a:3d:25:c1:cd:c6:7c:09:61:a0:85:94:50:da:
91:a0:7c:1f:e6:21:74:c6:26:0b:65:ca:8c:34:26:
29:16:39:69:60:49:a6:1d:31:f7:ca:be:35:59:3e:
40:f1:02:d2:8c:ed:10:bf:9c:0e:d9:ff:b3:8e:80:
42:0d:47:1e:3b:9a:a5:b6:77:40:8e:85:4c:3c:7b:
36:ce:14:72:8a:92:1b:a8:bc:40:3b:3c:35:0f:78:
2b:0a:28:4b:90:c3:93:35:e0:55:3e:22:5e:76:e7:
2f:19:9d:31:1c:36:ca:0a:41:ee:8f:65:9a:aa:05:
f0:a2:03:2e:16:9e:95:6b:ae:93:91:bb:60:28:5a:
b3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D7:CC:81:4A:BE:D6:5B:27:20:FF:5A:5E:C4:8F:B9:69:C5:ED:DE
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/1-9fMgUq-1lsnIP9aXsSPuWnF7d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.113.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:49:34:19:1d:19:c4:5f:07:96:5b:92:0e:90:3b:d4:9a:bc:
02:53:d2:31:de:c9:5b:f8:af:21:e0:70:01:26:b8:76:c6:c4:
79:06:ec:bf:ef:85:2e:8f:17:01:b1:f9:2c:7b:4f:ef:39:51:
fa:b2:03:ac:2a:56:5d:ba:d3:45:67:67:5e:4f:de:ea:09:68:
e1:01:b8:c7:57:84:be:72:a8:2b:34:df:45:de:81:b0:42:52:
ff:12:3e:01:06:eb:06:46:f7:74:5d:a3:2d:fc:f4:24:fc:80:
d3:1c:5a:86:a7:34:3a:ef:f8:e3:ad:55:ac:60:8e:c3:7d:bf:
35:a2:56:8e:e5:ea:84:75:d4:7f:69:5e:65:ed:d3:99:8b:31:
3b:07:85:9a:10:bb:9b:12:17:fa:58:79:de:43:2a:35:55:5f:
78:dc:e5:0c:44:55:84:87:b9:52:9d:bc:27:84:51:05:25:5e:
56:3a:07:f6:76:fb:38:3c:ab:8f:48:c5:78:1a:d9:83:84:ec:
87:e8:ff:89:6c:01:ef:63:8f:17:f5:07:94:40:22:b0:8b:62:
92:0f:64:af:c3:6a:09:39:80:82:c3:ea:ec:64:57:4e:0c:d3:
3e:fa:3e:8b:99:f2:25:02:c5:5b:a1:73:dc:c7:98:aa:d8:e6:
d9:41:e0:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:59:34 2025 by rpki-client