Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/YA4UTR0-H85IPcQVu-di0emqgdY.roa
File: YA4UTR0-H85IPcQVu-di0emqgdY.roa (raw, json)
Hash identifier: f+v6knlXObzFA2evStkSIPcEj7V6gNxKAKI86Lk7A48=
Subject key identifier: 60:0E:14:4D:1D:3E:1F:CE:48:3D:C4:15:BB:E7:62:D1:E9:AA:81:D6
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01925429F5F312E6B3E87BBEE404E312CC65
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/YA4UTR0-H85IPcQVu-di0emqgdY.roa
Signing time: Thu 03 Oct 2024 20:54:48 +0000
ROA not before: Thu 03 Oct 2024 20:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 45.92.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Oct 2024 19:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:54:29:f5:f3:12:e6:b3:e8:7b:be:e4:04:e3:12:cc:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Oct 3 20:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=600e144d1d3e1fce483dc415bbe762d1e9aa81d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:89:fa:32:75:03:5f:52:cf:c2:bd:82:7e:
d0:01:2c:a7:87:1d:02:ed:87:41:e5:77:57:23:c5:
4b:35:c1:c4:fa:ab:58:0e:0c:98:e5:f9:f5:9c:1a:
59:5c:68:5f:a7:af:92:28:dc:10:f4:db:c3:e7:6b:
31:2b:98:4d:2e:b3:4f:6b:ea:25:44:73:e1:15:73:
40:50:69:86:e6:6f:42:80:6a:3c:f4:c2:3c:d6:25:
b0:d5:23:ca:d7:86:c7:86:7f:4c:89:59:20:8f:22:
50:09:20:4d:d3:96:f0:3f:fe:08:cf:5e:29:a7:81:
a0:49:88:93:2e:12:ae:89:d9:43:fa:2d:a4:e8:32:
c3:8b:c9:a2:83:cd:c7:90:ac:ef:27:0d:38:5d:30:
71:41:92:c8:2e:9f:c7:e3:ca:14:59:d5:5e:67:06:
37:4e:b3:41:b0:78:fe:e0:95:98:3f:89:5c:d1:48:
b2:1f:03:f6:49:cf:e8:07:48:4f:3c:20:08:49:c2:
a0:b7:25:44:02:3f:4c:2d:d3:44:83:14:12:5a:7e:
3f:d8:0f:e9:4d:69:6e:bc:96:88:97:8c:26:33:b8:
5d:0c:68:4b:57:de:e9:b6:5c:ad:f7:9f:bc:ac:20:
53:04:fd:6f:d3:79:08:f6:c9:0c:96:2a:2e:01:60:
03:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0E:14:4D:1D:3E:1F:CE:48:3D:C4:15:BB:E7:62:D1:E9:AA:81:D6
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/YA4UTR0-H85IPcQVu-di0emqgdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.77.0/24
Signature Algorithm: sha256WithRSAEncryption
24:35:cc:af:33:f3:7c:a3:9c:bd:d1:5c:d3:9e:08:fd:02:8f:
c1:91:fe:59:bd:14:07:26:8b:10:c5:92:88:f6:29:a2:54:ad:
2e:6d:86:4c:7d:a7:02:27:1e:24:74:8d:3c:b2:33:b9:2f:93:
e2:1e:9f:ea:44:13:fe:2c:26:33:4c:f1:3f:98:1c:8b:86:5f:
bd:58:ba:ad:4f:e9:c6:73:2d:d0:90:8e:3a:60:cb:3a:b8:7c:
5a:0f:b1:fb:51:43:ab:3b:4b:10:77:67:0f:0f:7d:60:8d:e9:
be:4f:a9:0a:dc:a6:68:dd:41:8f:ac:9e:46:a6:56:8c:f4:c7:
bd:78:10:ce:e8:26:fb:66:ed:4f:94:be:77:39:c1:17:50:db:
a2:70:59:04:a3:6e:f7:f5:31:d9:9f:34:2f:64:68:71:14:60:
22:6f:b3:b7:88:de:96:46:6b:b1:67:fc:9f:78:76:c1:43:35:
0b:57:6e:2b:fb:b2:ca:dc:2a:b6:d6:aa:f6:6b:7b:50:68:68:
b2:05:99:39:d7:bf:a8:1e:29:ce:fb:9c:ae:cf:0b:1a:02:63:
45:75:2a:1c:d6:f1:e9:91:65:0b:ab:ae:05:49:ee:38:6b:d5:
52:c8:76:3c:f5:6c:7a:61:9c:47:6e:d4:b6:be:2f:a1:6e:4a:
1a:19:05:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:32 2025 by rpki-client