Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/RSlmB-vni1CP9m9Oug4SaM-9nLI.roa
File: RSlmB-vni1CP9m9Oug4SaM-9nLI.roa (raw, json)
Hash identifier: i2KgXhko5ZsRNqgxR0DRQ+VRfeQNlF2WPSQ6wfwZyeU=
Subject key identifier: 45:29:66:07:EB:E7:8B:50:8F:F6:6F:4E:BA:0E:12:68:CF:BD:9C:B2
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 019175F9ADB512A63A13FE4C55374676BF06
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/RSlmB-vni1CP9m9Oug4SaM-9nLI.roa
Signing time: Wed 21 Aug 2024 17:26:22 +0000
ROA not before: Wed 21 Aug 2024 17:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 45.92.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:75:f9:ad:b5:12:a6:3a:13:fe:4c:55:37:46:76:bf:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Aug 21 17:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45296607ebe78b508ff66f4eba0e1268cfbd9cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:85:9d:f5:76:b4:fb:44:73:30:06:10:bd:86:
25:51:c1:34:54:2a:92:66:ba:73:b8:ad:3e:26:e2:
f6:67:93:6b:c7:76:36:e0:48:89:45:b8:dc:e3:b1:
ed:cb:84:95:70:05:1b:80:12:34:5a:b3:41:97:0e:
14:f3:c6:ea:1a:d9:73:ae:15:f4:a1:88:f2:40:8c:
08:b6:2b:4d:73:22:57:6e:5e:35:0f:06:4d:eb:93:
08:b5:42:f8:4d:3f:09:1d:da:09:43:6d:ce:a4:18:
8d:2d:c4:52:0a:98:83:2e:fa:85:1a:e0:13:4e:59:
88:08:80:0e:7e:3d:a1:6c:93:68:79:73:70:3f:46:
0d:ec:50:94:37:47:44:27:95:86:36:39:95:96:21:
08:c4:36:7d:84:fa:d4:37:49:99:e0:a7:f8:19:b4:
c2:da:c5:d9:e5:d1:1d:09:89:64:c2:a1:03:02:06:
3d:c4:e9:b3:e3:6d:0a:d8:42:51:59:07:5b:4c:44:
09:f4:20:2c:03:42:00:ba:1f:4f:dc:4d:e5:26:cb:
70:43:54:a1:b1:01:7d:1d:a0:1e:c0:89:39:15:93:
5f:ae:e1:db:fd:32:55:af:9d:15:22:39:d6:d7:20:
e1:fb:47:59:8e:63:e8:ae:8a:d3:cc:50:5e:da:24:
1b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:29:66:07:EB:E7:8B:50:8F:F6:6F:4E:BA:0E:12:68:CF:BD:9C:B2
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/RSlmB-vni1CP9m9Oug4SaM-9nLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.78.0/24
Signature Algorithm: sha256WithRSAEncryption
81:5e:b2:2a:04:5b:a9:f5:e7:d7:b4:74:34:f5:a7:21:a4:27:
6d:5a:44:89:bc:80:66:f6:04:c1:e2:aa:74:34:d9:9e:8d:96:
b2:f8:3e:ad:35:5c:95:c4:f6:e5:8c:b8:6e:1e:c0:83:2b:9b:
fb:51:a8:63:dc:fb:e2:83:ee:d9:43:b1:48:6a:c4:5f:d5:71:
6b:07:7d:60:63:c3:8c:5e:98:c4:cf:6d:1a:c0:9a:2c:af:20:
3b:53:b1:2c:22:36:f4:c7:ae:84:dd:15:00:45:36:ff:41:ce:
54:13:46:9e:9a:4d:2e:98:65:62:83:bc:3f:c9:30:3b:ca:64:
66:ca:22:85:84:a9:c5:1a:09:72:b3:d1:8f:26:e3:84:4e:ba:
ec:1f:33:ff:85:9d:a0:3d:d2:ba:64:2b:35:54:98:25:c2:50:
7f:98:9a:17:ae:33:2d:63:b1:34:b5:fe:6a:48:ab:fb:39:fe:
3d:d0:3c:dd:39:ae:42:4b:04:5a:1b:43:ce:bf:e2:6e:06:3f:
2e:93:39:9c:df:cb:93:ac:79:a5:fb:f4:f5:a2:21:3f:f5:d2:
ba:9e:a2:be:01:bd:90:f2:e8:45:cc:d9:cb:7a:e2:d8:35:d0:
b9:1e:35:81:0a:33:26:b5:e1:62:d9:0d:b8:13:19:ba:1a:2d:
ff:4d:ea:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:56:29 2025 by rpki-client