Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/0eHQIxiKO2Y9ov7a5Zd_xtj-o0o.roa
File: 0eHQIxiKO2Y9ov7a5Zd_xtj-o0o.roa (raw, json)
Hash identifier: dyZuHSk6EV7qoK3csZLVgh3VXTthtwbu5Czl4g6Rals=
Subject key identifier: D1:E1:D0:23:18:8A:3B:66:3D:A2:FE:DA:E5:97:7F:C6:D8:FE:A3:4A
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01910AAEAC6E1CC436554046B8E8122BEC21
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/0eHQIxiKO2Y9ov7a5Zd_xtj-o0o.roa
Signing time: Wed 31 Jul 2024 21:25:05 +0000
ROA not before: Wed 31 Jul 2024 21:25:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205733
IP address blocks: 45.94.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0a:ae:ac:6e:1c:c4:36:55:40:46:b8:e8:12:2b:ec:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jul 31 21:25:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1e1d023188a3b663da2fedae5977fc6d8fea34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d6:68:ce:31:0d:cb:55:e8:01:3a:a3:ed:07:
2c:2e:a6:1e:90:97:97:dd:59:a7:c6:c1:c4:f6:3d:
4b:67:1f:98:03:74:7d:b1:b6:9f:7c:63:ee:fc:2b:
49:56:a0:d2:14:b9:a1:b9:ca:e7:00:17:6b:cd:3b:
19:2d:a4:57:63:ea:6a:59:ac:e6:a7:95:40:98:c1:
ca:b3:a6:13:2e:48:0f:a7:9a:df:1c:c8:a4:3d:5e:
48:d7:24:04:ed:25:69:44:b5:3e:d1:1f:7b:f9:4c:
82:a0:21:c6:24:9c:5d:48:64:bc:06:0f:cf:fd:f0:
6d:86:7c:e4:c1:36:62:0b:b7:f7:f3:e7:48:d1:5e:
0f:79:5f:0b:bf:a4:18:18:98:3d:69:c8:1b:e3:aa:
6a:dc:2f:ea:5e:07:0b:05:47:b2:ff:07:dc:ab:3a:
a2:64:2d:89:36:64:c6:2a:03:db:99:29:a7:df:94:
b3:1e:60:56:ca:70:b9:8f:26:93:f3:1b:50:75:90:
96:60:45:7d:6c:a8:05:e5:a6:a7:ad:e7:e2:79:13:
6b:96:4a:53:64:fc:a8:b7:0e:16:ae:31:13:a4:87:
87:a4:75:50:b3:88:e9:f4:51:88:4f:01:8e:5f:4b:
0b:80:04:83:fc:cd:42:50:ca:9d:a9:dd:5f:21:1d:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E1:D0:23:18:8A:3B:66:3D:A2:FE:DA:E5:97:7F:C6:D8:FE:A3:4A
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/0eHQIxiKO2Y9ov7a5Zd_xtj-o0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.171.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ab:2b:52:6b:75:f1:2f:ab:63:b7:06:09:4b:13:25:dc:1d:
d6:d9:6a:81:55:f9:6c:16:72:33:2c:45:57:cb:1d:36:90:84:
39:6f:72:48:a2:d7:61:1c:6a:73:f1:7f:5d:1a:e5:80:34:c3:
48:2f:67:4a:47:86:4b:4b:32:24:d9:ea:56:ba:f7:c6:b1:20:
f1:44:02:be:37:8b:c1:3b:01:6a:e1:ab:fe:cd:67:1d:2a:a4:
5e:b5:43:32:20:5e:89:90:73:a4:6d:60:60:22:bf:4d:cf:35:
3d:d3:fd:73:9d:b8:e8:ac:c1:af:e0:f8:68:60:a8:28:6f:2b:
81:0b:3b:97:76:61:15:14:74:b1:74:fb:2a:e0:6f:d2:b1:2f:
d5:51:66:a4:43:3b:34:91:74:40:61:c6:fe:27:78:d6:e3:38:
50:ae:4a:21:ef:3b:8d:4a:49:03:8a:38:59:fd:41:0c:78:22:
85:8a:44:77:22:f5:78:e8:c1:b3:90:c9:1f:3d:08:a1:5f:b2:
db:af:a7:6e:13:83:9c:16:17:77:27:a0:98:e6:a1:07:d5:75:
f8:fa:7b:46:af:ae:7b:08:a2:3c:7a:3f:a8:61:ea:cb:5a:05:
71:e0:55:35:c8:5d:a4:10:04:46:00:e1:7f:f2:9d:7c:61:f2:
f1:5f:3f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:39:03 2025 by rpki-client