Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/WYJyarpY_Ope4ah0Szv6_MJeRvI.roa
File: WYJyarpY_Ope4ah0Szv6_MJeRvI.roa (raw, json)
Hash identifier: 9uZyRMrKJ0J/SY0BrgYNmQXjU45RuWL1gTz9RqmzySY=
Subject key identifier: 59:82:72:6A:BA:58:FC:EA:5E:E1:A8:74:4B:3B:FA:FC:C2:5E:46:F2
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0191B2C30865018994B5401B1DD20A5C90C1
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/WYJyarpY_Ope4ah0Szv6_MJeRvI.roa
Signing time: Mon 02 Sep 2024 12:43:31 +0000
ROA not before: Mon 02 Sep 2024 12:43:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43289
IP address blocks: 45.153.124.0/24 maxlen: 24
92.243.67.0/24 maxlen: 24
2a03:f80:373::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Sep 2024 15:12:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:c3:08:65:01:89:94:b5:40:1b:1d:d2:0a:5c:90:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Sep 2 12:43:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5982726aba58fcea5ee1a8744b3bfafcc25e46f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:ea:e3:34:a7:c2:6b:27:a1:6d:3f:15:36:
f8:5b:51:14:51:c1:73:79:db:bd:92:d6:7f:d6:06:
45:d3:e5:82:e5:e3:70:a4:e9:a5:a6:73:ef:8c:fc:
00:03:4f:44:a5:f9:cf:4e:2a:87:0a:44:b5:60:67:
f8:f6:d7:00:7c:ed:d2:fd:7c:48:ae:49:21:84:2a:
1d:98:d4:b9:05:16:bb:4c:fb:a9:87:3b:18:e8:6a:
f7:1a:48:d6:03:5a:66:13:41:48:c8:b1:d8:0f:cd:
58:86:ce:13:51:3f:65:02:88:8c:0d:28:9f:5c:6e:
c2:2e:9d:bd:f0:55:ba:46:a0:53:e8:89:79:33:01:
a2:97:17:92:5f:36:32:4b:56:6e:61:04:4c:6b:40:
06:16:17:d9:84:f7:42:48:90:1c:7d:ca:fa:84:42:
77:6c:55:1d:27:29:fa:e0:77:ae:8b:5a:9b:3a:71:
33:dc:56:5d:7d:ff:23:3f:38:ad:ea:58:5a:e9:a2:
7d:d4:62:99:97:07:57:d9:8b:94:79:42:76:83:cc:
04:50:91:a1:8d:60:60:da:90:d4:dc:6b:d0:11:04:
c7:07:ba:8a:72:33:07:e4:c4:2f:f7:13:f9:c1:d6:
c2:a5:0d:28:b9:86:7b:e0:28:31:3f:b5:93:dc:ad:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:82:72:6A:BA:58:FC:EA:5E:E1:A8:74:4B:3B:FA:FC:C2:5E:46:F2
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/WYJyarpY_Ope4ah0Szv6_MJeRvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.124.0/24
92.243.67.0/24
IPv6:
2a03:f80:373::/48
Signature Algorithm: sha256WithRSAEncryption
a3:77:f9:78:74:e0:3c:80:03:77:dc:e9:a1:ff:a7:b3:43:7c:
1f:bc:45:e8:60:75:fa:22:f4:99:56:1c:ec:0f:86:7f:8d:82:
77:a4:6f:74:f9:a1:00:41:a8:f5:86:46:17:83:96:6a:a2:60:
d4:9a:8e:ad:5d:be:40:cc:d6:6b:92:57:78:9b:44:8a:0a:1d:
23:76:3a:51:9a:b5:3b:02:46:57:d9:fd:c5:48:3d:47:8f:ff:
83:95:52:65:40:98:50:f5:06:81:84:56:e5:af:7e:21:80:49:
da:4a:8a:0e:63:e4:e0:aa:9c:8a:71:86:ff:3d:a1:b6:b5:e2:
32:d1:fb:e3:b5:90:41:55:94:4b:fe:f6:3b:c6:1d:33:07:55:
be:91:0f:b5:fd:2b:ab:e2:06:05:4a:7c:ff:2e:33:77:3e:79:
d5:c4:25:62:98:e6:92:75:00:02:68:18:28:5e:07:1b:20:9d:
b3:32:98:e1:ca:82:12:72:1d:72:3a:75:f7:b3:53:f1:5a:23:
d7:78:15:c9:b5:b7:d9:85:ba:19:20:a6:15:3a:85:30:b0:1c:
42:db:c9:3e:93:ec:eb:90:d0:c9:3d:17:19:a5:82:05:23:d7:
60:fd:bd:6a:f0:c7:91:20:ea:bf:29:25:62:0e:d9:e2:9c:f1:
58:30:93:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 18:16:24 2024 by rpki-client on console-fra.rpki-client.org