Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/AHW4yFGRdKc4SQAQOOKVm60G874.roa
File: AHW4yFGRdKc4SQAQOOKVm60G874.roa (raw, json)
Hash identifier: Z8WJq1wgkIoPYrjMHcN+6I+bF36IFCYrQyvuA0FutfE=
Subject key identifier: 00:75:B8:C8:51:91:74:A7:38:49:00:10:38:E2:95:9B:AD:06:F3:BE
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 019374FC4495CE2F4905B3134C17360F2AC2
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/AHW4yFGRdKc4SQAQOOKVm60G874.roa
Signing time: Thu 28 Nov 2024 22:55:09 +0000
ROA not before: Thu 28 Nov 2024 22:55:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24961
IP address blocks: 2.57.123.0/24 maxlen: 24
45.138.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 21:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:74:fc:44:95:ce:2f:49:05:b3:13:4c:17:36:0f:2a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Nov 28 22:55:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0075b8c8519174a73849001038e2959bad06f3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4b:25:1c:b6:bb:d1:f1:8c:8d:74:46:84:a0:
20:da:3d:cb:3f:b4:a6:45:3f:71:ce:35:e2:d7:a5:
fb:b8:4a:0f:30:d3:9c:4c:85:09:e4:16:d3:21:66:
11:d1:e1:c2:c1:f5:81:f8:35:3c:49:36:b3:1b:e1:
0f:7e:5b:3e:14:21:07:8d:27:f7:d2:d3:20:25:de:
11:17:69:ca:94:ab:8c:6c:4c:f6:82:be:6b:5d:cf:
19:43:80:f5:85:3e:fb:9f:b8:3c:71:9f:8f:42:e9:
ab:d9:2a:98:6d:da:d9:f2:cb:84:5d:97:26:a9:a2:
e2:cd:62:a8:da:f4:a5:ba:ea:a2:d5:d6:a9:a3:0f:
dc:d1:e7:01:f5:16:c5:55:e3:dd:bc:cc:bc:6d:9f:
4b:8e:a6:cb:1e:75:56:d8:2f:19:e3:fa:1b:17:cc:
98:39:ce:0a:b6:6b:25:cd:b5:73:c9:a9:57:b8:e0:
3b:31:ee:1b:22:2b:c4:da:90:e0:19:08:42:d0:8b:
a9:b1:73:28:54:df:d9:29:b4:4d:58:78:e1:9f:7b:
96:a8:14:1b:7a:c4:7b:df:bf:94:ec:b0:e0:f1:13:
1e:37:0b:c6:f9:42:30:68:68:4b:71:97:bd:39:b6:
b9:8f:73:1e:f4:8c:ae:19:14:6d:be:07:9a:e0:4d:
1e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:75:B8:C8:51:91:74:A7:38:49:00:10:38:E2:95:9B:AD:06:F3:BE
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/AHW4yFGRdKc4SQAQOOKVm60G874.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.123.0/24
45.138.99.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c4:ef:ee:39:78:88:4d:fa:56:97:52:e9:d9:90:d8:15:cb:
d5:c8:bd:fa:8c:06:2c:ac:d1:27:30:fb:fa:14:c4:16:11:59:
5f:0d:65:9b:51:17:cc:fc:9f:41:a1:e5:d0:1d:54:2c:f5:2d:
85:22:e7:b4:18:95:a7:9d:29:fb:a1:ca:f9:14:c4:df:0e:eb:
49:b9:24:51:4e:02:06:63:2e:5c:87:15:5c:c3:27:8f:7b:a9:
1f:de:88:84:f3:be:04:f0:e7:6c:29:08:3d:be:15:1f:eb:ef:
9d:74:85:af:fd:6c:38:3f:b8:78:10:68:e0:10:1a:b3:86:09:
4c:2d:7a:b7:f9:33:b7:ec:4d:b3:f1:27:93:93:60:84:09:f2:
b9:6b:6c:d7:d1:45:82:6b:18:7f:42:95:16:59:e5:f0:0d:a6:
f1:26:76:3d:e6:73:7e:eb:fd:8c:51:a9:df:13:b8:c2:54:8e:
b0:f2:cb:80:e2:f8:e9:dc:4f:a1:52:47:12:2d:18:8c:04:50:
4c:2f:1f:78:c0:fd:8e:fc:32:09:77:9e:54:d9:54:10:19:86:
0e:1f:40:b5:dc:e1:b1:8b:a1:55:25:7e:ce:bf:4f:7a:83:7d:
08:4c:0e:8c:38:87:14:2d:d2:4d:23:f3:e8:13:15:67:6c:20:
f6:ad:d8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:21 2025 by rpki-client