Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/DRcJXfDW48_frverApuLwAotNg0.roa
File: DRcJXfDW48_frverApuLwAotNg0.roa (raw, json)
Hash identifier: yhmCIzemLiupq/gHcZdIySCH4dcQe7WV9C92CoaHpfM=
Subject key identifier: 0D:17:09:5D:F0:D6:E3:CF:DF:AE:F7:AB:02:9B:8B:C0:0A:2D:36:0D
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 01941521B8E3130736F1649538106F1580D9
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/DRcJXfDW48_frverApuLwAotNg0.roa
Signing time: Mon 30 Dec 2024 01:15:19 +0000
ROA not before: Mon 30 Dec 2024 01:15:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214295
IP address blocks: 45.142.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:15:21:b8:e3:13:07:36:f1:64:95:38:10:6f:15:80:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Dec 30 01:15:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d17095df0d6e3cfdfaef7ab029b8bc00a2d360d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1d:31:43:a8:1e:28:e6:06:47:58:ba:4c:61:
25:1a:bb:07:fc:b8:e9:90:cf:51:3b:87:3d:b9:c5:
70:16:e6:f7:a6:2d:19:af:af:dc:02:7d:9c:24:7c:
42:7f:a8:ef:7b:bd:36:06:f2:ed:6c:0b:6c:3e:9b:
43:23:6e:1e:57:7e:f4:bc:66:f4:d9:1e:3c:5d:8b:
6c:cd:b4:39:92:16:55:49:e4:03:00:45:45:48:f2:
fe:76:bc:3e:10:22:c7:b3:4f:8d:5d:7c:e9:74:39:
eb:fa:e7:ed:de:80:e2:c6:86:f8:bb:9f:a0:50:3c:
f9:72:01:1a:7f:1b:45:c3:e1:72:49:7b:6a:e1:d3:
fe:68:ae:a2:61:28:f2:47:bf:c7:17:0e:fe:a7:98:
2b:af:61:10:ef:1c:05:80:29:cc:a9:53:b6:bc:36:
2b:25:cf:c1:51:ea:b4:23:e0:70:fc:bb:4d:00:fc:
da:de:ba:c9:69:c3:56:4c:4e:f7:8f:74:c8:54:58:
14:bf:55:ed:47:27:d7:ac:23:4c:1e:d4:95:ff:d6:
c2:15:ca:09:ef:73:3c:9b:c3:31:91:87:fb:82:66:
ad:4c:2a:e1:87:71:5e:4a:cf:19:fd:3d:69:e6:69:
4b:88:63:35:19:cd:4a:32:04:b7:48:8f:2f:e1:a5:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:17:09:5D:F0:D6:E3:CF:DF:AE:F7:AB:02:9B:8B:C0:0A:2D:36:0D
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/DRcJXfDW48_frverApuLwAotNg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.193.0/24
Signature Algorithm: sha256WithRSAEncryption
10:52:85:0d:ec:b6:06:fc:1a:e7:1e:4a:64:5e:9d:6c:51:20:
d3:9b:a8:98:7b:ce:bc:c5:81:75:06:b1:88:33:5b:8d:32:5e:
14:f1:99:bf:24:b1:f8:fc:5c:97:3a:44:74:33:70:43:9e:81:
b7:ff:40:14:9d:6c:6f:65:73:5d:9e:55:77:37:86:81:f5:15:
e2:c2:59:23:1f:27:16:42:aa:b2:34:41:46:96:05:10:f4:2a:
d2:f9:6b:19:b4:14:fe:a1:f9:be:38:00:5e:a0:c2:e0:06:81:
5c:31:ff:4b:c0:ee:12:46:b9:b7:c1:a8:07:50:28:4b:62:bf:
02:1b:18:e5:1a:db:ff:0f:3a:3c:ef:5e:92:55:89:a9:86:d0:
1e:d4:52:79:6d:30:f5:53:0e:a0:f6:06:d3:78:7c:e2:de:e2:
b0:b4:ff:39:c5:d4:f3:36:7b:a2:09:29:a1:b1:50:6c:df:72:
4a:60:ce:4b:4a:f2:8a:fd:80:14:e7:25:cb:91:5c:a6:26:98:
2c:7d:6d:1e:29:86:a1:c2:fe:fd:d0:b8:c6:ad:46:6f:82:d8:
1e:df:3f:00:bf:6b:3f:bb:3d:e4:19:1e:7f:df:3a:3a:97:aa:
b8:ab:f2:aa:96:82:1b:54:b2:9e:38:55:e5:c5:cb:83:5d:31:
54:0f:5c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:14 2025 by rpki-client