Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/y5L91O_O140EYBA8wi8Pn0Q-f0o.roa
File: y5L91O_O140EYBA8wi8Pn0Q-f0o.roa (raw, json)
Hash identifier: UzP+dqKIV5P35XjpVcDqViGaKBhyS7GeHOVOa2kzjv4=
Subject key identifier: CB:92:FD:D4:EF:CE:D7:8D:04:60:10:3C:C2:2F:0F:9F:44:3E:7F:4A
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 018EE340A015A347852BBB83C15BE597E617
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/y5L91O_O140EYBA8wi8Pn0Q-f0o.roa
Signing time: Mon 15 Apr 2024 19:34:06 +0000
ROA not before: Mon 15 Apr 2024 19:34:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208046
IP address blocks: 45.129.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 22:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:40:a0:15:a3:47:85:2b:bb:83:c1:5b:e5:97:e6:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Apr 15 19:34:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb92fdd4efced78d0460103cc22f0f9f443e7f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:50:1c:c6:43:32:54:43:bf:ec:92:4a:21:
e1:91:19:bd:e0:66:c6:4a:75:d3:3f:af:82:92:f9:
bf:d6:f1:d1:ed:f4:04:be:94:cb:3c:d0:dc:8d:e5:
31:89:f9:fb:56:66:6b:2b:46:8b:c1:28:39:d4:50:
36:fc:0e:2d:7e:21:f0:79:a2:f9:0b:b7:0c:df:28:
1d:10:ef:d6:05:c7:a3:cb:df:eb:99:41:53:01:55:
1a:ea:42:cc:5e:01:ad:df:f2:80:a4:c9:cf:f1:a8:
bd:65:39:63:c1:27:c9:fc:03:29:f1:21:b5:df:70:
87:8a:5e:9c:5c:db:5f:a1:c4:ca:e2:c6:77:c4:e6:
24:b4:39:12:64:33:b6:ba:f8:06:ad:0b:d4:2b:30:
ff:5d:72:a8:56:08:dd:69:b0:06:1d:c1:5b:8b:3f:
85:c2:61:14:51:f8:10:5b:39:1e:ed:dc:ac:c2:e8:
55:a4:a1:e2:0d:20:b3:0c:b8:24:ce:25:15:59:80:
34:1f:e4:0e:ae:79:9e:fd:9e:16:73:14:9e:b4:cc:
86:39:70:ba:44:02:b6:4d:9c:86:52:59:3c:80:e7:
c0:3a:9d:d8:96:ab:61:e8:51:8c:4d:80:89:91:5b:
22:cc:f6:22:85:62:e0:11:b4:88:7c:9a:1d:c3:25:
f1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:92:FD:D4:EF:CE:D7:8D:04:60:10:3C:C2:2F:0F:9F:44:3E:7F:4A
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/y5L91O_O140EYBA8wi8Pn0Q-f0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:cd:9a:4a:0a:78:e0:9a:4c:aa:6d:5f:d1:e0:a5:59:a6:e9:
f1:fa:df:76:9e:80:e3:3d:19:59:55:d7:aa:1f:8b:8a:7f:3a:
f2:fb:a3:1c:cf:ca:a9:dc:66:a9:83:50:5c:8b:a1:d1:34:10:
35:9f:ac:5a:b5:d6:96:33:c8:66:f7:ec:92:a8:db:e1:ee:57:
ae:63:bc:60:ec:7e:84:50:4c:3c:b2:a3:a0:e6:cf:68:0f:64:
9c:59:3a:e9:81:33:52:12:8d:d5:ed:87:cd:76:fc:d5:5a:c6:
42:01:f5:27:b1:bc:d6:11:b8:53:b2:57:6a:55:29:34:5c:01:
ef:1c:27:8b:a0:a9:07:28:b0:e1:eb:44:3c:5f:db:5d:20:d1:
09:23:a6:24:68:b8:c2:7f:d5:ec:10:21:7a:b5:5c:d9:9a:b3:
5f:ab:94:f2:c7:24:f0:68:64:80:33:68:5d:5c:6e:f1:c9:7b:
92:e3:c4:12:21:82:f0:d2:10:dd:b1:82:e7:9e:f6:3e:21:01:
11:a4:1f:27:ca:7d:05:71:8a:c7:48:f0:b8:3e:ea:ce:71:4e:
95:2a:91:50:d6:47:9c:1d:d2:1e:f8:2a:56:53:39:c6:9d:bb:
9c:3a:dc:3c:61:ce:b8:3b:a0:93:7b:52:31:f6:34:ef:83:ed:
02:dc:ee:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:22 2025 by rpki-client